Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/2xD6W5lcahHW6nfJjWc971Ex6yU.roa
File: 2xD6W5lcahHW6nfJjWc971Ex6yU.roa (raw, json)
Hash identifier: Ec40E905LlFcw90wr2yCOi6AKOGJzmq9S3zeWEmZ+b0=
Subject key identifier: DB:10:FA:5B:99:5C:6A:11:D6:EA:77:C9:8D:67:3D:EF:51:31:EB:25
Certificate issuer: /CN=8d64e43c75bdc511d524f0c85d009cba76956144
Certificate serial: 0BCA0C9F
Authority key identifier: 8D:64:E4:3C:75:BD:C5:11:D5:24:F0:C8:5D:00:9C:BA:76:95:61:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jWTkPHW9xRHVJPDIXQCcunaVYUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/2xD6W5lcahHW6nfJjWc971Ex6yU.roa
Signing time: Sat 01 Jan 2022 15:05:27 +0000
ROA not before: Sat 01 Jan 2022 15:05:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38965
IP address blocks: 193.178.197.0/24 maxlen: 24
2a04:4345:10::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 197790879 (0xbca0c9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d64e43c75bdc511d524f0c85d009cba76956144
Validity
Not Before: Jan 1 15:05:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db10fa5b995c6a11d6ea77c98d673def5131eb25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7b:32:f8:17:60:26:08:ed:47:8a:1d:9d:be:
27:98:b5:a6:bd:5b:d7:cf:2f:83:21:75:59:59:c2:
a8:4e:00:8c:64:85:73:9b:34:43:f7:f3:f6:36:94:
3a:67:f5:9a:95:e3:48:b0:a9:c5:54:40:3e:e8:d7:
24:cc:1e:49:25:fe:03:16:74:17:2e:17:ee:04:aa:
82:3c:9b:c2:23:66:a8:b2:95:42:7b:4d:8f:bb:b5:
07:99:bb:6b:09:bd:18:e4:92:89:aa:85:e5:35:98:
8b:37:39:b5:9b:5f:53:06:00:71:41:ce:8b:d6:01:
63:94:df:3d:a6:72:c5:5b:fe:63:fa:43:b2:7e:b7:
61:66:85:c8:cf:cb:74:f8:fa:11:1d:67:00:46:d7:
7d:25:8d:ad:2c:c9:ec:dd:1c:48:a8:6d:d0:a0:12:
8d:4d:a9:cd:86:34:d1:2f:ee:16:1d:7c:0b:7f:39:
74:7e:f9:9a:7e:89:cf:2a:20:86:f4:51:cb:b7:fb:
94:02:f6:f7:59:82:a7:f8:c3:c7:5c:e4:dc:98:84:
cb:e9:85:7b:99:b4:fe:b9:48:57:b8:eb:a5:e6:c8:
8a:00:ba:72:04:41:0d:08:fb:19:01:35:2f:0c:01:
3f:76:79:ba:e0:59:9c:86:b2:aa:dd:93:4c:f0:fa:
9b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:10:FA:5B:99:5C:6A:11:D6:EA:77:C9:8D:67:3D:EF:51:31:EB:25
X509v3 Authority Key Identifier:
keyid:8D:64:E4:3C:75:BD:C5:11:D5:24:F0:C8:5D:00:9C:BA:76:95:61:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jWTkPHW9xRHVJPDIXQCcunaVYUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/2xD6W5lcahHW6nfJjWc971Ex6yU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6f9b09-a59e-4f90-87c7-72448352b807/1/jWTkPHW9xRHVJPDIXQCcunaVYUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.197.0/24
IPv6:
2a04:4345:10::/44
Signature Algorithm: sha256WithRSAEncryption
13:88:ff:ff:fc:f6:4b:e0:56:d2:46:15:8d:2f:7c:fb:29:f1:
84:c6:ec:8b:84:1a:87:22:b5:25:24:55:4b:e9:53:27:08:6c:
2f:0e:de:ba:02:0d:52:07:a9:0f:ac:8e:0f:eb:5f:27:aa:96:
3e:d3:3f:f3:99:3e:a1:12:19:83:1c:af:11:86:dd:1e:b1:6f:
f2:da:ad:69:3d:93:1f:f0:91:da:aa:18:e4:44:b5:25:14:00:
fe:54:d4:e4:28:e5:8b:87:df:e1:5c:49:a4:ea:9f:58:a0:8e:
d4:38:99:a5:7d:14:76:1d:26:2b:0e:0c:8f:b3:39:7d:52:5e:
a4:06:aa:4a:1f:e5:4a:50:10:a8:97:01:89:c9:d3:ec:aa:14:
0a:f5:8e:8d:37:ba:f6:19:5c:ef:ed:68:d2:73:1a:f7:0d:a7:
dd:51:30:2e:76:6d:57:47:1c:4f:df:70:1b:e1:75:81:8a:33:
d9:20:b0:76:16:65:5f:e3:ea:d6:f1:e2:53:2f:4f:74:7e:9e:
92:96:b9:46:21:54:04:d8:ec:38:98:f8:ef:a8:35:d6:a4:bd:
1f:23:33:1f:3f:2c:1b:1e:02:2b:00:1e:33:af:ab:59:a1:87:
7a:88:58:5d:7c:28:d8:28:00:4c:62:2e:52:64:36:6e:ff:f1:
0a:71:b6:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:20 2024 by rpki-client on console-ams.rpki-client.org