Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/dbad88-f818-431e-87a6-dfee984037ac/1/adKNpiiA-ONbDAQTUtnMnco_JhQ.roa
File: adKNpiiA-ONbDAQTUtnMnco_JhQ.roa (raw, json)
Hash identifier: a3Rei4Cbk2f66jJQJyKjXIuY7eWUbq2smqqTnvsYE1Y=
Subject key identifier: 69:D2:8D:A6:28:80:F8:E3:5B:0C:04:13:52:D9:CC:9D:CA:3F:26:14
Certificate issuer: /CN=81300300de5005ada2bb66c268998a40c33ad23b
Certificate serial: 0135A5
Authority key identifier: 81:30:03:00:DE:50:05:AD:A2:BB:66:C2:68:99:8A:40:C3:3A:D2:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTADAN5QBa2iu2bCaJmKQMM60js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/dbad88-f818-431e-87a6-dfee984037ac/1/adKNpiiA-ONbDAQTUtnMnco_JhQ.roa
Signing time: Tue 14 Jun 2022 15:28:44 +0000
ROA not before: Tue 14 Jun 2022 15:28:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12941
IP address blocks: 193.141.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79269 (0x135a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81300300de5005ada2bb66c268998a40c33ad23b
Validity
Not Before: Jun 14 15:28:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69d28da62880f8e35b0c041352d9cc9dca3f2614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:be:06:19:dd:b3:60:98:8c:96:33:ae:72:23:
aa:8e:e7:ef:15:67:5f:8e:da:98:ed:42:17:a8:fe:
bb:99:9c:1a:a6:1a:48:7e:f3:87:93:b9:54:21:e6:
48:06:3f:51:f3:d4:3d:aa:9f:4a:8a:62:e9:66:6d:
db:59:23:c6:3e:aa:d1:fe:dc:1b:7b:8f:42:2c:ac:
a6:c5:77:b7:e6:d3:ed:f3:a0:56:8b:84:a1:c0:c2:
da:bc:d5:fb:0b:8a:ec:38:94:72:b3:38:08:52:ac:
93:53:b4:a4:eb:32:c7:6f:bd:03:e8:39:6c:a5:80:
09:89:6b:c8:27:45:bf:2b:1e:6f:f8:47:89:55:ee:
00:23:74:ae:14:7b:2c:a2:63:bc:73:e3:77:0a:ee:
f0:5a:5f:4c:e1:a6:0c:fe:0f:ac:6a:fe:7f:92:e5:
e3:f4:69:f9:e9:e4:a5:31:15:32:80:c1:18:87:ea:
4f:17:c6:12:66:17:58:bb:42:49:4d:ce:b6:92:73:
6e:fd:70:05:49:50:80:e8:ea:5f:5e:e5:66:ad:30:
6e:11:75:37:d8:1c:11:35:ad:51:66:ff:3f:70:2c:
7e:a2:1b:08:af:93:d4:bf:df:1c:99:34:48:a1:5f:
33:9f:fa:cd:1f:5e:1d:ca:96:3a:3b:1b:89:3f:41:
c7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D2:8D:A6:28:80:F8:E3:5B:0C:04:13:52:D9:CC:9D:CA:3F:26:14
X509v3 Authority Key Identifier:
keyid:81:30:03:00:DE:50:05:AD:A2:BB:66:C2:68:99:8A:40:C3:3A:D2:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTADAN5QBa2iu2bCaJmKQMM60js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/dbad88-f818-431e-87a6-dfee984037ac/1/adKNpiiA-ONbDAQTUtnMnco_JhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/dbad88-f818-431e-87a6-dfee984037ac/1/gTADAN5QBa2iu2bCaJmKQMM60js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.176.0/24
Signature Algorithm: sha256WithRSAEncryption
31:1b:ec:cf:5c:d9:41:05:8f:36:f9:73:be:61:2c:07:d0:3d:
19:18:35:80:89:f1:5a:fb:83:61:d3:ba:5f:28:79:2e:21:3b:
b7:5c:73:af:24:ef:38:ec:29:1e:40:b5:bf:3a:24:02:42:be:
15:dc:76:42:bf:a5:09:46:5c:fd:cb:4b:4e:78:23:c6:73:f5:
f9:a4:03:7d:43:35:82:b1:5d:ea:e8:e9:20:86:bb:d2:99:f7:
b1:bc:37:f3:14:0c:0d:8e:5a:16:d4:eb:47:3a:bb:94:7d:fb:
71:f6:80:6a:f4:4c:a0:7a:79:e4:b7:f2:55:a2:cf:e1:a7:4b:
41:73:dd:a8:c9:4a:f6:76:7e:ea:98:f9:f3:07:d9:36:32:e8:
8a:14:5e:26:92:15:97:97:bd:3f:24:4b:13:3a:5a:79:c3:c1:
f6:03:df:c2:ee:a9:77:10:19:e3:b0:57:c4:a4:5c:09:0d:41:
eb:57:31:72:a4:b1:7c:e8:ac:cd:00:3d:12:dd:0e:c0:ea:51:
38:40:35:08:6f:a0:49:90:61:f6:59:3f:20:d5:6a:a6:ae:73:
f4:68:c0:b9:54:04:72:a9:ae:98:dc:e8:50:38:02:08:64:81:
15:d8:26:b3:34:b0:17:7d:09:ec:0f:a3:09:58:b4:f6:38:68:
24:7a:1f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:19 2024 by rpki-client on console-fra.rpki-client.org