Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/cZXg7y7-_VP1j7QoPhWZYSdMg1A.roa
File: cZXg7y7-_VP1j7QoPhWZYSdMg1A.roa (raw, json)
Hash identifier: Mw4y0hLiVpjNMZpwO7y7hdYnkaYgo2dO2mQDjQOsh1g=
Subject key identifier: 71:95:E0:EF:2E:FE:FD:53:F5:8F:B4:28:3E:15:99:61:27:4C:83:50
Certificate issuer: /CN=e801f23ce821c264d67727536ec183537594c5f2
Certificate serial: 01847AE9F8738A2CA2A63663A3FE1DF2A65D
Authority key identifier: E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/cZXg7y7-_VP1j7QoPhWZYSdMg1A.roa
Signing time: Tue 15 Nov 2022 10:51:04 +0000
ROA not before: Tue 15 Nov 2022 10:51:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8769
IP address blocks: 193.10.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:e9:f8:73:8a:2c:a2:a6:36:63:a3:fe:1d:f2:a6:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e801f23ce821c264d67727536ec183537594c5f2
Validity
Not Before: Nov 15 10:51:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7195e0ef2efefd53f58fb4283e159961274c8350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:51:c2:12:e4:6e:70:32:f4:b6:a5:78:dc:c4:
25:d1:9e:aa:71:4f:67:70:f5:a7:fe:71:d4:2f:43:
ff:3a:af:dc:46:30:19:b1:54:7f:34:89:a6:8b:f1:
28:d3:68:7d:4e:15:c2:93:c8:93:d1:4f:54:50:c4:
b7:5d:ec:c0:10:ff:c6:c0:55:82:99:89:fc:55:fa:
d1:31:c0:35:01:19:dd:c4:d5:f4:32:81:30:98:3d:
e2:26:a9:1a:a2:11:e0:07:7c:f0:97:a0:fa:86:a7:
5a:7a:3a:d0:23:22:31:ed:f1:05:46:fc:50:7e:97:
0b:ed:a1:d0:82:34:ba:da:2d:c7:82:a4:aa:24:10:
5c:7d:66:06:a9:e4:83:4f:58:5c:71:e4:a9:fd:57:
73:85:3f:bd:bd:e4:38:02:d5:30:72:6a:31:1c:57:
04:f9:c2:c4:98:1c:77:9d:85:e2:e8:9c:6a:68:77:
63:4b:52:70:30:ed:33:0f:a0:ea:2a:56:d6:59:27:
87:55:f9:8d:d1:28:91:64:ca:a8:db:0d:e2:45:07:
fe:ed:4f:3b:8a:76:8d:43:3b:50:c6:11:7a:be:f0:
3b:0b:55:65:ce:a5:f7:c8:39:9e:37:21:83:e2:e7:
a7:57:6b:38:03:2b:1e:a3:2f:c5:86:e0:ae:45:e6:
ab:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:95:E0:EF:2E:FE:FD:53:F5:8F:B4:28:3E:15:99:61:27:4C:83:50
X509v3 Authority Key Identifier:
keyid:E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/cZXg7y7-_VP1j7QoPhWZYSdMg1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/6AHyPOghwmTWdydTbsGDU3WUxfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.10.144.0/24
Signature Algorithm: sha256WithRSAEncryption
96:81:f3:0f:df:f2:ca:d4:15:d0:b9:f5:23:8f:f8:8a:07:cf:
0b:40:0d:13:1e:49:6c:ec:35:c0:2e:08:ca:36:a3:c5:33:4b:
81:a7:4c:c2:9e:64:97:ed:76:ac:08:13:d8:4c:45:74:6a:a8:
c0:44:74:2a:4e:83:12:d3:95:ad:a5:f8:3b:c6:f1:26:5f:bb:
72:b4:42:b3:8b:00:f1:4b:d2:dd:15:2d:9e:fe:99:0f:28:e0:
52:15:de:0c:b9:79:e2:6d:69:7e:a3:b8:60:38:08:1b:26:d9:
50:1c:1d:39:95:66:48:61:a2:5c:3f:b1:39:0d:96:a5:b4:bd:
d1:72:97:41:44:40:03:34:ff:f6:98:fd:9b:68:df:d2:30:e4:
69:db:39:54:64:71:a9:c2:40:99:dc:ba:99:57:78:c1:69:c3:
cf:a8:97:d7:7e:f5:80:9e:ba:2d:76:dc:dc:61:93:85:43:20:
a8:c4:a6:41:2f:99:b3:95:1f:f2:4c:36:63:7c:df:35:1c:63:
0c:dc:cc:4b:05:6a:cd:bc:26:e8:fe:07:4f:f4:77:e2:d5:15:
5b:f9:52:56:66:11:03:5a:81:a2:9a:b3:56:bc:aa:44:13:d2:
d3:2c:3c:3f:77:ea:d3:a4:27:38:f9:78:cd:c2:67:18:1b:7c:
a4:e2:29:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:20 2024 by rpki-client on console-fra.rpki-client.org