Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/DQKuJsTl-9_3gdQANcNMizWx-uc.roa
File: DQKuJsTl-9_3gdQANcNMizWx-uc.roa (raw, json)
Hash identifier: 7lDHJbDYAE3LdW7zEPSRxQr9uITgj9mX0go2uXxUVyo=
Subject key identifier: 0D:02:AE:26:C4:E5:FB:DF:F7:81:D4:00:35:C3:4C:8B:35:B1:FA:E7
Certificate issuer: /CN=3edee0ae8834705088805044be75c7403b1dc7e2
Certificate serial: 0344CEC7
Authority key identifier: 3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/DQKuJsTl-9_3gdQANcNMizWx-uc.roa
Signing time: Sat 01 Jan 2022 05:57:26 +0000
ROA not before: Sat 01 Jan 2022 05:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 193.26.246.0/24 maxlen: 24
193.26.249.0/24 maxlen: 24
193.26.252.0/24 maxlen: 24
193.26.250.0/24 maxlen: 24
193.26.253.0/24 maxlen: 24
193.26.247.0/24 maxlen: 24
193.26.248.0/24 maxlen: 24
193.26.251.0/24 maxlen: 24
193.26.254.0/24 maxlen: 24
193.26.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54841031 (0x344cec7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3edee0ae8834705088805044be75c7403b1dc7e2
Validity
Not Before: Jan 1 05:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d02ae26c4e5fbdff781d40035c34c8b35b1fae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b3:df:a1:5b:af:9d:30:06:fe:1e:b7:29:16:
b5:04:4f:1f:05:b2:fc:9d:ed:bc:b9:64:b2:36:48:
46:3f:86:98:23:95:cd:a7:9a:bd:05:f7:b4:06:7a:
25:2f:d9:e0:9e:dc:c8:a9:ae:48:08:b3:c3:45:d2:
d1:a0:90:84:1e:32:a4:c8:fa:7d:12:30:d3:ae:23:
70:c4:4e:71:8e:ce:0e:a5:88:0b:6d:66:73:76:dd:
82:2c:c5:25:92:31:73:e4:41:6e:37:3a:ae:e8:c7:
c9:34:13:40:f3:bd:c4:42:be:89:f9:a9:9c:6d:1c:
9d:40:a3:8e:bd:9f:ee:7e:d9:24:8d:bb:83:46:29:
b6:27:92:c1:e5:25:5e:6f:47:21:26:b5:dc:9d:22:
c0:83:51:aa:98:8c:66:7d:65:3a:13:a2:54:9a:b5:
09:59:07:6b:7e:9c:cf:23:a7:c8:22:40:ad:74:81:
95:72:47:d4:00:f5:c2:30:75:f8:0b:1b:e5:90:e7:
5f:29:52:b1:e4:76:01:44:a7:e8:85:f2:92:84:65:
63:bd:a0:f9:e4:a7:40:9e:f6:54:35:3d:94:45:c3:
2e:cf:c5:22:bc:b2:a8:77:e8:49:3d:9c:7d:e7:93:
0c:cb:b0:e9:bd:c3:97:cf:9e:57:da:f0:07:7c:3a:
c2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:02:AE:26:C4:E5:FB:DF:F7:81:D4:00:35:C3:4C:8B:35:B1:FA:E7
X509v3 Authority Key Identifier:
keyid:3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/DQKuJsTl-9_3gdQANcNMizWx-uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.246.0-193.26.255.255
Signature Algorithm: sha256WithRSAEncryption
2a:f9:fc:d7:f1:ca:2b:bd:bb:82:e0:75:b3:4d:41:22:e2:fa:
50:c5:45:81:34:fb:6e:c7:a3:65:a0:50:70:5e:12:54:a5:a5:
aa:d5:fc:01:f0:a7:f7:dd:04:3b:d1:d1:06:4e:d7:49:e0:a3:
ff:25:e6:9b:05:16:3f:2b:f0:15:72:82:93:27:14:96:0f:15:
ef:37:a6:57:37:71:02:de:51:a7:f4:7a:36:af:1c:3a:5c:c3:
04:c2:d9:a2:56:1d:56:a7:71:57:5b:97:e8:a1:6a:fd:ab:5e:
6c:8e:b7:96:20:b0:09:8c:00:3c:a9:ee:e9:f6:81:7f:ec:95:
05:2d:e1:b6:1f:1a:6b:f0:31:0e:ff:b0:ea:18:f0:12:7a:fb:
1c:e0:2e:d3:d6:35:5b:cd:3c:15:21:f7:bb:53:11:5d:25:bd:
96:03:84:d0:b8:1c:48:6c:7d:4d:6c:67:40:dd:5d:48:59:7a:
84:e3:98:22:ed:24:e0:b1:d7:ce:e8:5d:88:a9:07:8e:1e:cf:
40:bc:26:8a:66:99:73:bb:4f:4d:4c:11:f4:8a:2a:cc:4e:aa:
78:1e:67:c5:6b:60:95:18:74:d7:2c:63:2e:87:ac:13:af:4d:
bb:cb:38:66:2f:63:9a:e9:d2:f3:9b:42:65:8b:90:fa:ba:78:
13:8a:3a:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:26 2024 by rpki-client on console-ams.rpki-client.org