Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/d5bd98-ff34-4263-8d0f-f87c50df6fb7/1/pB6H9kLv0WZM6FprrwQw0XiKNPQ.roa
File: pB6H9kLv0WZM6FprrwQw0XiKNPQ.roa (raw, json)
Hash identifier: A+oZiGDxrhq6sBnvkbViUjNT4Hd9yzRwEJTkYZcX7Qo=
Subject key identifier: A4:1E:87:F6:42:EF:D1:66:4C:E8:5A:6B:AF:04:30:D1:78:8A:34:F4
Certificate issuer: /CN=f3fef8b0c1ca47e716da219d310280287d36ebe3
Certificate serial: 013479
Authority key identifier: F3:FE:F8:B0:C1:CA:47:E7:16:DA:21:9D:31:02:80:28:7D:36:EB:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8_74sMHKR-cW2iGdMQKAKH026-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/d5bd98-ff34-4263-8d0f-f87c50df6fb7/1/pB6H9kLv0WZM6FprrwQw0XiKNPQ.roa
Signing time: Fri 27 May 2022 08:39:13 +0000
ROA not before: Fri 27 May 2022 08:39:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39036
IP address blocks: 193.151.226.0/24 maxlen: 24
2001:67c:2bf4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78969 (0x13479)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3fef8b0c1ca47e716da219d310280287d36ebe3
Validity
Not Before: May 27 08:39:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a41e87f642efd1664ce85a6baf0430d1788a34f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ed:86:a6:6e:d8:ef:39:cd:2c:c3:5a:4f:85:
87:42:02:31:c5:22:79:23:d7:65:22:a9:ed:80:16:
f9:7e:55:47:17:33:50:59:6e:e1:8d:b1:fa:cc:d0:
64:9c:8a:11:cc:dc:6d:22:70:9e:cd:ae:38:ea:83:
60:16:a7:35:f3:9b:73:55:48:a4:87:ab:ec:04:58:
d2:10:e1:d1:08:51:38:c4:c4:16:4d:a0:43:1b:71:
be:30:a2:49:16:fa:e1:86:1c:1d:b7:40:d4:12:18:
1e:3c:a8:59:8a:f8:4e:af:66:32:3c:93:94:31:e3:
dc:88:14:27:bb:86:c4:51:fd:c4:f4:48:04:79:c9:
21:05:6b:e3:1f:87:8a:63:40:0b:31:28:b1:ed:31:
82:b0:e8:1f:e5:3a:74:c1:a3:87:f8:69:6f:32:79:
3e:2a:0f:7f:fc:20:04:e5:d0:12:c9:ea:66:6a:f9:
b7:7a:5b:c4:5c:36:50:62:8f:bc:92:37:2f:44:24:
ea:78:c6:5c:9d:70:08:65:9d:cb:0b:7a:51:80:05:
cc:dc:ce:d4:29:b7:51:96:4b:bd:2e:97:f8:0a:30:
b5:71:df:3a:25:3f:92:87:8e:16:14:2b:e3:de:35:
77:b1:70:2c:6d:48:83:51:86:5e:2f:e3:b3:55:9c:
95:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:1E:87:F6:42:EF:D1:66:4C:E8:5A:6B:AF:04:30:D1:78:8A:34:F4
X509v3 Authority Key Identifier:
keyid:F3:FE:F8:B0:C1:CA:47:E7:16:DA:21:9D:31:02:80:28:7D:36:EB:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8_74sMHKR-cW2iGdMQKAKH026-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/d5bd98-ff34-4263-8d0f-f87c50df6fb7/1/pB6H9kLv0WZM6FprrwQw0XiKNPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/d5bd98-ff34-4263-8d0f-f87c50df6fb7/1/8_74sMHKR-cW2iGdMQKAKH026-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.226.0/24
IPv6:
2001:67c:2bf4::/48
Signature Algorithm: sha256WithRSAEncryption
51:8b:d5:b2:20:b2:51:31:5a:7d:fe:93:42:56:ba:3b:5e:67:
bd:5b:fc:64:48:cd:af:b9:db:4f:4d:83:78:1d:40:07:0f:47:
77:b6:59:37:8c:39:8f:bf:b3:b8:32:e2:ae:cc:d1:79:94:ee:
73:6b:cb:e6:a6:1a:e5:1e:97:52:49:68:5b:dd:82:ef:32:92:
ca:f5:27:2d:f4:d6:a7:74:52:82:12:da:14:8b:53:42:d9:0f:
55:50:7c:56:5b:24:d6:7e:db:d6:28:e7:d8:e3:7a:31:08:03:
1b:3e:c7:ce:2d:46:72:bb:f8:a3:44:98:7a:51:c2:07:44:97:
07:9f:da:96:42:e7:b8:b9:6c:11:92:bd:8e:0c:1a:83:ff:4a:
40:cb:2b:e2:0d:2c:a4:71:fc:57:81:60:23:fb:44:49:86:ac:
93:9f:ef:bb:32:68:11:d5:61:a2:66:77:22:ff:77:95:cf:db:
b4:86:55:fa:3c:b0:ef:d1:be:63:4e:a5:af:46:e5:ee:0d:88:
97:2f:3f:33:a6:28:64:19:25:c4:92:46:54:10:8a:05:51:1f:
c3:00:0c:a6:b4:eb:ed:51:5b:ab:88:a8:94:07:c7:2c:64:50:
aa:98:ba:ef:d3:f2:2a:82:40:ad:e5:d0:8f:aa:91:ae:c9:b1:
b1:9d:79:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:15 2024 by rpki-client on console-ams.rpki-client.org