Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/5IcjUy9kHNyPZzIYUMFhAn-cvkw.roa
File: 5IcjUy9kHNyPZzIYUMFhAn-cvkw.roa (raw, json)
Hash identifier: x+JWrj9YjZ7Up4/U9DqHGrDqQlSLv/DwM9P6+JsZdTY=
Subject key identifier: E4:87:23:53:2F:64:1C:DC:8F:67:32:18:50:C1:61:02:7F:9C:BE:4C
Certificate issuer: /CN=c4ff23b1c371352f39b73d39a4e07f8ca98ccd67
Certificate serial: 04E1557D
Authority key identifier: C4:FF:23:B1:C3:71:35:2F:39:B7:3D:39:A4:E0:7F:8C:A9:8C:CD:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP8jscNxNS85tz05pOB_jKmMzWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/5IcjUy9kHNyPZzIYUMFhAn-cvkw.roa
Signing time: Sat 01 Jan 2022 03:53:27 +0000
ROA not before: Sat 01 Jan 2022 03:53:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201461
IP address blocks: 93.191.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81876349 (0x4e1557d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff23b1c371352f39b73d39a4e07f8ca98ccd67
Validity
Not Before: Jan 1 03:53:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e48723532f641cdc8f67321850c161027f9cbe4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:90:3a:c2:d4:9d:0f:b8:08:b7:a0:dd:57:f0:
48:05:bd:2a:f6:70:ac:72:31:84:bd:34:88:41:8e:
df:7d:98:7e:24:af:1a:de:7f:b8:eb:00:98:15:8b:
3a:61:3c:01:8e:2a:95:1c:e7:b0:97:cb:33:ba:a5:
f3:8a:30:4f:88:17:a8:1c:a0:5a:3a:24:f9:94:e3:
24:d0:33:5b:d0:1d:8d:3c:88:29:98:84:92:fa:bd:
ef:27:8a:83:ae:e4:33:90:46:98:c3:af:22:08:96:
96:69:e6:4b:96:18:3b:ff:63:07:c4:d0:b8:6e:c4:
06:b0:7e:8d:b4:3c:9f:e3:92:5f:17:ce:31:24:ec:
bd:68:01:52:a1:a9:8a:6c:14:f6:7b:6a:42:74:88:
7b:d3:28:f1:75:ad:96:3e:2e:67:f0:cb:d8:6e:0a:
00:73:2a:8a:2b:84:74:a5:89:5a:77:93:16:1b:42:
87:5c:70:a2:be:02:68:51:d1:a2:38:a9:58:f1:15:
11:e6:77:a7:1e:86:20:0a:82:fc:b8:ee:23:a4:db:
f7:4f:a6:1c:87:2b:3d:1b:db:64:66:40:a0:56:c4:
13:76:37:61:51:2d:98:4d:8c:d5:b4:2f:13:32:cd:
34:a4:ca:9f:f4:f2:7d:a2:84:ea:cc:48:8e:5e:41:
c7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:87:23:53:2F:64:1C:DC:8F:67:32:18:50:C1:61:02:7F:9C:BE:4C
X509v3 Authority Key Identifier:
keyid:C4:FF:23:B1:C3:71:35:2F:39:B7:3D:39:A4:E0:7F:8C:A9:8C:CD:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP8jscNxNS85tz05pOB_jKmMzWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/5IcjUy9kHNyPZzIYUMFhAn-cvkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/c65aab-8a52-476f-9e32-10959aaa8b3e/1/xP8jscNxNS85tz05pOB_jKmMzWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.191.198.0/24
Signature Algorithm: sha256WithRSAEncryption
64:f8:e4:e9:8b:46:11:7b:43:67:90:68:00:13:f3:00:b0:6f:
c3:37:14:32:9c:c4:4f:84:e8:f4:40:ae:a1:f2:e7:b2:6e:8f:
6e:a5:1a:ac:3d:e0:b7:9e:6d:c9:ec:5c:f4:41:b4:1b:0d:66:
ed:52:56:0d:21:b0:ca:9a:ec:3d:c9:59:7c:c7:94:81:93:4f:
20:3f:b8:24:33:dc:3a:6c:8a:ed:30:fd:01:8b:f9:93:e1:3f:
8d:85:b8:6f:09:1e:34:37:92:12:bd:07:43:ea:22:a9:b5:01:
18:6e:33:41:ca:af:b5:13:d8:ba:f3:24:8b:98:ef:db:cf:89:
76:8f:10:3d:b7:eb:79:17:e3:00:4e:c3:8f:e9:37:98:c1:4f:
a3:2f:a9:e3:08:c2:f4:59:b6:d4:c1:e1:b3:d1:75:3a:c8:7a:
ab:44:b1:fd:aa:05:7a:fd:36:e9:b1:89:c0:98:7c:3f:81:4c:
09:d4:ed:93:90:28:45:61:4e:91:83:c4:0f:d7:01:9b:dc:3a:
62:67:c5:2f:36:f3:94:e3:ca:52:d4:67:81:ca:fc:24:09:c5:
41:63:41:66:04:88:ac:7c:cb:48:ff:ca:bf:5c:ac:b3:4e:a4:
46:0a:40:f5:31:db:13:9a:75:56:dc:f1:65:48:95:21:03:02:
7b:78:08:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:03 2024 by rpki-client on console-ams.rpki-client.org