Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/RE1xrxL-dJZZn4mQh_jNWMLYdYM.roa
File: RE1xrxL-dJZZn4mQh_jNWMLYdYM.roa (raw, json)
Hash identifier: 3pIUbqqzaJEdgqki+WbkFMJlc7LRmuMLxG6cX4vJ/BY=
Subject key identifier: 44:4D:71:AF:12:FE:74:96:59:9F:89:90:87:F8:CD:58:C2:D8:75:83
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 05E23016
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/RE1xrxL-dJZZn4mQh_jNWMLYdYM.roa
Signing time: Sat 01 Jan 2022 11:03:00 +0000
ROA not before: Sat 01 Jan 2022 11:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49882
IP address blocks: 93.191.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98709526 (0x5e23016)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Jan 1 11:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=444d71af12fe7496599f899087f8cd58c2d87583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e7:5d:c4:75:f1:35:0a:c9:db:a1:83:da:55:
a7:ba:ec:40:ab:c9:b0:18:ed:c5:02:cd:5e:01:dd:
ed:9a:7e:99:62:9c:fc:6a:24:72:04:be:be:92:e3:
79:26:52:57:b1:c4:63:28:83:35:c8:b1:26:84:06:
d7:50:67:11:1c:bd:1a:00:9b:91:c0:f8:de:17:52:
3c:f8:08:a5:25:de:1f:af:01:ae:e9:d6:94:18:a7:
b7:a7:14:4b:54:70:0d:90:db:94:8d:08:9e:3f:4d:
a9:7c:b7:90:69:06:e3:e0:f7:56:69:d9:11:a8:81:
6d:08:e1:70:a9:57:fd:f4:b2:03:66:1f:ff:c3:69:
05:be:ed:32:ad:f0:e4:1f:8e:7d:09:c0:14:43:8f:
45:38:5c:6f:4e:8d:21:b9:9a:6f:2d:73:95:0a:ea:
c6:fd:04:27:6d:d1:af:05:83:c6:47:bf:64:23:93:
11:68:21:af:11:de:49:fd:ef:d1:07:85:ca:b7:97:
37:0b:bb:5f:ae:10:dc:d6:45:de:07:f3:4b:9b:3e:
37:40:b7:6b:61:f0:9e:51:74:44:c1:37:8d:e8:a2:
a3:f3:c1:72:5d:6f:20:71:4e:8a:04:bf:b7:38:77:
8b:ea:93:51:94:ec:f8:49:73:a1:67:d6:c4:45:47:
7c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:4D:71:AF:12:FE:74:96:59:9F:89:90:87:F8:CD:58:C2:D8:75:83
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/RE1xrxL-dJZZn4mQh_jNWMLYdYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.191.174.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:cd:cc:ca:c3:aa:c2:70:01:34:6f:5d:bd:b1:f7:3b:ba:1c:
2b:24:c5:4f:11:ce:7e:86:76:92:1a:cf:fd:ad:d3:ff:32:8b:
f7:b0:77:79:25:5c:37:4b:aa:3f:cf:c2:8c:96:39:fb:7b:ad:
cc:ad:26:d5:b7:02:ff:f0:0d:c1:58:df:1a:c3:1e:4c:9a:56:
44:3a:36:4d:ed:31:d8:fb:5e:21:28:c8:05:82:cb:8e:cb:f3:
f9:1e:30:e3:14:34:36:b6:f4:7c:07:00:ea:9a:14:0e:11:a9:
f0:31:94:c3:5e:31:ae:c0:36:c8:e9:dd:31:ee:30:45:4f:c1:
c7:b9:43:72:a8:e2:17:4e:8c:75:09:c0:62:a9:70:27:b9:c7:
44:fe:5c:07:48:5a:b8:c3:11:c3:84:ef:24:6e:d9:01:b3:96:
9f:e3:af:7e:f3:8f:19:c7:34:e7:ed:d7:69:bf:8f:c2:7b:d2:
42:31:96:e6:b6:5a:ac:86:dc:8b:ec:83:7d:82:23:cf:4b:0e:
b3:3d:2d:41:66:9c:72:51:23:ee:9f:79:ab:c9:64:3a:4a:8a:
b6:32:2f:ec:20:fd:09:f8:09:b7:ea:1f:4d:0e:ca:03:9a:78:
0d:c1:f2:f5:e1:d8:f7:53:82:3c:1a:78:40:44:24:b3:48:b7:
52:12:28:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:23 2023 by rpki-client on console-ams.rpki-client.org