Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/2f33ee-5590-4a22-b8e2-2880612705ee/1/kG4A6zMWHWudv3sMxqmD01tBaYg.roa
File: kG4A6zMWHWudv3sMxqmD01tBaYg.roa (raw, json)
Hash identifier: ccBSOy+U1rOteoOP9e7l6hh3t20N0+2R2oNvDqxdR8E=
Subject key identifier: 90:6E:00:EB:33:16:1D:6B:9D:BF:7B:0C:C6:A9:83:D3:5B:41:69:88
Certificate issuer: /CN=dd5f72f0facf52705727c039bdc1fbb7cc97d428
Certificate serial: 05668F31
Authority key identifier: DD:5F:72:F0:FA:CF:52:70:57:27:C0:39:BD:C1:FB:B7:CC:97:D4:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3V9y8PrPUnBXJ8A5vcH7t8yX1Cg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/2f33ee-5590-4a22-b8e2-2880612705ee/1/kG4A6zMWHWudv3sMxqmD01tBaYg.roa
Signing time: Sat 01 Jan 2022 09:03:42 +0000
ROA not before: Sat 01 Jan 2022 09:03:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8937
IP address blocks: 193.141.183.0/24 maxlen: 24
193.141.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90607409 (0x5668f31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5f72f0facf52705727c039bdc1fbb7cc97d428
Validity
Not Before: Jan 1 09:03:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=906e00eb33161d6b9dbf7b0cc6a983d35b416988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0e:99:73:3a:e8:40:d0:85:9f:be:e0:ee:9c:
e8:03:a0:d8:1d:da:3c:12:46:9e:92:05:5a:31:1d:
61:cc:1c:52:b3:2d:78:d5:90:2c:58:35:8f:cd:f6:
4e:4a:be:08:70:79:8c:b7:23:f7:ca:f1:f4:d7:4e:
d0:e9:62:9d:64:15:b9:4b:e6:73:d0:44:ab:84:6c:
56:35:49:5b:ff:5e:ef:b6:07:31:ca:19:b7:ef:ef:
58:cd:c1:90:12:92:a0:0c:d5:86:6a:dd:77:cd:dc:
66:02:5e:fc:67:f0:20:12:6e:a0:89:43:7e:75:01:
40:b2:0e:e0:6a:af:f8:c5:37:b9:35:90:4a:23:6f:
d5:3a:56:53:18:37:d0:f6:0d:cd:8e:41:d2:56:a2:
be:d5:51:ef:cd:9c:b0:e7:f5:7a:51:46:31:f4:d4:
58:83:93:30:ea:55:e4:24:90:d0:70:00:ee:43:0b:
81:66:c6:ec:22:29:58:f9:64:16:2b:e0:c8:29:16:
d4:4e:4c:3e:5a:29:f2:6c:74:93:b9:d9:2c:c8:c0:
db:37:21:dc:c0:19:6e:cb:22:dd:a8:c3:61:0a:da:
09:f6:54:4b:1d:60:aa:bf:63:8c:13:73:1c:ad:c8:
6a:89:24:4d:57:4f:f4:95:6d:99:5f:28:3e:a3:d8:
b3:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:6E:00:EB:33:16:1D:6B:9D:BF:7B:0C:C6:A9:83:D3:5B:41:69:88
X509v3 Authority Key Identifier:
keyid:DD:5F:72:F0:FA:CF:52:70:57:27:C0:39:BD:C1:FB:B7:CC:97:D4:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3V9y8PrPUnBXJ8A5vcH7t8yX1Cg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2f33ee-5590-4a22-b8e2-2880612705ee/1/kG4A6zMWHWudv3sMxqmD01tBaYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/2f33ee-5590-4a22-b8e2-2880612705ee/1/3V9y8PrPUnBXJ8A5vcH7t8yX1Cg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.183.0/24
193.141.188.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a1:24:59:0f:7e:b7:8c:a9:5b:07:e8:32:a9:1c:57:b4:67:
0f:f8:7e:84:35:97:21:f2:b5:e0:a5:40:68:6b:c6:3d:f0:50:
3c:5a:01:6f:43:0e:41:e7:9b:87:68:b7:37:7d:0a:43:05:43:
f6:af:bf:e8:08:68:fa:ec:93:63:1a:db:89:44:9c:9b:6a:89:
88:0b:67:d5:79:76:2d:41:ea:11:45:3d:82:ef:42:d5:a7:29:
0c:5f:c8:01:97:dd:fe:66:61:f6:f6:38:78:e1:fe:3b:e7:09:
a1:6d:92:52:62:1b:dc:fa:f0:8b:f0:a9:31:9f:4d:b4:27:2b:
4b:29:84:06:0c:ca:06:ce:17:25:cd:14:57:cf:e5:b8:fc:67:
cc:8f:1a:8d:39:6d:6d:39:ac:1a:97:2b:91:45:6e:6c:d0:4e:
47:87:ad:04:25:a5:06:0a:27:53:1b:84:27:30:10:a3:75:17:
a8:8b:1a:e4:73:74:3e:3d:f0:3e:6e:f7:bf:a7:09:e8:f3:c8:
72:a7:8b:0f:7d:71:75:19:45:74:f0:1a:52:8e:1a:58:3a:64:
b8:ad:4f:01:75:2a:50:58:d8:9b:d8:f8:96:46:c5:4a:0f:f0:
8c:82:82:53:e9:e9:3b:b8:d4:cd:fe:02:1f:cd:04:4e:11:40:
92:d2:59:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:51 2023 by rpki-client on console-fra.rpki-client.org