Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/aae9a1-d05d-47ca-91de-d6d55c169e16/1/XzQG7P476Ee7bP23ALa7McRqfbo.roa
File: XzQG7P476Ee7bP23ALa7McRqfbo.roa (raw, json)
Hash identifier: vgmdkK6JpPrcBHTRLGnLnSwIWtUfJ+uvojgZXWaBK7E=
Subject key identifier: 5F:34:06:EC:FE:3B:E8:47:BB:6C:FD:B7:00:B6:BB:31:C4:6A:7D:BA
Certificate issuer: /CN=06c92df2c9faa2915fc5feb5a4270183419faef2
Certificate serial: 04219BF6
Authority key identifier: 06:C9:2D:F2:C9:FA:A2:91:5F:C5:FE:B5:A4:27:01:83:41:9F:AE:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bskt8sn6opFfxf61pCcBg0GfrvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/aae9a1-d05d-47ca-91de-d6d55c169e16/1/XzQG7P476Ee7bP23ALa7McRqfbo.roa
Signing time: Sat 01 Jan 2022 13:04:23 +0000
ROA not before: Sat 01 Jan 2022 13:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61423
IP address blocks: 193.200.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69311478 (0x4219bf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c92df2c9faa2915fc5feb5a4270183419faef2
Validity
Not Before: Jan 1 13:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f3406ecfe3be847bb6cfdb700b6bb31c46a7dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8b:bd:8b:92:03:6d:1a:1d:e0:ca:f8:f6:7b:
7d:88:ec:5d:c0:b8:a2:57:7f:7e:f7:28:3b:52:ee:
4a:4d:bb:25:8e:ec:56:89:4c:6e:9f:11:a4:81:4d:
4e:0a:7d:b5:78:4d:c2:68:69:aa:96:04:0d:7e:54:
8c:13:d4:45:4d:39:35:d1:b2:73:3a:91:f5:ea:b0:
ca:3f:89:5d:b8:f9:57:33:8e:0e:b7:bf:23:98:8c:
8c:8f:c7:6b:cd:1d:ad:16:33:cc:ab:6c:8c:be:db:
ec:44:ef:b3:9c:7d:bf:49:f5:af:99:1c:a5:53:0a:
9c:a2:c2:59:f8:6e:28:f2:b9:c1:4b:73:e9:06:48:
ea:d9:6c:2b:87:2f:b3:68:91:24:ac:2d:8c:91:e5:
b9:a1:58:a8:8f:f7:56:77:58:20:77:3e:07:3c:64:
31:ac:95:14:9d:9f:b7:52:fd:e2:3c:bc:3c:d5:ab:
a2:95:f4:26:85:ad:84:d9:31:a6:2a:71:14:95:ce:
8a:51:d6:d3:1e:71:f9:32:de:8b:15:ed:8a:0a:36:
42:c4:41:90:d9:72:12:09:96:9f:80:74:42:9e:07:
33:4d:5d:18:a6:8e:b0:78:8e:0f:5e:d6:80:59:9c:
35:33:ca:9f:45:2f:67:fa:f1:94:66:c4:63:db:21:
69:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:34:06:EC:FE:3B:E8:47:BB:6C:FD:B7:00:B6:BB:31:C4:6A:7D:BA
X509v3 Authority Key Identifier:
keyid:06:C9:2D:F2:C9:FA:A2:91:5F:C5:FE:B5:A4:27:01:83:41:9F:AE:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bskt8sn6opFfxf61pCcBg0GfrvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/aae9a1-d05d-47ca-91de-d6d55c169e16/1/XzQG7P476Ee7bP23ALa7McRqfbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/aae9a1-d05d-47ca-91de-d6d55c169e16/1/Bskt8sn6opFfxf61pCcBg0GfrvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.196.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:91:80:45:a8:8e:9b:b3:83:8b:6b:9c:3d:e9:2f:f1:8f:31:
d9:cd:80:47:a3:39:c5:f4:a3:3e:78:1b:e4:9b:e9:35:d3:f5:
73:8d:ce:5a:db:8e:b1:20:63:c9:33:05:c9:8e:8c:74:d4:a3:
80:c7:28:75:eb:61:12:6a:dd:c1:4f:67:6c:05:85:7b:99:d3:
80:01:cc:92:9c:48:5a:86:5c:fb:22:2d:58:4d:33:d4:00:e8:
a2:c5:df:3b:25:d8:be:65:ed:7f:4e:8a:e7:ba:5a:ba:61:87:
76:d1:be:aa:79:35:07:bf:80:23:4d:e6:03:50:95:e8:a1:a9:
18:5e:1b:2a:3f:05:d1:2d:ba:71:1e:df:fb:7c:f6:18:22:e2:
c0:f5:aa:be:65:6d:94:55:81:1d:13:50:59:1c:1b:43:8d:72:
bd:68:de:8b:7b:6e:c2:b0:86:28:8c:af:d5:36:17:47:b2:9b:
aa:ee:30:61:d0:d4:d6:63:8f:ef:ad:a0:4c:4e:10:55:b5:e0:
9a:ab:cc:91:26:1e:a3:ab:6c:17:72:8e:cd:19:99:81:02:cb:
98:7c:14:f4:22:83:44:d7:c9:c4:90:90:71:08:93:17:8c:d0:
d9:a4:00:5c:d5:8e:44:22:e2:a1:24:96:e8:6a:2d:09:28:8a:
a4:00:3a:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:42 2023 by rpki-client on console-ams.rpki-client.org