Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/30c592-0ac6-4f73-95bf-ab5956b4d970/1/ffv8LFmQU9ZmWcTQhtOgcEpEbdk.roa
File: ffv8LFmQU9ZmWcTQhtOgcEpEbdk.roa (raw, json)
Hash identifier: cAyLHHCcD04/sZPgovpWSNZhNryPUSF7y2p0DIqdqRI=
Subject key identifier: 7D:FB:FC:2C:59:90:53:D6:66:59:C4:D0:86:D3:A0:70:4A:44:6D:D9
Certificate issuer: /CN=8e58d8c61f63350c77bef1d66b1ccfa5a00e0ddb
Certificate serial: 11DBC2E0
Authority key identifier: 8E:58:D8:C6:1F:63:35:0C:77:BE:F1:D6:6B:1C:CF:A5:A0:0E:0D:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jljYxh9jNQx3vvHWaxzPpaAODds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/30c592-0ac6-4f73-95bf-ab5956b4d970/1/ffv8LFmQU9ZmWcTQhtOgcEpEbdk.roa
Signing time: Sat 01 Jan 2022 11:54:47 +0000
ROA not before: Sat 01 Jan 2022 11:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31060
IP address blocks: 193.23.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 299614944 (0x11dbc2e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e58d8c61f63350c77bef1d66b1ccfa5a00e0ddb
Validity
Not Before: Jan 1 11:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7dfbfc2c599053d66659c4d086d3a0704a446dd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:63:5a:4b:10:88:57:97:7f:cf:77:a6:89:f1:
e9:dc:e1:83:3e:2e:29:2c:cf:3e:f0:68:30:9c:ac:
ab:2a:67:f4:b3:e4:a2:02:a4:3c:5d:c4:18:dd:a7:
b6:2e:4e:89:3f:18:e3:c0:c2:04:4a:7d:a8:cf:1d:
c0:cc:7f:ff:4e:64:4b:23:45:38:15:66:45:24:6e:
c0:9e:83:51:63:36:e2:43:12:17:04:f3:1b:a3:f1:
7d:7e:df:5d:f0:a4:dc:d2:83:75:f8:b3:b4:96:ae:
49:94:d9:02:4a:a4:6c:84:e2:a2:b4:5d:d8:58:97:
cb:f9:86:8b:00:2f:a0:90:26:45:05:8a:0b:21:47:
df:84:4a:d0:fd:94:e5:8e:cb:35:04:74:59:71:eb:
ae:2b:82:df:04:e2:32:4d:cc:78:57:94:b2:c1:3f:
02:0c:95:28:b3:69:b0:69:e8:14:f1:77:30:45:6a:
f9:7b:12:be:4c:50:00:53:d7:bb:ea:44:8b:9e:b5:
2b:7e:e4:f2:ef:d5:a0:d2:1e:e4:97:4a:d4:41:ad:
f2:6b:7d:e2:4a:b5:f7:13:e5:8c:92:40:4e:81:fd:
d2:66:a6:78:32:56:fa:5c:2e:9c:45:6e:d0:10:a4:
02:9a:02:41:58:bb:88:a0:2c:7d:17:9e:13:c3:aa:
7f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:FB:FC:2C:59:90:53:D6:66:59:C4:D0:86:D3:A0:70:4A:44:6D:D9
X509v3 Authority Key Identifier:
keyid:8E:58:D8:C6:1F:63:35:0C:77:BE:F1:D6:6B:1C:CF:A5:A0:0E:0D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jljYxh9jNQx3vvHWaxzPpaAODds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/30c592-0ac6-4f73-95bf-ab5956b4d970/1/ffv8LFmQU9ZmWcTQhtOgcEpEbdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/30c592-0ac6-4f73-95bf-ab5956b4d970/1/jljYxh9jNQx3vvHWaxzPpaAODds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.49.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:db:a7:a8:34:26:2e:6d:75:20:52:94:1f:85:ac:23:bb:96:
83:ac:65:a5:09:40:94:ff:4a:ee:4b:a5:88:ef:bc:78:77:91:
a0:a0:0e:09:f6:f4:b0:d0:6a:c8:26:e9:8a:fd:b9:e7:cc:1b:
db:af:2e:09:2b:34:7f:e8:7e:03:04:ee:d5:e8:1b:09:f5:d0:
97:2a:50:e5:71:a6:a5:81:0b:9c:3b:4b:40:83:94:f0:38:35:
7b:f0:43:bb:81:96:d1:86:4a:23:6d:31:ed:8c:b9:19:4a:20:
d1:58:d3:5a:ef:4e:a7:89:30:f7:ce:7f:84:a5:64:a9:99:4b:
5d:0f:f5:6f:72:a2:07:a8:7b:14:8e:5f:fc:d2:69:69:85:17:
4b:9c:28:02:95:60:62:e3:36:5c:f3:78:5e:76:32:3e:3c:ea:
8a:3c:38:f3:de:79:52:8e:36:07:e8:5d:e4:28:93:dc:be:35:
8e:ba:94:92:e3:42:88:fb:f4:70:fa:49:71:18:d2:b0:fb:e8:
10:58:46:2e:e3:0c:43:c5:c6:56:b1:9a:08:29:37:6e:88:e5:
35:36:f5:0a:af:fa:01:8c:6f:4a:8e:83:89:6b:de:40:bc:1c:
78:a9:20:55:cf:57:7f:e0:19:cc:49:33:bc:ea:80:88:b3:d7:
e9:ea:6e:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:33 2024 by rpki-client on console-ams.rpki-client.org