Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/bQep21xeBMCREmznCNazlVgleUk.roa
File: bQep21xeBMCREmznCNazlVgleUk.roa (raw, json)
Hash identifier: C/DXLU/2rzBi6cpPGdzE5Ygq/Peb+J4qpNs7tdgBAQw=
Subject key identifier: 6D:07:A9:DB:5C:5E:04:C0:91:12:6C:E7:08:D6:B3:95:58:25:79:49
Certificate issuer: /CN=6552d2cb5a9e8d5689fad67a9605149c6d5ef7ba
Certificate serial: 0185625CB939DDD539266CB03E1C3BDA685E
Authority key identifier: 65:52:D2:CB:5A:9E:8D:56:89:FA:D6:7A:96:05:14:9C:6D:5E:F7:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZVLSy1qejVaJ-tZ6lgUUnG1e97o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/bQep21xeBMCREmznCNazlVgleUk.roa
Signing time: Fri 30 Dec 2022 09:28:41 +0000
ROA not before: Fri 30 Dec 2022 09:28:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201291
IP address blocks: 194.93.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:5c:b9:39:dd:d5:39:26:6c:b0:3e:1c:3b:da:68:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6552d2cb5a9e8d5689fad67a9605149c6d5ef7ba
Validity
Not Before: Dec 30 09:28:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d07a9db5c5e04c091126ce708d6b39558257949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cc:f3:32:73:50:91:d5:00:e1:13:a2:55:4c:
70:99:2c:67:14:88:a9:7c:df:88:b5:95:4b:13:91:
26:43:6c:33:4e:d6:aa:85:f8:27:c8:d1:47:c1:2f:
98:b0:71:0e:9b:f2:da:94:c0:88:d6:48:c9:40:e9:
e0:45:67:44:27:35:4c:cf:68:fb:95:2b:54:c7:09:
55:64:61:e5:f6:9f:3b:e7:f3:a7:b9:6a:9c:63:d6:
8b:39:3e:1a:87:7a:eb:c2:7b:58:06:6c:7f:fa:c0:
8c:c5:58:cb:80:32:92:0f:d9:20:4b:7a:d6:86:39:
ab:b3:86:09:ed:b4:1f:cc:ed:5b:f5:59:14:a6:5a:
aa:57:97:5a:c0:0a:ff:b7:a6:bd:3a:b0:c5:cc:f8:
a4:ed:f5:b0:5a:c5:dd:41:ba:2f:22:48:02:c0:f5:
8c:a1:cd:a1:3e:5f:19:42:c9:6a:94:a9:aa:d0:7f:
53:8d:c0:b7:17:b3:05:07:a3:ce:27:9b:67:f9:92:
96:39:0f:63:dc:25:58:50:72:8a:2c:33:0e:1f:3a:
ae:e3:71:54:38:85:00:f7:f3:9e:a2:33:bf:6a:ff:
73:d4:55:2c:fd:ff:33:06:31:25:5f:05:f5:e8:90:
90:cf:6f:0c:54:a1:d3:f8:17:65:13:21:21:92:aa:
b4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:07:A9:DB:5C:5E:04:C0:91:12:6C:E7:08:D6:B3:95:58:25:79:49
X509v3 Authority Key Identifier:
keyid:65:52:D2:CB:5A:9E:8D:56:89:FA:D6:7A:96:05:14:9C:6D:5E:F7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZVLSy1qejVaJ-tZ6lgUUnG1e97o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/bQep21xeBMCREmznCNazlVgleUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/d1fac7-7c5b-4fa6-b7e5-9a5d8ba7d803/1/ZVLSy1qejVaJ-tZ6lgUUnG1e97o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.93.97.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:95:97:90:b8:6c:ae:d0:b1:7a:e0:f8:ca:84:48:5b:86:6a:
05:aa:44:6b:72:9e:57:95:eb:3d:fc:0c:8b:ef:85:28:bf:00:
68:58:10:b3:00:80:01:56:9b:55:4b:d7:8e:17:04:7e:2c:e8:
9e:b7:da:84:be:81:14:c7:fe:e4:39:08:27:e5:c1:ff:5c:03:
5d:cc:6a:78:d4:70:53:92:15:a6:48:a5:35:e1:0d:54:df:83:
8c:4c:1c:3e:f3:fc:1b:13:a1:d3:c3:0e:05:04:a0:30:2d:57:
3d:84:ba:5f:06:fb:c9:1b:38:b8:52:65:38:b7:c0:0f:9f:ea:
a1:4c:93:83:74:d3:20:b2:94:4e:f6:10:40:58:68:70:06:55:
f2:af:6c:93:3a:32:68:3b:fc:e1:6e:2a:2b:aa:4c:d5:3d:98:
26:b8:f2:4c:e4:ba:b1:da:4f:e3:fb:d5:94:54:84:c9:7c:0b:
d3:e2:42:a6:03:6b:83:ec:33:45:4b:a5:7e:c7:b1:55:36:e5:
37:cd:39:67:78:fa:41:a9:61:7c:57:a3:02:a8:35:72:c2:1a:
a1:73:c6:94:62:78:9e:f5:e3:30:ac:b3:89:56:85:50:f9:2b:
fb:7f:fe:82:be:28:54:69:1f:eb:11:4e:8f:02:10:4f:49:6f:
ee:aa:b7:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org