Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/IF6bbF_SZzRc1_lBmd4lnWhuYzI.roa
File: IF6bbF_SZzRc1_lBmd4lnWhuYzI.roa (raw, json)
Hash identifier: fuhCMvhV0RrOuSF/H6ae6lD0GbZMF2kpOSxx+Tsww74=
Subject key identifier: 20:5E:9B:6C:5F:D2:67:34:5C:D7:F9:41:99:DE:25:9D:68:6E:63:32
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 0A5E40AD
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/IF6bbF_SZzRc1_lBmd4lnWhuYzI.roa
Signing time: Sat 01 Jan 2022 04:01:40 +0000
ROA not before: Sat 01 Jan 2022 04:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42010
IP address blocks: 193.8.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173949101 (0xa5e40ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: Jan 1 04:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=205e9b6c5fd267345cd7f94199de259d686e6332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:09:b8:a2:2b:c4:78:f0:7e:ed:75:23:90:4c:
b1:12:18:73:0d:fb:d9:1d:5e:85:53:e0:61:41:ec:
d0:3b:43:d2:72:76:69:08:74:d5:d0:38:56:16:33:
61:a0:0c:95:39:80:1e:f1:54:ca:dc:a0:4a:90:3d:
36:2e:65:dc:b3:22:5c:e4:96:52:95:9a:a8:2b:1b:
61:ea:6d:52:32:9c:c5:85:7b:80:bd:33:d1:23:bc:
1f:f4:58:64:ea:21:77:66:cc:71:70:7b:2b:d5:ff:
a0:d6:89:67:c4:b2:ea:42:2b:0f:63:bd:0d:80:48:
41:45:d8:12:1d:bb:35:8b:9f:b2:96:39:98:98:e0:
05:39:20:bb:b8:6c:b2:7f:71:50:c4:25:16:77:28:
3e:c5:c8:a0:77:ad:e8:50:0b:d4:1d:e0:0d:05:96:
65:60:9c:da:d3:46:0a:9e:88:c0:91:c5:3e:9d:16:
d4:90:e5:9b:ae:80:f4:33:f4:84:4b:62:3e:3a:a8:
ba:b6:a6:66:0f:03:9c:0e:37:98:7e:10:f0:77:b2:
cc:cb:97:d0:ae:6c:0a:45:f0:b8:5b:ff:f6:1c:81:
11:9e:36:44:39:ee:0d:29:03:d0:78:af:d5:e2:27:
c3:5c:58:c5:d9:6f:22:97:c8:f4:b2:f3:b7:b9:80:
5f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:5E:9B:6C:5F:D2:67:34:5C:D7:F9:41:99:DE:25:9D:68:6E:63:32
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/IF6bbF_SZzRc1_lBmd4lnWhuYzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.240.0/22
Signature Algorithm: sha256WithRSAEncryption
39:2d:f7:e1:29:22:7a:77:aa:a7:b1:70:d1:cf:0c:b3:b5:31:
ac:86:26:5b:6d:ca:83:59:3d:b8:3f:f2:0a:3a:4b:bf:1c:3a:
79:49:f2:1c:ac:2b:92:59:44:df:8c:38:41:23:2e:24:70:c5:
ec:32:71:6b:41:8f:4c:e6:2f:e8:48:78:9d:b9:b1:43:4a:98:
30:5a:4d:38:11:5c:98:32:c4:44:0d:5b:9b:9f:03:7c:09:a7:
e1:dd:d0:94:e2:27:7f:7a:03:a7:6f:7e:00:01:52:49:fb:de:
c2:83:24:10:af:49:da:8e:e0:84:ac:95:0d:03:cf:ba:70:bb:
08:18:e1:80:3b:4b:52:2f:ae:6f:51:89:e9:8e:65:8f:88:7e:
b8:b2:69:17:b1:14:0f:09:52:b7:bb:c5:9b:32:1e:84:96:eb:
ab:f8:fc:b8:aa:7e:1b:8d:9f:1e:5b:0a:ba:c1:7e:41:fc:44:
7c:10:f7:ce:54:50:01:e4:af:1c:c3:c0:90:0f:9d:9d:58:57:
bf:9b:e8:4f:8c:dd:92:5a:e9:e9:ec:3f:13:60:71:82:d4:21:
be:46:0a:bf:53:84:d7:0f:a3:ec:3f:ab:62:21:56:88:8d:a6:
70:73:58:40:d3:95:27:4e:30:bb:ed:05:f6:b3:71:0f:23:3c:
d5:28:82:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:03 2024 by rpki-client on console-fra.rpki-client.org