Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/1331cf-b3f0-47d9-9e40-7914383363f7/1/rpMNfUFtil7Ulb7g0UTMz-_WTN8.roa
File: rpMNfUFtil7Ulb7g0UTMz-_WTN8.roa (raw, json)
Hash identifier: 8NE6MgDCQ8IDjCvB1yYQB6rIWEtHKC4GX3PjVOcn4sw=
Subject key identifier: AE:93:0D:7D:41:6D:8A:5E:D4:95:BE:E0:D1:44:CC:CF:EF:D6:4C:DF
Certificate issuer: /CN=713f83dee92d8d3e28d7362dfc7187553d88c75c
Certificate serial: 39DB31
Authority key identifier: 71:3F:83:DE:E9:2D:8D:3E:28:D7:36:2D:FC:71:87:55:3D:88:C7:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cT-D3uktjT4o1zYt_HGHVT2Ix1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/1331cf-b3f0-47d9-9e40-7914383363f7/1/rpMNfUFtil7Ulb7g0UTMz-_WTN8.roa
Signing time: Sat 01 Jan 2022 00:55:39 +0000
ROA not before: Sat 01 Jan 2022 00:55:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9096
IP address blocks: 193.110.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3791665 (0x39db31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=713f83dee92d8d3e28d7362dfc7187553d88c75c
Validity
Not Before: Jan 1 00:55:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae930d7d416d8a5ed495bee0d144cccfefd64cdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d6:59:ab:4e:94:37:db:fa:d6:40:53:eb:7b:
0b:3d:eb:89:aa:cb:95:bf:e0:19:c1:dc:ec:de:1b:
9b:51:f9:04:96:5d:5d:7a:ee:8c:55:04:ef:cb:ca:
50:a7:40:5b:39:64:43:f9:ed:d0:30:81:04:18:a6:
2f:b8:08:71:41:49:ec:0b:26:33:39:3e:05:3e:59:
64:06:23:c1:c7:78:24:c8:f2:4b:9a:12:27:f2:f8:
d4:05:53:b1:4f:58:78:22:46:08:f8:de:13:c7:da:
d3:2c:53:50:7f:d8:3e:3a:42:cc:5c:31:28:3a:8b:
07:da:cd:da:9b:b4:b8:ae:91:8e:7f:7a:af:b8:af:
ce:6a:bb:9a:3a:df:8a:82:58:70:74:5c:b2:be:b3:
74:3a:6d:0c:fb:3e:2d:90:9c:d1:b5:5b:b5:9a:c6:
ae:6e:75:86:3f:16:2c:15:c1:fd:5d:a2:88:9c:12:
9f:b4:8c:8b:ae:24:d1:4a:63:38:ac:e6:94:ed:82:
94:09:b6:0b:c2:e2:42:ee:d0:ec:16:20:58:b4:6f:
a4:29:c9:c7:c8:7a:ad:09:0e:26:0f:4a:0d:be:84:
29:38:c1:cd:a1:d2:76:fa:35:1b:0e:a4:86:25:a8:
df:18:91:8d:17:f0:67:c1:13:8b:ea:13:d3:97:ce:
e5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:93:0D:7D:41:6D:8A:5E:D4:95:BE:E0:D1:44:CC:CF:EF:D6:4C:DF
X509v3 Authority Key Identifier:
keyid:71:3F:83:DE:E9:2D:8D:3E:28:D7:36:2D:FC:71:87:55:3D:88:C7:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cT-D3uktjT4o1zYt_HGHVT2Ix1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/1331cf-b3f0-47d9-9e40-7914383363f7/1/rpMNfUFtil7Ulb7g0UTMz-_WTN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/1331cf-b3f0-47d9-9e40-7914383363f7/1/cT-D3uktjT4o1zYt_HGHVT2Ix1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.138.0/24
Signature Algorithm: sha256WithRSAEncryption
86:2a:a5:23:7f:c7:b2:46:cd:3a:83:4b:f4:4d:46:dc:f3:96:
95:e3:06:47:3c:ae:8b:bb:72:bd:bd:e4:75:26:60:af:ca:37:
4a:37:12:ed:f2:96:87:98:c6:65:36:53:a1:3c:8f:3b:64:10:
30:5c:55:86:9b:bd:d3:75:26:9f:b4:19:b6:97:b8:37:45:17:
28:a7:c8:bc:42:98:f2:e8:1c:a5:9a:a1:dd:2b:ea:c9:34:fc:
2c:2d:2d:03:05:ab:44:d4:40:02:b0:57:8d:e5:2b:2b:13:f4:
83:e1:89:a8:f6:18:0b:d0:90:f2:bc:72:d5:36:a1:b8:f0:90:
52:d3:90:a7:af:75:ff:96:b6:ab:0d:1e:7e:12:31:95:c0:73:
ad:7c:a4:01:1d:ce:af:5d:74:6d:71:c5:89:8c:69:f6:49:f1:
45:b5:a5:3f:07:7b:8a:17:9c:2e:c4:a4:26:d2:73:eb:f1:6c:
aa:4b:03:15:c3:71:6f:90:1a:8c:ea:60:a8:4a:43:b5:47:69:
b2:0f:72:08:a2:da:62:38:1b:ba:75:04:79:d7:4c:b3:5c:52:
8a:4f:00:76:fd:6b:2d:66:03:67:b2:49:60:f9:3d:cd:70:10:
56:ff:62:f0:cb:98:e5:15:a3:00:50:29:8c:38:f1:88:27:e2:
fa:f9:64:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:04 2024 by rpki-client on console-fra.rpki-client.org