Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/fb9093-407f-4620-b964-6e739f02d512/1/PsbEWt0JR0NQHvIIXS-bIb1HDbI.roa
File: PsbEWt0JR0NQHvIIXS-bIb1HDbI.roa (raw, json)
Hash identifier: KNylivhqQBpCCKSt3xl7rLh5sMjzFsc66/mrIgMiOn0=
Subject key identifier: 3E:C6:C4:5A:DD:09:47:43:50:1E:F2:08:5D:2F:9B:21:BD:47:0D:B2
Certificate issuer: /CN=3eb121cf0632819eeceabeb8a95569c675298821
Certificate serial: 028A6C91
Authority key identifier: 3E:B1:21:CF:06:32:81:9E:EC:EA:BE:B8:A9:55:69:C6:75:29:88:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PrEhzwYygZ7s6r64qVVpxnUpiCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/fb9093-407f-4620-b964-6e739f02d512/1/PsbEWt0JR0NQHvIIXS-bIb1HDbI.roa
Signing time: Sat 01 Jan 2022 12:06:34 +0000
ROA not before: Sat 01 Jan 2022 12:06:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43910
IP address blocks: 193.186.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42626193 (0x28a6c91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eb121cf0632819eeceabeb8a95569c675298821
Validity
Not Before: Jan 1 12:06:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ec6c45add094743501ef2085d2f9b21bd470db2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a3:ef:63:5d:01:56:ff:fd:c8:8e:d0:d9:43:
be:8d:4d:db:3c:ce:ff:a2:5a:74:34:7d:67:f0:fa:
a2:f1:99:ae:b8:fb:ff:7b:06:4e:ea:54:7d:32:cb:
bd:87:2d:c4:62:f0:ef:36:8d:4c:a2:d8:92:f0:4d:
1a:e5:37:7f:95:a9:2b:72:59:88:5f:27:a6:1b:24:
e8:53:bb:f1:a4:57:d4:6f:02:1e:bd:45:3c:2c:61:
71:7c:e9:59:78:35:64:f9:7b:52:3d:94:6a:a2:08:
2f:e4:48:e6:74:ae:1f:fc:4d:a5:83:49:70:bb:1c:
14:62:b7:88:ae:b2:f5:6d:d6:ae:80:e7:b8:0a:74:
d2:c0:27:f9:0d:cb:de:29:3b:f0:fd:3e:0f:f1:1f:
ff:e5:6f:ae:71:3b:4c:4b:6c:6e:0f:cb:66:49:a8:
97:7b:0a:71:79:32:eb:8d:6b:e1:29:5b:50:50:4c:
19:64:a0:9f:f8:43:d4:14:1e:74:0c:5b:ce:72:38:
dc:fb:d7:9f:b8:5c:62:50:2e:e9:40:73:84:8e:3f:
c6:2f:25:57:08:15:35:70:96:d7:68:7a:8d:73:70:
3d:9a:3e:61:d4:79:54:f9:f2:01:3c:c6:96:15:fe:
1e:4d:7a:16:e5:71:7f:d4:cd:9f:91:5a:22:00:f0:
7a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C6:C4:5A:DD:09:47:43:50:1E:F2:08:5D:2F:9B:21:BD:47:0D:B2
X509v3 Authority Key Identifier:
keyid:3E:B1:21:CF:06:32:81:9E:EC:EA:BE:B8:A9:55:69:C6:75:29:88:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PrEhzwYygZ7s6r64qVVpxnUpiCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/fb9093-407f-4620-b964-6e739f02d512/1/PsbEWt0JR0NQHvIIXS-bIb1HDbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/fb9093-407f-4620-b964-6e739f02d512/1/PrEhzwYygZ7s6r64qVVpxnUpiCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.7.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:bf:f0:28:90:e5:4c:4d:4d:5e:59:38:40:ad:93:d5:f9:11:
58:7f:94:0f:e3:34:9b:1c:bd:5a:71:07:c0:4f:02:9b:86:e9:
a3:4f:b0:16:73:35:3b:ac:fe:ce:86:58:10:e8:53:9c:a8:90:
70:99:96:7b:4e:4c:f6:a7:c3:5b:62:f8:8c:29:ae:49:6f:0e:
09:69:de:4e:bb:c1:32:b7:15:73:2c:45:2e:ce:35:a6:e7:e2:
fe:09:79:86:ec:aa:3d:86:4e:31:0a:f2:b2:70:7a:8c:10:37:
25:47:6b:61:51:f1:df:cc:7f:34:ac:cd:c2:5a:73:ad:e8:c3:
8d:f9:ef:28:e3:6e:df:3a:39:00:72:69:13:0d:e6:ce:c7:30:
7d:30:f7:83:8d:26:38:d8:cf:c8:f5:5d:27:4e:e5:9f:78:8f:
ef:fd:f5:0a:77:ad:50:6c:27:48:f0:c8:42:ee:f7:75:fe:31:
54:9a:dc:10:41:9f:fe:ce:da:82:33:16:d2:62:8a:42:22:59:
f1:1a:1f:3c:0c:11:c7:e7:4f:55:a7:ba:b2:65:1f:0a:99:3b:
80:61:4e:b1:39:a3:c6:4d:a1:92:1c:4b:75:e0:3f:7d:e5:2a:
bb:60:83:36:7c:bf:47:1e:eb:97:5b:b5:25:a9:66:b4:0f:53:
1a:d8:81:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:34 2024 by rpki-client on console-ams.rpki-client.org