Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/nDWl6GGbiv5fU8Yp_bJ07bxSJHg.roa
File: nDWl6GGbiv5fU8Yp_bJ07bxSJHg.roa (raw, json)
Hash identifier: ChGHQp/axLIkjLs+scw6ysdoG+eFIKHgy1E/DpBMbSU=
Subject key identifier: 9C:35:A5:E8:61:9B:8A:FE:5F:53:C6:29:FD:B2:74:ED:BC:52:24:78
Certificate issuer: /CN=122a646bed4c417a6b4805f93d77a7a465e34b93
Certificate serial: 356E2971
Authority key identifier: 12:2A:64:6B:ED:4C:41:7A:6B:48:05:F9:3D:77:A7:A4:65:E3:4B:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eipka-1MQXprSAX5PXenpGXjS5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/nDWl6GGbiv5fU8Yp_bJ07bxSJHg.roa
Signing time: Sat 01 Jan 2022 15:55:17 +0000
ROA not before: Sat 01 Jan 2022 15:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198187
IP address blocks: 93.159.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 896412017 (0x356e2971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=122a646bed4c417a6b4805f93d77a7a465e34b93
Validity
Not Before: Jan 1 15:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c35a5e8619b8afe5f53c629fdb274edbc522478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0d:8f:b2:c0:25:26:05:a5:9e:0a:6f:04:3e:
19:26:6a:e2:7f:96:3f:4c:e2:44:db:e0:ab:c2:1f:
01:d7:f1:62:b6:3e:3d:69:94:e5:e2:be:00:d5:dc:
5c:fd:9a:6a:09:78:c0:52:03:2a:a1:53:3c:0c:04:
5c:6d:22:a1:0a:a6:5d:31:e2:26:2a:c0:0a:f3:9d:
39:c9:49:ac:b8:f6:eb:ad:07:ee:87:02:17:05:fa:
03:5f:a4:d4:b3:bf:f2:c0:fd:e6:ce:56:89:5a:16:
14:55:2c:ac:60:2b:c6:89:f5:82:10:2d:d7:09:2c:
96:9a:37:28:0f:fe:89:18:35:77:6d:94:7f:5b:cc:
b6:a3:ad:15:55:79:9e:dc:62:4b:72:d3:dc:d9:a4:
8c:2c:1d:84:f4:87:97:4d:25:6f:87:20:26:2a:fd:
8d:74:62:37:49:fc:67:79:e4:8a:a5:42:e6:b8:9d:
40:bc:2d:92:99:1d:25:f0:f5:fe:30:a3:d2:90:60:
49:40:ec:36:0f:4f:f5:dc:49:a4:bd:7a:e0:2d:41:
15:af:0c:73:65:f9:62:f7:39:f2:12:17:1e:38:a2:
2e:62:97:3b:9b:fc:15:0c:71:f7:d2:b9:4e:66:39:
ea:17:95:bb:74:c0:f4:43:6c:83:5b:56:2b:66:ce:
ca:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:35:A5:E8:61:9B:8A:FE:5F:53:C6:29:FD:B2:74:ED:BC:52:24:78
X509v3 Authority Key Identifier:
keyid:12:2A:64:6B:ED:4C:41:7A:6B:48:05:F9:3D:77:A7:A4:65:E3:4B:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eipka-1MQXprSAX5PXenpGXjS5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/nDWl6GGbiv5fU8Yp_bJ07bxSJHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a596e2-29d2-48c6-9bab-5cbd1f3ff39a/1/Eipka-1MQXprSAX5PXenpGXjS5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.159.186.0/24
Signature Algorithm: sha256WithRSAEncryption
81:a7:18:74:e2:78:5c:8b:15:2e:eb:af:04:49:3d:63:8b:5f:
91:0c:de:10:55:b5:c9:4d:87:b7:d3:38:0d:50:4d:ff:ab:8d:
73:9c:21:2c:50:c9:74:3b:b0:02:09:14:b0:23:22:07:0f:77:
30:8b:fc:39:aa:eb:16:2c:08:08:40:cd:64:97:02:15:eb:ca:
f3:80:aa:14:53:ff:fd:46:93:1d:c2:c6:08:73:5a:17:f5:f5:
51:a6:2e:a9:fc:7c:2d:a9:b3:e4:95:d9:ec:9b:f3:d1:5a:74:
78:49:8b:85:a1:d8:5a:53:67:7c:91:12:16:aa:b4:3b:b9:bd:
7b:ab:b9:17:fd:8e:26:c4:fa:d7:ec:0a:fc:8b:49:0e:aa:d5:
11:cf:34:96:46:92:e3:c0:49:83:d3:32:b9:78:a3:c1:85:31:
04:c3:60:8b:da:c3:9b:3d:cf:2c:28:43:ff:83:28:64:d7:1a:
00:91:7c:92:c8:ee:22:92:1a:0a:7b:58:a9:80:c1:93:9c:5c:
53:89:61:46:99:c7:3b:bf:24:2d:15:dd:69:2b:e7:13:85:ce:
a0:4d:ad:5f:61:11:30:65:e9:94:26:eb:8c:02:a9:87:e6:4f:
c1:fe:c1:ed:2b:d8:31:b9:b5:9b:eb:97:e0:94:3a:82:ca:c5:
4e:0b:cb:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:03 2024 by rpki-client on console-fra.rpki-client.org