Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/4w27cX0bvS5wiGvb1kqd_oFXiB0.roa
File: 4w27cX0bvS5wiGvb1kqd_oFXiB0.roa (raw, json)
Hash identifier: gGq8nXTNaJCgzgzRlyzE0MR3uUWPVFKFTQRKFxgtIWQ=
Subject key identifier: E3:0D:BB:71:7D:1B:BD:2E:70:88:6B:DB:D6:4A:9D:FE:81:57:88:1D
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 39413CB7
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/4w27cX0bvS5wiGvb1kqd_oFXiB0.roa
Signing time: Sat 01 Jan 2022 08:05:31 +0000
ROA not before: Sat 01 Jan 2022 08:05:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35285
IP address blocks: 193.189.122.0/24 maxlen: 24
193.189.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960576695 (0x39413cb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 1 08:05:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e30dbb717d1bbd2e70886bdbd64a9dfe8157881d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3f:67:be:d4:05:67:69:f4:8d:b0:39:51:be:
44:cc:20:90:45:97:fe:1e:13:25:d3:17:0b:08:0f:
44:3d:72:de:3c:f5:e7:8b:9b:92:84:33:8c:47:7c:
f3:df:c2:18:f6:bb:2c:d9:44:f4:9a:e7:e6:e5:c3:
d2:d5:ab:d5:db:71:cb:27:ad:fa:01:ce:8c:1b:0a:
17:69:a4:00:ec:5f:6f:db:71:44:fe:fc:96:5f:83:
9f:3e:c1:3d:03:34:44:81:c7:41:1b:d6:0a:e1:0e:
51:44:69:08:35:1e:f4:41:de:3c:db:7e:cb:36:01:
11:af:26:ef:87:12:00:c1:0c:1a:cc:aa:cf:0c:57:
d4:f0:14:63:39:67:53:ec:ba:35:9f:10:2f:1f:e5:
4f:d7:9f:73:41:7e:13:02:a5:c0:8f:ec:96:d9:9f:
2a:81:08:bf:8f:3a:4f:19:a3:f2:a3:ef:0d:1f:05:
d4:c3:78:06:1c:cf:ea:bc:65:44:72:cb:06:f1:6c:
e4:25:a7:c5:b4:12:6c:31:c6:d1:b9:f2:3e:42:82:
76:1d:69:86:33:03:69:93:af:0e:45:57:e5:46:c8:
f1:26:5b:70:65:58:3c:a9:64:50:a3:46:c0:64:3c:
92:ff:58:d4:8a:0f:06:20:28:e4:e2:0e:0a:7c:bc:
d4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:0D:BB:71:7D:1B:BD:2E:70:88:6B:DB:D6:4A:9D:FE:81:57:88:1D
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/4w27cX0bvS5wiGvb1kqd_oFXiB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.189.122.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:57:d3:cd:e2:4a:de:23:08:f8:b7:ad:11:6e:2e:4e:69:a5:
76:6e:df:c3:7b:1b:0d:d6:de:0d:cf:3f:19:35:c4:4e:e0:ef:
f3:5c:b7:33:fa:60:1a:9b:c2:55:9b:4c:80:eb:3f:44:37:2c:
53:20:4b:d6:02:d7:b8:3f:b4:ee:dd:1e:66:68:02:c8:1d:91:
66:fb:8d:46:df:f7:bf:03:22:af:ef:80:29:52:9d:dd:ef:8a:
68:bb:54:5e:2f:91:21:4c:6c:2e:d4:e8:3e:c3:61:f0:60:a6:
76:08:c2:90:8b:65:01:34:63:0f:22:dd:65:65:4b:4f:06:68:
11:cd:d3:77:a4:a0:a2:6e:98:4b:01:da:92:ed:d7:8c:b2:92:
e2:58:52:74:1a:e2:a1:da:7e:1d:d1:5b:02:33:57:e9:0d:45:
36:db:c8:6c:9c:57:50:84:17:cf:8e:39:f4:b4:f3:02:ff:5c:
a6:54:7e:18:b9:66:d9:a5:9f:7e:8d:45:42:75:70:ed:d5:08:
03:60:ec:34:fb:6b:8e:ba:17:8b:75:28:4f:e5:5f:0e:54:86:
c2:21:9a:84:19:c0:0b:7d:d3:a9:ce:1f:ef:92:05:d5:0a:a4:
2d:7f:33:1b:92:49:3f:17:eb:e2:ec:20:02:b1:09:01:08:8a:
6a:47:5d:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:22 2024 by rpki-client on console-fra.rpki-client.org