Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/pHYw3Tdi8i5NJJagkljyzwYwr1c.roa
File: pHYw3Tdi8i5NJJagkljyzwYwr1c.roa (raw, json)
Hash identifier: y0I94qq/C8vZRTiZNbIBjnzBP3JM9pAB5s/mznwfDhA=
Subject key identifier: A4:76:30:DD:37:62:F2:2E:4D:24:96:A0:92:58:F2:CF:06:30:AF:57
Certificate issuer: /CN=5b95a94adad3a2896c72074d667c1b62075958cb
Certificate serial: 6BE59E
Authority key identifier: 5B:95:A9:4A:DA:D3:A2:89:6C:72:07:4D:66:7C:1B:62:07:59:58:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W5WpStrToolscgdNZnwbYgdZWMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/pHYw3Tdi8i5NJJagkljyzwYwr1c.roa
Signing time: Sat 01 Jan 2022 00:52:30 +0000
ROA not before: Sat 01 Jan 2022 00:52:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34933
IP address blocks: 193.238.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7071134 (0x6be59e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b95a94adad3a2896c72074d667c1b62075958cb
Validity
Not Before: Jan 1 00:52:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a47630dd3762f22e4d2496a09258f2cf0630af57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e7:02:7e:30:42:25:1f:49:1a:78:77:19:72:
99:cc:f4:36:18:43:f5:f6:a3:0a:21:ec:4a:cf:fc:
8a:b6:c5:10:a2:3d:a4:d7:81:39:64:12:9b:e5:a5:
7d:09:27:10:c3:d8:40:d4:b6:3b:64:28:46:46:d6:
80:c8:40:ae:a6:83:b9:51:63:95:d4:31:1f:bf:ea:
55:1e:70:a2:3c:1b:52:db:bd:92:d3:63:58:65:87:
37:da:a2:f5:e1:b2:ce:70:21:04:df:fa:94:a1:24:
84:59:aa:3d:b0:16:14:c0:e1:1f:22:61:45:0e:4a:
93:67:0a:f4:1d:25:b4:f7:d1:be:6a:c7:cf:e4:8f:
d2:f2:52:ae:10:dd:1f:30:3e:a6:73:f4:ef:52:4b:
b6:12:5d:56:b8:c2:2d:19:37:56:a5:68:47:ad:0a:
15:2d:92:f8:56:12:26:cf:bb:75:60:07:c2:b1:ef:
a5:ad:2e:cc:4e:d0:14:b6:81:f0:6f:0a:33:1a:33:
01:4d:6d:14:32:46:3a:08:8b:52:47:ee:e2:b9:00:
a1:c9:52:64:29:be:79:0c:33:24:14:6f:ae:dc:9d:
75:f2:49:89:4e:cb:ad:65:ac:ad:14:ae:06:52:83:
f2:ea:f0:24:c4:b9:81:bf:d7:5c:46:73:36:c7:10:
fa:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:76:30:DD:37:62:F2:2E:4D:24:96:A0:92:58:F2:CF:06:30:AF:57
X509v3 Authority Key Identifier:
keyid:5B:95:A9:4A:DA:D3:A2:89:6C:72:07:4D:66:7C:1B:62:07:59:58:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W5WpStrToolscgdNZnwbYgdZWMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/pHYw3Tdi8i5NJJagkljyzwYwr1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/839925-1555-4ff6-bc46-7feab48eee61/1/W5WpStrToolscgdNZnwbYgdZWMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.226.0/24
Signature Algorithm: sha256WithRSAEncryption
59:84:39:e1:75:75:01:f5:43:ca:f3:21:4a:c6:5a:8a:83:1a:
89:cb:b7:55:63:03:fe:78:01:90:1f:9e:ac:df:ff:74:06:8b:
b7:a9:b0:87:f2:8b:5b:a9:f3:e5:b6:93:57:d8:4d:0a:5f:e7:
16:21:30:e5:f5:4b:e6:d3:97:ec:d0:df:6e:78:6a:17:ae:2b:
45:a1:14:bd:f4:76:4e:b7:8c:8b:6f:7c:5d:ea:1e:3b:88:42:
2c:81:49:fd:34:13:8c:2f:1d:45:9d:82:67:02:6a:b1:21:c9:
32:0d:dd:c3:cf:38:29:c0:3a:7e:21:fe:e9:3a:f3:87:c3:d6:
6c:0b:9a:1f:52:50:6a:ca:f2:cf:f8:7f:d7:ea:7f:8f:90:55:
9e:1f:ef:52:f1:05:c3:30:51:ac:ea:3a:bb:21:12:46:38:38:
77:d3:fc:cc:17:77:9b:dd:f5:53:81:ab:df:cb:9a:96:b6:bd:
ae:dd:43:77:8c:72:66:55:a9:f5:ab:41:00:2a:e4:d2:20:70:
f3:49:9f:0a:4e:4a:71:12:0a:a5:36:b1:86:f3:aa:0c:c0:43:
2f:88:a8:43:76:58:c2:32:50:0b:48:aa:ec:38:07:39:24:aa:
ec:12:3c:eb:dd:28:d4:19:8e:f3:65:e0:9b:86:84:6e:c9:f6:
d5:84:c3:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:20 2024 by rpki-client on console-fra.rpki-client.org