Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/eddabc-5135-4e4b-b411-1eba6ff77eac/1/sXK8wXVnQafYIfjdUMQgT666kVI.roa
File: sXK8wXVnQafYIfjdUMQgT666kVI.roa (raw, json)
Hash identifier: Lp5WsJANGhkuXcYsmr8+iLwu+NZvkc5WzbXIsetfT5M=
Subject key identifier: B1:72:BC:C1:75:67:41:A7:D8:21:F8:DD:50:C4:20:4F:AE:BA:91:52
Certificate issuer: /CN=3d4c7870193ddfcdb890b6647cc8b56c1196ff08
Certificate serial: 0251E6B0
Authority key identifier: 3D:4C:78:70:19:3D:DF:CD:B8:90:B6:64:7C:C8:B5:6C:11:96:FF:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUx4cBk93824kLZkfMi1bBGW_wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/eddabc-5135-4e4b-b411-1eba6ff77eac/1/sXK8wXVnQafYIfjdUMQgT666kVI.roa
Signing time: Sat 01 Jan 2022 13:03:08 +0000
ROA not before: Sat 01 Jan 2022 13:03:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34950
IP address blocks: 193.242.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38921904 (0x251e6b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4c7870193ddfcdb890b6647cc8b56c1196ff08
Validity
Not Before: Jan 1 13:03:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b172bcc1756741a7d821f8dd50c4204faeba9152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:18:87:0c:8b:e8:58:ec:0c:23:8d:59:41:d1:
8c:2c:4a:13:38:b5:38:65:c5:3c:c2:2e:9d:86:aa:
05:8a:f9:8c:81:0a:ff:49:08:92:93:fc:03:ad:ac:
cd:34:a0:b3:82:d5:df:20:2b:05:e1:3b:39:23:56:
2a:31:d5:98:16:c5:43:57:d2:8b:21:db:dc:2b:11:
4c:25:de:9c:9c:3c:1e:e1:dd:9d:a1:78:d5:0a:c2:
70:38:22:c1:a4:26:b4:92:bc:b0:ee:09:21:e6:e4:
d1:f8:cd:94:f7:85:0b:e7:57:e1:fa:b3:f3:8a:d9:
b4:36:b7:e8:77:6f:a8:4c:e0:09:34:62:b8:4f:be:
40:6d:e7:a3:6b:1e:1c:44:86:de:b0:9b:00:be:2d:
aa:5f:92:34:ab:86:18:d8:f9:65:ba:30:10:54:8d:
b2:70:c6:77:12:21:d2:af:35:d7:5c:5f:30:2b:18:
e1:44:35:78:89:ca:f8:38:4e:93:ac:e6:a0:49:83:
f5:34:f9:a4:a7:8a:71:a2:35:57:58:aa:81:0f:b3:
47:d0:d8:31:c0:47:c2:ba:67:41:e5:6e:c7:96:4e:
13:e0:9d:b2:d7:61:e2:2d:00:51:c6:92:5b:25:f5:
ad:5b:af:a4:e2:d9:c7:3c:43:59:13:14:0f:7f:f1:
0a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:72:BC:C1:75:67:41:A7:D8:21:F8:DD:50:C4:20:4F:AE:BA:91:52
X509v3 Authority Key Identifier:
keyid:3D:4C:78:70:19:3D:DF:CD:B8:90:B6:64:7C:C8:B5:6C:11:96:FF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUx4cBk93824kLZkfMi1bBGW_wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/eddabc-5135-4e4b-b411-1eba6ff77eac/1/sXK8wXVnQafYIfjdUMQgT666kVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/eddabc-5135-4e4b-b411-1eba6ff77eac/1/PUx4cBk93824kLZkfMi1bBGW_wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.103.0/24
Signature Algorithm: sha256WithRSAEncryption
28:ff:c2:06:0a:b4:75:7c:2f:25:fe:40:4b:9a:0a:c6:eb:d3:
75:39:89:e5:c2:bf:1f:eb:55:d4:e2:03:d9:70:06:e1:f6:da:
58:15:0e:74:a1:07:6a:2d:28:5e:a2:d6:2f:86:66:4d:22:d2:
6e:b1:76:15:a9:f8:1c:d7:54:a3:b8:70:2d:fe:61:f6:c4:8e:
17:25:c5:d5:db:44:0d:c6:8a:ac:6e:eb:6e:90:f7:53:79:3b:
5e:8f:5d:81:e1:aa:05:1d:f8:c6:97:c4:b1:16:d6:65:56:50:
a3:bf:57:d1:4c:d0:34:3f:e2:96:80:eb:5c:93:27:14:88:50:
76:ff:9a:92:cb:25:a4:49:7b:5a:6d:d8:60:57:3b:42:01:d8:
ef:47:69:06:b5:67:e9:dc:d7:3f:b9:b8:fc:09:f4:00:47:17:
b0:17:90:61:2e:f3:89:a1:66:13:b3:39:b5:69:51:33:5a:b3:
f9:e7:0b:7a:4e:18:1f:7e:23:a9:7a:5a:a2:c3:9c:94:d2:c7:
0b:51:24:b1:bc:65:58:f8:42:39:e6:fc:ae:12:09:d6:e4:62:
2f:76:3e:80:2a:6b:90:f5:00:12:37:31:cb:64:13:65:2a:e0:
8d:59:27:17:57:d7:c7:01:57:62:78:b2:25:53:43:93:05:36:
25:4d:57:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:41 2024 by rpki-client on console-fra.rpki-client.org