Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/riqnaQPaedNiOFKjQzoz_DihGUk.roa
File: riqnaQPaedNiOFKjQzoz_DihGUk.roa (raw, json)
Hash identifier: 6+U+2oz8pZk/3/KQLMv40/P8id+VcCNhKm5Syhzqqbk=
Subject key identifier: AE:2A:A7:69:03:DA:79:D3:62:38:52:A3:43:3A:33:FC:38:A1:19:49
Certificate issuer: /CN=3617c0659666985e185d84121e8c20a3644ea98d
Certificate serial: 397D1B
Authority key identifier: 36:17:C0:65:96:66:98:5E:18:5D:84:12:1E:8C:20:A3:64:4E:A9:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NhfAZZZmmF4YXYQSHowgo2ROqY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/riqnaQPaedNiOFKjQzoz_DihGUk.roa
Signing time: Sat 01 Jan 2022 01:02:14 +0000
ROA not before: Sat 01 Jan 2022 01:02:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 193.57.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3767579 (0x397d1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3617c0659666985e185d84121e8c20a3644ea98d
Validity
Not Before: Jan 1 01:02:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae2aa76903da79d3623852a3433a33fc38a11949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ef:3b:9c:49:a1:ba:63:95:cd:0e:15:a3:53:
83:78:c4:06:8c:bb:e7:e0:a8:62:e3:8f:e0:1a:aa:
4a:4b:22:9b:0c:34:88:71:34:26:cd:3a:52:fc:f1:
d7:5c:6f:a6:be:3c:13:df:b0:3a:8e:6b:35:78:5b:
39:f7:8b:e4:3c:ae:a8:9b:c2:4c:0d:07:c4:35:30:
31:77:25:69:cf:ac:6e:db:78:ce:24:6b:3c:61:fd:
c2:27:2c:fb:24:92:91:7c:ac:a6:66:10:44:a5:40:
78:6f:59:59:81:d0:f4:56:8e:36:af:bc:e3:63:74:
cb:7a:9f:95:84:49:8c:b9:e4:b9:1f:3d:32:e9:4d:
32:1d:2a:49:71:6b:30:64:71:e8:84:b9:db:bb:d1:
78:f9:a1:64:9e:3e:8b:5e:c5:35:43:67:f8:e6:9e:
64:a1:a5:ea:41:77:89:a2:c5:64:1f:3b:36:6b:50:
04:8f:39:62:dd:86:0b:dd:c6:61:33:a1:8e:a7:be:
98:87:ea:07:e8:b5:60:3f:af:59:62:dd:f8:32:87:
8d:e8:0e:a4:5f:08:a6:e9:11:aa:50:ad:9f:5d:e4:
4d:49:7f:c0:b0:c3:a9:c7:90:31:46:e3:ed:23:f6:
42:63:40:08:bd:24:71:e6:db:44:37:32:05:93:f0:
e1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:2A:A7:69:03:DA:79:D3:62:38:52:A3:43:3A:33:FC:38:A1:19:49
X509v3 Authority Key Identifier:
keyid:36:17:C0:65:96:66:98:5E:18:5D:84:12:1E:8C:20:A3:64:4E:A9:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NhfAZZZmmF4YXYQSHowgo2ROqY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/riqnaQPaedNiOFKjQzoz_DihGUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/NhfAZZZmmF4YXYQSHowgo2ROqY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.56.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:2e:1b:df:27:6a:5b:94:c8:ee:bc:dd:ba:4a:61:d5:49:f0:
d3:18:42:7e:8f:70:95:70:4b:08:f4:15:c6:6f:df:e5:9a:a9:
c9:ba:f8:65:04:3c:43:01:c9:2d:8c:1b:11:31:73:74:27:07:
9c:56:18:f5:4b:cd:36:2d:f2:22:cd:08:d8:d0:57:6d:22:d1:
4b:88:54:ce:4f:27:3e:24:35:a6:4b:cb:19:71:ab:72:cd:5c:
3c:a5:57:0f:10:47:9c:85:02:23:cf:d5:bd:35:8a:c2:c7:aa:
3a:98:8d:a7:ac:62:b7:5e:50:34:b9:9a:b5:b0:ce:e9:16:42:
13:b7:d6:65:f8:50:ff:21:53:eb:f6:d4:c3:04:3b:27:5f:84:
c6:83:8a:a9:d8:ba:8a:df:4f:63:0c:14:76:e2:7d:d7:13:fa:
31:14:3f:66:30:9f:1d:02:12:6c:eb:bc:cc:19:04:bc:3a:58:
89:b3:05:a8:54:05:21:d2:87:b7:db:88:00:d6:f6:d2:75:a6:
21:78:dd:01:ec:7a:df:4c:af:bf:a2:e5:4d:fc:ce:4b:54:46:
e4:4c:64:3a:6a:56:1d:83:96:4f:34:70:66:95:2b:6d:b6:ea:
eb:9c:ba:0f:5f:61:35:71:9d:21:aa:c2:9a:09:e7:cd:27:78:
b2:71:9f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org