Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/4veiUXban7mV5RxBLAeeLWlvVeI.roa
File: 4veiUXban7mV5RxBLAeeLWlvVeI.roa (raw, json)
Hash identifier: t2s4O8trEtHeor5yQrynPwXd2CqHsmubdWeAtZnwyD4=
Subject key identifier: E2:F7:A2:51:76:DA:9F:B9:95:E5:1C:41:2C:07:9E:2D:69:6F:55:E2
Certificate issuer: /CN=432075596545093c06a6fcf8fab57b192e7790aa
Certificate serial: 14CB3BA8
Authority key identifier: 43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/4veiUXban7mV5RxBLAeeLWlvVeI.roa
Signing time: Sat 01 Jan 2022 09:04:32 +0000
ROA not before: Sat 01 Jan 2022 09:04:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1930
IP address blocks: 192.132.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 348863400 (0x14cb3ba8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432075596545093c06a6fcf8fab57b192e7790aa
Validity
Not Before: Jan 1 09:04:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2f7a25176da9fb995e51c412c079e2d696f55e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7c:ba:94:5e:16:e3:b4:5d:d0:b6:e8:59:c4:
85:f3:d7:9c:42:e1:d6:f9:d8:79:34:ba:bc:16:a3:
0b:5a:23:ea:72:5c:85:f5:a5:e3:0b:3a:c5:e1:82:
e8:63:31:c6:03:e5:1f:e5:e7:79:3f:58:38:6a:2c:
78:b5:a4:f8:26:27:8f:5a:5b:24:25:4d:d4:5b:bc:
e2:c4:28:27:72:5e:cc:01:56:dc:98:7b:2f:01:70:
c0:38:10:53:65:fb:be:d0:41:ee:45:a5:ca:76:02:
da:26:8c:d6:93:bc:89:6c:60:09:0b:69:b0:b1:17:
02:7d:e7:d0:52:82:bc:10:89:fa:1a:d4:80:c0:3b:
05:f6:13:6a:64:12:a2:ba:4c:29:e1:51:8a:26:7f:
55:77:1d:31:0d:0b:db:11:72:a9:e2:31:90:30:6e:
8a:29:57:e4:05:ed:a5:6d:c7:67:2e:ea:37:cd:6b:
4a:a5:09:96:2b:3a:3c:f3:3e:c2:87:c0:89:a4:4a:
83:18:63:63:1e:ca:c8:f1:65:ef:f0:70:23:51:93:
68:98:f2:a9:13:a1:35:24:38:f4:5b:c7:15:70:45:
88:f7:af:55:2e:1a:31:a3:57:b1:ae:e5:3e:37:21:
65:53:6e:ea:99:f3:cc:29:ce:9a:9d:ee:81:a2:ba:
1d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:F7:A2:51:76:DA:9F:B9:95:E5:1C:41:2C:07:9E:2D:69:6F:55:E2
X509v3 Authority Key Identifier:
keyid:43:20:75:59:65:45:09:3C:06:A6:FC:F8:FA:B5:7B:19:2E:77:90:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyB1WWVFCTwGpvz4-rV7GS53kKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/4veiUXban7mV5RxBLAeeLWlvVeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/bda245-576b-4940-a9f5-92798dacaf75/1/QyB1WWVFCTwGpvz4-rV7GS53kKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.132.55.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:79:59:e8:60:90:42:1f:9b:ee:71:6d:6b:92:7c:55:58:1a:
04:bf:e8:af:c2:58:68:30:fb:6e:8d:f6:66:f2:05:84:90:05:
10:2c:b7:ec:d3:41:43:aa:1e:e4:5d:a0:0e:ca:f3:24:82:5b:
47:7d:12:d9:a7:15:ae:07:29:a6:c9:80:23:7f:a7:5b:39:d0:
32:70:5b:67:f5:17:26:48:8b:d7:e8:12:30:53:10:9e:b9:29:
85:83:17:78:60:f2:f8:62:d2:a2:54:3a:71:1d:0b:f5:03:4f:
f6:de:ab:4c:50:40:2f:61:86:af:d2:76:7a:ac:af:5e:2d:74:
0c:07:bd:9e:63:dd:7f:4f:87:db:00:9e:8e:3c:42:22:c0:8d:
41:46:19:53:c1:ed:be:89:a3:b6:19:21:89:fc:08:c3:cc:22:
4d:d2:3e:2c:9a:4c:33:d4:b4:bc:0d:16:b6:e9:92:34:b2:ad:
1e:42:cd:c8:fa:ae:21:ba:95:ed:38:72:e8:71:b2:40:a8:34:
57:75:64:be:59:7f:7b:f7:ad:aa:85:bf:fc:05:d5:e1:2f:79:
99:52:3e:d7:ee:b9:17:93:ac:a6:b7:41:b5:ee:2d:0c:3f:e6:
eb:14:5d:12:de:fb:a0:da:17:18:1e:95:b7:25:3d:9a:42:b9:
5f:79:46:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:17 2024 by rpki-client on console-fra.rpki-client.org