Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/bf2bb4-36d3-4b17-8bcf-44a957132639/1/rTGYo9RpDDl177wYfuRlwV-Sybk.roa
File: rTGYo9RpDDl177wYfuRlwV-Sybk.roa (raw, json)
Hash identifier: VksQEbIGEGWJuhGxAUO15F+YKlbkRciUYXivOaS0txE=
Subject key identifier: AD:31:98:A3:D4:69:0C:39:75:EF:BC:18:7E:E4:65:C1:5F:92:C9:B9
Certificate issuer: /CN=3298056b806a7b7cc1633345dc55836a45a244c7
Certificate serial: 124EE3C9
Authority key identifier: 32:98:05:6B:80:6A:7B:7C:C1:63:33:45:DC:55:83:6A:45:A2:44:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MpgFa4Bqe3zBYzNF3FWDakWiRMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/bf2bb4-36d3-4b17-8bcf-44a957132639/1/rTGYo9RpDDl177wYfuRlwV-Sybk.roa
Signing time: Sat 01 Jan 2022 00:52:40 +0000
ROA not before: Sat 01 Jan 2022 00:52:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38927
IP address blocks: 193.19.112.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 307160009 (0x124ee3c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3298056b806a7b7cc1633345dc55836a45a244c7
Validity
Not Before: Jan 1 00:52:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad3198a3d4690c3975efbc187ee465c15f92c9b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:c2:7f:5d:f6:29:a7:9c:de:d9:a5:93:e6:55:
69:e0:3c:53:b1:75:17:8f:58:31:e5:85:6a:35:44:
20:bc:16:4b:f9:f5:05:5b:11:a9:ad:d3:d5:d3:b5:
42:69:1d:64:ec:ae:b3:c5:e5:cf:80:e7:cb:6a:b3:
5f:f3:f0:0e:95:14:af:98:45:f2:91:03:d8:fc:42:
a2:9a:8a:8e:b5:5c:8d:df:2a:60:8d:34:78:ee:da:
73:38:d4:bc:2f:37:91:75:e3:0c:06:51:63:91:15:
13:bb:eb:9f:bf:73:19:60:2d:65:8f:69:96:63:ab:
69:88:01:bd:72:a2:94:5e:e1:8f:18:5b:55:d8:2b:
09:14:28:1a:81:42:69:0b:31:00:49:18:2f:66:91:
ed:ea:88:49:9b:94:86:da:48:80:d0:f5:f1:bd:ee:
ff:e8:68:ec:5c:0d:81:bc:17:c2:d5:21:58:97:d0:
c8:ce:23:e8:d8:18:26:33:86:7e:a2:ec:c4:1d:21:
0c:86:4a:8b:9e:c3:30:7c:b8:a1:62:2f:97:3b:ab:
38:49:23:e1:e8:99:9f:bd:60:a1:74:0a:68:73:cd:
ce:a5:19:50:45:85:aa:65:4d:5a:50:35:c5:e5:3d:
cb:48:0c:9a:b0:df:89:bb:44:6a:3b:a9:5d:93:a3:
bf:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:31:98:A3:D4:69:0C:39:75:EF:BC:18:7E:E4:65:C1:5F:92:C9:B9
X509v3 Authority Key Identifier:
keyid:32:98:05:6B:80:6A:7B:7C:C1:63:33:45:DC:55:83:6A:45:A2:44:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MpgFa4Bqe3zBYzNF3FWDakWiRMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bf2bb4-36d3-4b17-8bcf-44a957132639/1/rTGYo9RpDDl177wYfuRlwV-Sybk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bf2bb4-36d3-4b17-8bcf-44a957132639/1/MpgFa4Bqe3zBYzNF3FWDakWiRMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.112.0/23
Signature Algorithm: sha256WithRSAEncryption
29:a5:87:9b:14:a4:68:e6:9c:ae:11:a4:f3:da:0a:99:b0:34:
01:4b:e3:10:79:4a:3a:e4:76:e1:c7:ac:05:0b:fe:db:65:87:
da:11:2b:bc:01:e2:89:f0:82:99:03:0b:c8:80:49:bb:db:03:
a8:1c:3a:0a:a5:3d:91:af:9f:d9:62:f0:0b:6e:ea:8a:7d:19:
e2:fd:da:46:51:68:91:3a:79:7d:88:d5:e5:69:1a:c9:12:05:
02:ae:4a:63:61:eb:fe:60:de:e7:bd:18:21:33:c1:28:32:54:
84:bb:73:02:57:92:19:ce:0b:47:19:9b:7e:9b:3d:6b:65:78:
ed:2a:da:55:54:2e:18:71:11:43:30:d6:6c:4e:a8:64:20:c5:
7e:67:95:4a:92:b4:b0:91:56:02:25:b4:93:b5:3d:17:b9:12:
42:ed:af:88:e3:63:d7:b9:01:75:c7:88:b6:3b:ca:53:9f:37:
fe:f5:de:6f:2d:6f:aa:c1:b3:fb:d2:90:f6:64:d4:4b:52:35:
a9:17:e8:40:77:bb:a4:a6:c9:ef:e6:af:73:10:b1:ae:9e:de:
3c:97:f8:da:86:2a:39:e0:3d:6e:83:fe:6e:f5:81:05:be:96:
1a:3f:cd:65:08:96:a0:18:6d:e9:6f:eb:55:3c:7c:97:26:e1:
05:da:f0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:25 2023 by rpki-client on console-ams.rpki-client.org