Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/384995-3ade-4b52-bffb-86626647086c/1/CAV74AtxLpkgFFUzKk3o_4tiQMo.roa
File: CAV74AtxLpkgFFUzKk3o_4tiQMo.roa (raw, json)
Hash identifier: MsBTY0LOLHMH0MUXA7PRjTr3xUbhDWj0KxcSHlsBWoQ=
Subject key identifier: 08:05:7B:E0:0B:71:2E:99:20:14:55:33:2A:4D:E8:FF:8B:62:40:CA
Certificate issuer: /CN=adebfc4e59f7e646460d90311566df1f47eda917
Certificate serial: 023EC831
Authority key identifier: AD:EB:FC:4E:59:F7:E6:46:46:0D:90:31:15:66:DF:1F:47:ED:A9:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rev8Tln35kZGDZAxFWbfH0ftqRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/384995-3ade-4b52-bffb-86626647086c/1/CAV74AtxLpkgFFUzKk3o_4tiQMo.roa
Signing time: Sat 01 Jan 2022 12:05:49 +0000
ROA not before: Sat 01 Jan 2022 12:05:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31631
IP address blocks: 193.32.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37668913 (0x23ec831)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adebfc4e59f7e646460d90311566df1f47eda917
Validity
Not Before: Jan 1 12:05:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08057be00b712e99201455332a4de8ff8b6240ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f9:f2:c4:7f:7e:a3:5b:91:3f:b9:3e:e9:a6:
c2:74:a7:40:36:70:84:de:31:22:bf:f5:45:69:00:
46:f9:45:2a:be:ad:30:1f:4a:47:a9:1b:89:87:3c:
07:bc:77:dd:b1:3d:d7:c8:87:fd:6b:31:7b:b9:53:
c0:63:0f:c5:7d:18:24:c8:46:4e:35:f1:b5:7b:92:
4e:41:8d:4a:b3:fe:63:77:88:a7:b8:c8:7f:7b:7e:
9f:c0:00:4e:71:a4:c9:0b:a6:2a:8d:9e:d7:1d:99:
36:1e:89:fd:7c:67:c0:d4:97:79:d0:72:f5:b0:f1:
65:e7:04:46:3e:5a:25:f0:35:8b:06:5f:ca:7b:72:
c4:21:85:66:b0:be:6b:34:b6:6a:44:39:29:d1:5e:
a8:b9:e3:be:9d:90:5f:85:b9:61:14:3b:78:a3:ff:
0c:07:20:cf:93:ee:8e:77:d2:1c:c8:7f:56:53:d3:
74:6b:bd:99:b5:99:71:0a:4a:27:b6:ce:d5:04:11:
45:ae:9f:f4:e9:8d:9c:66:fc:88:46:e1:b4:25:07:
53:96:da:40:4b:26:16:a7:bd:ee:f8:3a:b2:45:0d:
55:b3:fe:f2:b9:ed:45:b2:7b:8a:39:16:84:36:75:
2a:c4:a2:86:0d:d3:37:ae:ef:8f:3d:db:7a:99:c5:
e3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:05:7B:E0:0B:71:2E:99:20:14:55:33:2A:4D:E8:FF:8B:62:40:CA
X509v3 Authority Key Identifier:
keyid:AD:EB:FC:4E:59:F7:E6:46:46:0D:90:31:15:66:DF:1F:47:ED:A9:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rev8Tln35kZGDZAxFWbfH0ftqRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/384995-3ade-4b52-bffb-86626647086c/1/CAV74AtxLpkgFFUzKk3o_4tiQMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/384995-3ade-4b52-bffb-86626647086c/1/rev8Tln35kZGDZAxFWbfH0ftqRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.93.0/24
Signature Algorithm: sha256WithRSAEncryption
91:55:5e:85:f0:22:6a:7c:13:00:70:99:27:c6:7e:bb:99:b7:
9c:e8:6b:67:68:b8:ae:2a:bb:c0:5d:2a:62:de:57:a7:67:49:
f6:2f:47:02:2a:5c:dd:15:c9:f8:99:c7:60:cc:7a:1c:39:22:
58:61:13:e3:1f:7f:df:3d:ff:ce:fa:c2:b9:4d:6f:c7:ea:f0:
a6:dc:14:f8:8b:a0:36:73:60:9f:45:35:cd:0d:0b:57:07:af:
85:46:dc:20:ec:25:9f:e9:0e:fc:c8:07:bb:8c:f9:f2:3c:2b:
7a:b2:f9:03:66:d8:41:da:7d:b8:53:6a:a0:ca:21:a4:7a:57:
30:bf:47:2d:57:5d:e6:2e:db:81:ca:5f:6a:d0:39:88:90:69:
42:cb:4e:ff:c2:05:e4:72:bf:73:32:23:20:8d:e7:e1:1c:9f:
47:1a:ed:59:18:f2:80:92:da:f2:45:b2:b6:0b:bc:fe:c4:ac:
e4:3d:fe:89:83:63:e8:39:41:f8:f5:4b:cb:15:b0:9b:bf:36:
96:c0:74:64:c5:82:cf:74:d2:70:3a:27:dd:21:63:2c:05:52:
62:db:ad:c2:63:b0:4f:d1:e5:ad:fa:ab:7e:63:b3:42:b6:5b:
e7:3d:25:bf:4d:0c:07:b4:02:87:ea:29:c4:74:49:ec:5a:bc:
69:36:ab:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:42 2024 by rpki-client on console-ams.rpki-client.org