Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/4tXAhyTw6KZMvjEm6XvmXMydXL0.roa
File: 4tXAhyTw6KZMvjEm6XvmXMydXL0.roa (raw, json)
Hash identifier: txeENdXrD86DXQ0jZI9a7xpK1/wzsq+7H7ZkSWGqi58=
Subject key identifier: E2:D5:C0:87:24:F0:E8:A6:4C:BE:31:26:E9:7B:E6:5C:CC:9D:5C:BD
Certificate issuer: /CN=405d645741215677b7748d1fdefd416207adb12d
Certificate serial: 01881F59A85FF17C9EDD0F75C98AA1CBA9CD
Authority key identifier: 40:5D:64:57:41:21:56:77:B7:74:8D:1F:DE:FD:41:62:07:AD:B1:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QF1kV0EhVne3dI0f3v1BYgetsS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/4tXAhyTw6KZMvjEm6XvmXMydXL0.roa
Signing time: Mon 15 May 2023 12:19:09 +0000
ROA not before: Mon 15 May 2023 12:19:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206123
IP address blocks: 193.8.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1f:59:a8:5f:f1:7c:9e:dd:0f:75:c9:8a:a1:cb:a9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=405d645741215677b7748d1fdefd416207adb12d
Validity
Not Before: May 15 12:19:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2d5c08724f0e8a64cbe3126e97be65ccc9d5cbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e7:b7:4a:d3:6e:f7:f1:71:ff:34:7e:77:49:
10:4a:cf:ec:c4:ce:5f:79:5f:a7:44:64:d1:80:09:
5c:3e:c5:1f:fd:8e:e1:39:3b:f8:f4:23:b2:d3:c3:
12:64:6b:ab:90:9e:44:7c:9d:91:5b:6d:3a:88:57:
6b:54:b3:98:20:c4:10:79:f8:0f:c1:aa:3e:51:18:
7d:e3:b5:30:b2:6c:a7:48:31:19:ec:89:44:a0:dd:
0c:e6:37:66:47:27:5d:fa:17:02:97:55:d0:b1:09:
9a:9d:79:d3:5f:2b:6a:40:ad:c2:d2:d1:68:cf:30:
12:a8:7f:ce:42:f7:93:3f:26:45:f1:4d:49:83:a7:
70:8d:7a:93:d4:9c:8a:e3:cb:51:dd:68:7b:63:55:
92:6b:cf:ca:e7:3e:ac:0f:40:38:05:6b:ac:46:a6:
cd:03:4b:51:6d:15:bb:87:1d:9f:38:0a:e8:e5:4f:
65:83:1e:5a:07:f7:cc:5c:0c:a8:2e:ac:25:a1:d5:
7f:dd:81:00:66:1d:1e:a1:69:59:7d:a0:eb:2c:e6:
60:5f:51:96:70:c6:1d:3b:b3:62:6e:84:6b:6c:f3:
dc:0a:d2:24:f0:63:81:06:d6:07:a7:e8:49:4e:6b:
87:4a:19:45:76:ea:78:d1:be:e9:c4:0c:a5:86:0a:
ae:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D5:C0:87:24:F0:E8:A6:4C:BE:31:26:E9:7B:E6:5C:CC:9D:5C:BD
X509v3 Authority Key Identifier:
keyid:40:5D:64:57:41:21:56:77:B7:74:8D:1F:DE:FD:41:62:07:AD:B1:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QF1kV0EhVne3dI0f3v1BYgetsS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/4tXAhyTw6KZMvjEm6XvmXMydXL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/QF1kV0EhVne3dI0f3v1BYgetsS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.76.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:cb:1e:61:48:14:b1:65:e4:4e:75:89:63:29:40:d7:16:76:
86:a7:2f:5f:42:95:6f:6e:1b:b8:fd:4e:15:e2:5a:04:12:85:
7e:5b:a1:da:c7:03:b7:16:2e:d1:d1:9f:5d:bb:90:3f:53:96:
b8:9c:6e:98:8b:e5:9a:d1:c3:b5:a8:4f:78:ea:25:f1:33:c3:
89:b8:92:3e:1c:4e:71:b5:d1:c0:26:8f:a4:e2:b5:9a:98:cc:
fe:1b:b3:8a:92:8a:6c:7e:95:a2:be:e2:28:22:40:31:b9:fd:
03:5c:59:5c:21:18:b8:9f:71:f5:e0:c7:7c:47:81:40:52:c6:
44:21:ec:90:1f:22:8d:be:7b:c7:06:bc:79:d8:24:38:23:7c:
af:72:1b:d1:f8:7a:af:1c:f1:10:15:9e:46:00:c2:08:58:a8:
35:44:9c:cc:53:bd:00:c3:f1:64:7d:ee:57:09:7c:ba:68:47:
cb:cd:90:a8:0c:d5:90:cb:ac:fc:16:3b:9f:50:1e:41:e7:54:
c1:98:f2:9d:0a:dd:3d:a5:49:ac:f3:cb:9f:25:ad:58:c8:42:
23:8b:e0:1d:96:59:83:c6:17:21:ef:58:7d:17:b6:c6:09:74:
33:03:94:73:7a:f4:58:76:64:6a:13:4e:20:60:56:57:4a:e7:
94:2b:6a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:38 2025 by rpki-client