Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/03282e-0208-4df7-83ce-69cf3ff2c36a/1/PIhr3c6w1dikjsJyR3QLCGst4SA.roa
File: PIhr3c6w1dikjsJyR3QLCGst4SA.roa (raw, json)
Hash identifier: 5vJKbfv+tVTv8dezK7EucIBJUkjLy1esV1AgiHbPHQQ=
Subject key identifier: 3C:88:6B:DD:CE:B0:D5:D8:A4:8E:C2:72:47:74:0B:08:6B:2D:E1:20
Certificate issuer: /CN=3322a06b46f06af23f81e15888950a36063ebcd9
Certificate serial: 0374C5A5
Authority key identifier: 33:22:A0:6B:46:F0:6A:F2:3F:81:E1:58:88:95:0A:36:06:3E:BC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MyKga0bwavI_geFYiJUKNgY-vNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/03282e-0208-4df7-83ce-69cf3ff2c36a/1/PIhr3c6w1dikjsJyR3QLCGst4SA.roa
Signing time: Sat 01 Jan 2022 03:51:54 +0000
ROA not before: Sat 01 Jan 2022 03:51:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60631
IP address blocks: 193.105.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57984421 (0x374c5a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3322a06b46f06af23f81e15888950a36063ebcd9
Validity
Not Before: Jan 1 03:51:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c886bddceb0d5d8a48ec27247740b086b2de120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:69:ca:5b:08:1f:43:50:b2:28:aa:86:a4:fa:
0a:26:99:dd:4e:ad:6d:04:ca:98:cf:e3:14:d9:7d:
d8:e3:b2:a8:52:96:6c:fd:77:b4:1c:ee:22:6d:17:
6e:d3:41:e2:46:3a:c6:3a:2c:d8:cb:60:e5:a4:6a:
c1:c8:f4:4c:68:26:9f:d7:4f:93:de:b6:81:7a:2a:
f2:be:00:04:7e:cf:d4:dc:d3:0c:be:53:a5:43:4e:
ed:46:2a:5c:8e:5b:50:ff:3f:d3:83:09:0b:e9:df:
38:7c:c8:5f:90:4d:b2:4a:6c:5d:59:ca:ed:ee:4f:
fb:17:1c:03:a8:12:05:98:5b:6f:db:e9:fb:37:aa:
ed:07:2e:a0:85:86:2e:2c:7f:95:1b:77:b0:e8:f6:
a3:7f:e7:1f:49:cc:c2:e7:5e:a5:8a:30:27:04:b0:
51:d7:b7:eb:ee:0e:c3:b7:28:e0:36:80:5b:f9:0d:
e6:f0:21:8c:a9:8e:a8:2f:2a:aa:ba:a2:6c:51:35:
d1:0c:6c:f5:20:f9:68:d4:8e:da:82:02:13:84:79:
f0:89:c0:f3:3f:99:0f:cb:a8:06:c7:d2:0a:f8:42:
1a:d6:21:56:90:dd:65:8a:cd:19:13:04:d7:49:b7:
54:8c:20:3e:19:df:f8:f8:e6:aa:6f:25:5c:23:81:
82:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:88:6B:DD:CE:B0:D5:D8:A4:8E:C2:72:47:74:0B:08:6B:2D:E1:20
X509v3 Authority Key Identifier:
keyid:33:22:A0:6B:46:F0:6A:F2:3F:81:E1:58:88:95:0A:36:06:3E:BC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MyKga0bwavI_geFYiJUKNgY-vNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/03282e-0208-4df7-83ce-69cf3ff2c36a/1/PIhr3c6w1dikjsJyR3QLCGst4SA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/03282e-0208-4df7-83ce-69cf3ff2c36a/1/MyKga0bwavI_geFYiJUKNgY-vNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.234.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:e1:a1:85:b2:f1:82:0d:54:c9:0e:69:69:98:13:c2:ed:11:
37:f9:9b:1c:61:3c:d4:52:05:39:a3:4e:f9:f4:21:64:11:1d:
9a:ba:3b:ce:fd:d2:2d:8f:5c:87:e1:8a:bc:46:a0:28:ea:10:
70:f0:f8:a2:8f:ef:1c:17:43:7b:39:3a:3d:dd:cb:d3:ce:e3:
23:1d:bb:8d:7c:22:7e:0a:4f:6a:62:7c:52:0e:68:db:15:87:
bd:20:55:79:42:0e:95:ad:68:37:04:bb:cf:9f:27:d7:15:fd:
18:e2:8d:0a:93:e2:20:3f:21:51:98:cf:f8:41:63:7d:26:d4:
5c:3b:01:0e:29:b0:86:bd:00:49:05:39:0a:e5:fe:6a:c3:98:
1a:7e:44:9a:cb:71:6f:59:13:d2:79:8e:26:67:98:bf:60:6b:
ec:5d:b4:77:3c:59:eb:ca:49:69:62:d9:b5:c9:43:af:20:84:
63:8c:65:7e:dc:28:9b:32:7b:04:3b:14:b7:76:1f:8b:32:72:
cf:26:46:53:45:47:9b:16:c7:62:3d:24:cd:86:7c:07:37:1c:
78:a3:d8:3a:e1:62:33:a7:4c:77:15:93:17:c4:14:95:dd:bc:
4e:eb:4a:2d:34:ce:9d:1a:9c:02:68:ab:03:d2:27:be:fa:77:
0c:d6:6b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:42 2024 by rpki-client on console-ams.rpki-client.org