Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/220ce4-11a3-4d92-a488-c3947e76be75/1/lb9CV7H2hAaeSXuhxnbV--DuXww.roa
File: lb9CV7H2hAaeSXuhxnbV--DuXww.roa (raw, json)
Hash identifier: +uvlD5cWQ8yMZqiMhC1miJcApB6G3YcqBiWcvPGnZOQ=
Subject key identifier: 95:BF:42:57:B1:F6:84:06:9E:49:7B:A1:C6:76:D5:FB:E0:EE:5F:0C
Certificate issuer: /CN=f37063a85445019ab845a5b7e54395cdd39927f6
Certificate serial: 023A0AB3
Authority key identifier: F3:70:63:A8:54:45:01:9A:B8:45:A5:B7:E5:43:95:CD:D3:99:27:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/83BjqFRFAZq4RaW35UOVzdOZJ_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/220ce4-11a3-4d92-a488-c3947e76be75/1/lb9CV7H2hAaeSXuhxnbV--DuXww.roa
Signing time: Sat 01 Jan 2022 10:56:56 +0000
ROA not before: Sat 01 Jan 2022 10:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212476
IP address blocks: 193.3.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37358259 (0x23a0ab3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f37063a85445019ab845a5b7e54395cdd39927f6
Validity
Not Before: Jan 1 10:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95bf4257b1f684069e497ba1c676d5fbe0ee5f0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:49:f2:ce:9e:c6:fe:6f:0e:01:77:7d:b5:d8:
34:f5:49:a1:ab:6c:23:c7:2c:64:96:ed:56:09:2d:
2e:b1:ab:0b:18:18:72:d3:24:0d:d7:a1:79:fd:c3:
1f:7c:50:d8:2f:1c:3f:b2:74:86:12:63:c3:da:fe:
94:36:0b:88:63:f7:f3:ca:05:e5:c5:84:a5:2e:ca:
59:06:fd:57:5a:27:b1:76:cb:d7:e0:95:ba:19:7e:
4a:b6:8a:85:71:90:d0:2a:73:1f:9c:e4:29:9d:ee:
89:33:38:43:38:35:e3:3d:66:f7:b7:d2:bb:f8:79:
d6:7e:5d:c1:aa:b4:25:a9:63:ab:2f:aa:de:c8:cd:
58:e6:5d:d9:4c:b9:ab:54:d9:4e:80:5f:6f:d7:53:
93:77:37:3b:65:0b:e8:c1:f5:04:1b:b4:9f:8d:c3:
35:5f:56:bc:86:4e:02:19:21:f1:4e:f1:46:08:84:
bb:2f:93:55:75:2a:0a:d6:f9:8c:cc:07:31:e5:6c:
47:9f:bb:cf:c7:64:ca:db:7b:21:e3:14:6e:4d:3e:
63:66:1d:38:b3:60:6e:2c:16:8a:12:6a:55:b7:a8:
2b:63:8d:c8:bb:c4:05:ec:ff:b5:85:f5:a2:ce:f1:
82:28:21:89:25:7c:aa:44:10:3d:eb:12:3e:bf:1a:
e1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BF:42:57:B1:F6:84:06:9E:49:7B:A1:C6:76:D5:FB:E0:EE:5F:0C
X509v3 Authority Key Identifier:
keyid:F3:70:63:A8:54:45:01:9A:B8:45:A5:B7:E5:43:95:CD:D3:99:27:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/83BjqFRFAZq4RaW35UOVzdOZJ_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/220ce4-11a3-4d92-a488-c3947e76be75/1/lb9CV7H2hAaeSXuhxnbV--DuXww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/220ce4-11a3-4d92-a488-c3947e76be75/1/83BjqFRFAZq4RaW35UOVzdOZJ_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.31.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:bd:84:ae:7e:f3:89:f7:f4:e9:bf:47:2d:b3:cb:a8:ed:99:
ab:16:df:b4:ce:eb:bd:58:36:54:f5:6e:25:13:ee:8c:fd:23:
4f:ab:b5:fb:7a:76:bb:8f:72:e5:d7:c5:f4:71:75:78:aa:26:
0c:5c:18:6f:6b:8f:2b:a0:39:a5:59:02:03:be:b5:45:76:f7:
71:44:40:0d:95:a7:da:22:2a:8b:5f:7c:18:d0:2a:fa:45:0f:
4a:2d:f1:e2:1d:33:7e:2a:e8:1c:6a:f7:b0:dc:f5:d0:49:ff:
64:69:ee:d8:5a:ca:9c:a7:a4:dd:03:3c:83:99:ea:f3:01:44:
7e:c5:03:06:be:72:8c:f0:14:17:93:4f:6b:c0:4a:07:80:6f:
78:6f:d9:b5:0c:62:9d:84:5e:28:f3:14:4a:02:7d:55:30:6b:
fd:22:11:b8:4d:a7:fe:42:0c:2d:cd:83:58:5b:17:a5:8a:89:
91:25:2b:ad:76:f3:69:ed:58:66:6a:49:17:ab:8b:63:d3:92:
ae:37:7d:90:1a:61:6a:b1:72:8e:72:27:3b:d0:10:8a:34:18:
f0:5f:12:9a:11:44:0c:8a:49:5c:76:f1:e9:81:e0:93:8b:7b:
e5:60:70:c8:87:a5:2a:e1:bd:ea:da:e6:51:9a:c3:65:da:17:
fd:85:14:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:46 2024 by rpki-client on console-fra.rpki-client.org