Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/xi4HNLr0PHUezY0qClVQ5w6Dv6k.roa
File: xi4HNLr0PHUezY0qClVQ5w6Dv6k.roa (raw, json)
Hash identifier: 5pn0onK18Sjia//5qsO5+Zt3BzLh1V60vt5Z3WZwd3w=
Subject key identifier: C6:2E:07:34:BA:F4:3C:75:1E:CD:8D:2A:0A:55:50:E7:0E:83:BF:A9
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0F7BA135
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/xi4HNLr0PHUezY0qClVQ5w6Dv6k.roa
Signing time: Sat 01 Jan 2022 08:04:59 +0000
ROA not before: Sat 01 Jan 2022 08:04:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42385
IP address blocks: 193.232.177.0/24 maxlen: 24
2a0c:a9c7:177::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259760437 (0xf7ba135)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 1 08:04:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c62e0734baf43c751ecd8d2a0a5550e70e83bfa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8a:ff:b7:98:7d:58:d1:df:4b:3e:a0:22:c0:
6c:eb:ea:76:77:e1:5d:25:ce:ff:49:ec:33:21:a3:
7e:59:33:23:34:e3:f4:2b:0c:5c:da:31:4e:3d:2f:
c2:9e:c7:27:d5:e3:ff:5d:f7:f3:be:63:0d:cb:6d:
66:69:19:47:92:ad:be:0b:b4:81:cb:c8:05:fd:41:
28:d9:bf:45:f9:40:a3:f3:89:f6:21:d9:1c:d9:45:
e7:56:7b:20:ca:a1:2d:6b:86:25:6e:27:d4:23:af:
10:64:79:4f:c4:03:63:3a:d9:02:6a:58:c8:37:e0:
36:ab:e6:fe:56:fa:25:c1:b3:59:65:d5:2f:b5:7c:
fc:ae:c7:0f:ee:f2:81:59:78:b3:72:7c:44:7d:40:
8b:40:93:4e:9e:e7:4b:d0:57:3e:9d:7c:e4:90:fa:
69:c1:02:7e:7a:66:80:a8:45:ef:26:02:6a:12:3f:
1c:ee:4f:e1:3f:8d:74:1d:04:58:ae:a9:5b:c6:6a:
df:ab:2d:b2:2a:01:0f:28:89:a5:7b:ec:26:1c:00:
92:2e:71:3c:1e:df:f6:f8:f6:ac:fd:db:d7:06:dc:
2d:4c:07:03:89:ae:74:bc:cd:5d:a7:e5:10:24:6d:
47:66:58:74:29:25:bf:59:0e:b5:80:e5:b0:ff:d0:
a9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:2E:07:34:BA:F4:3C:75:1E:CD:8D:2A:0A:55:50:E7:0E:83:BF:A9
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/xi4HNLr0PHUezY0qClVQ5w6Dv6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.177.0/24
IPv6:
2a0c:a9c7:177::/48
Signature Algorithm: sha256WithRSAEncryption
19:ec:d3:a6:cd:0b:1d:29:54:ef:14:db:e4:d5:a1:67:87:a1:
16:70:fd:66:d3:b9:c9:f2:e7:f8:cb:04:a7:9b:ac:62:30:64:
77:79:88:df:54:52:47:ee:5c:95:52:d8:8e:bc:0b:af:c3:7d:
0e:ce:b1:89:d2:d9:4f:74:ff:3c:c3:ef:cf:d5:db:f7:24:44:
da:61:2d:4c:dd:9e:cf:32:96:b6:ff:eb:25:f8:ba:22:97:5c:
e7:bd:47:cf:cd:11:f7:a9:b2:ea:8d:d3:ab:93:ce:c8:ce:78:
37:68:ad:2a:e8:2c:99:c1:61:e6:96:bb:65:01:db:0a:38:2b:
0c:a4:49:0a:cb:aa:83:16:2c:94:c9:52:f9:b9:7e:8c:83:63:
11:86:8a:ce:84:a0:11:33:f8:e6:e9:e8:e2:df:b8:5c:11:7e:
0e:84:b4:c2:00:63:47:86:ba:2b:a9:90:ee:8c:f8:02:ac:5f:
80:55:2b:11:e5:b2:f3:de:79:3a:b2:5e:4c:d7:cf:09:2e:0e:
d3:34:dc:81:91:dc:93:7d:69:04:00:83:1c:c1:14:e2:ce:0b:
8f:ba:61:14:9f:81:9b:2e:d6:2e:c7:87:f7:6a:6e:a1:ef:dc:
31:66:e0:39:7f:ae:43:42:23:52:85:06:6b:54:9e:2f:9d:eb:
45:7d:fc:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org