Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/SH2-97BuT1gIkXGMSlA0g4PzNv4.roa
File: SH2-97BuT1gIkXGMSlA0g4PzNv4.roa (raw, json)
Hash identifier: SExq/XhvnjPLn1eSdn+73GhUmTL/ipJYCK1aCzwj/q8=
Subject key identifier: 48:7D:BE:F7:B0:6E:4F:58:08:91:71:8C:4A:50:34:83:83:F3:36:FE
Certificate issuer: /CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Certificate serial: 17ED13B0
Authority key identifier: 2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/SH2-97BuT1gIkXGMSlA0g4PzNv4.roa
Signing time: Sat 01 Jan 2022 11:01:19 +0000
ROA not before: Sat 01 Jan 2022 11:01:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42301
IP address blocks: 193.200.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401413040 (0x17ed13b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Validity
Not Before: Jan 1 11:01:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=487dbef7b06e4f580891718c4a50348383f336fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5a:9b:84:69:f8:e0:6f:86:7e:64:24:4a:d2:
08:dd:38:73:43:d3:d5:70:8b:1a:ce:aa:8e:be:8c:
60:0a:dd:df:c8:f8:c4:45:63:7c:53:54:1d:ff:0c:
29:62:b6:7e:32:63:17:f4:f5:5a:55:7f:4c:1c:13:
22:8b:de:eb:40:3e:3c:07:31:fe:2e:42:72:76:90:
0f:98:be:b2:78:7d:d9:9a:e9:73:ec:94:d9:33:11:
f6:7d:f8:f4:44:e0:9f:4b:94:26:da:c2:9f:6b:58:
f4:a6:83:2d:77:a5:80:31:3c:57:95:58:65:bc:ac:
76:6e:33:7a:47:3e:7e:21:51:33:9c:9a:6f:62:96:
6d:67:39:9c:ac:36:53:1a:1a:93:63:ab:54:9a:ed:
ae:f1:6f:16:c9:1c:16:61:39:9c:d3:a4:b9:47:73:
44:7a:20:f1:c0:f4:80:1c:ac:b4:3f:4a:86:c5:0e:
26:13:97:68:dc:0f:67:bc:ad:5f:c6:ab:59:96:f7:
5c:35:5c:9b:22:ef:cc:3c:72:63:3c:68:f5:a3:03:
48:a7:3f:4d:c2:c3:82:6d:e9:8e:d9:27:04:83:32:
73:98:61:84:38:94:10:9d:f9:22:93:ae:90:13:55:
ba:9b:b9:cc:f5:95:ab:3a:2f:e2:0c:1d:b2:3e:7a:
b7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:7D:BE:F7:B0:6E:4F:58:08:91:71:8C:4A:50:34:83:83:F3:36:FE
X509v3 Authority Key Identifier:
keyid:2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/SH2-97BuT1gIkXGMSlA0g4PzNv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.239.0/24
Signature Algorithm: sha256WithRSAEncryption
34:23:27:28:19:bf:37:35:c5:d3:3b:30:39:0f:22:ad:54:5c:
9c:38:d4:28:a8:13:50:99:d8:40:e2:ff:6a:2d:68:a1:bb:8c:
6d:6b:e2:07:1a:69:1d:44:b8:7f:ef:ae:e9:90:f2:19:d6:75:
36:25:9d:16:d9:cb:37:ff:9f:df:6a:16:58:0e:82:a2:6c:85:
01:ab:0a:42:20:1d:f7:88:66:6c:93:d5:dd:20:4f:07:2e:da:
b3:6b:65:54:e6:8d:85:98:46:4f:a3:92:e0:90:4c:1c:83:1c:
c9:44:54:e8:e3:3d:bb:34:d0:3b:8d:95:59:0c:47:23:f3:19:
82:ae:4c:36:7c:81:75:45:a7:d6:d4:92:21:00:ff:d9:e9:ba:
e1:40:12:1b:c4:88:65:59:6f:36:09:b3:97:5f:a3:a4:a8:ab:
31:d4:33:d5:bd:4e:40:dd:c6:2a:7e:ea:33:79:22:23:15:5d:
29:a4:35:d3:e8:41:e3:e2:44:2b:b1:57:ad:0e:bd:d9:49:2f:
38:fc:63:fb:22:47:05:98:2f:2b:09:cd:95:01:a0:e6:72:98:
a6:e3:41:d4:4d:5b:56:39:ec:2a:fe:dd:f7:ae:c3:0b:a8:20:
c1:ab:3f:bc:99:4f:f3:bf:9c:18:cb:9f:e2:23:5a:9f:5b:46:
a0:28:bb:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:59 2024 by rpki-client on console-ams.rpki-client.org