Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/5H3be-qgJhqH-6oZDnbq0pJ180w.roa
File: 5H3be-qgJhqH-6oZDnbq0pJ180w.roa (raw, json)
Hash identifier: jt4MKxbMuuB9RhFb90S6zKPtmX1ydg+T5XQE7b4w4Nc=
Subject key identifier: E4:7D:DB:7B:EA:A0:26:1A:87:FB:AA:19:0E:76:EA:D2:92:75:F3:4C
Certificate issuer: /CN=4043e3f7024589b962ade81cf4456306f4d35e68
Certificate serial: 03996CE9
Authority key identifier: 40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/5H3be-qgJhqH-6oZDnbq0pJ180w.roa
Signing time: Sat 01 Jan 2022 14:03:58 +0000
ROA not before: Sat 01 Jan 2022 14:03:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21263
IP address blocks: 193.102.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60386537 (0x3996ce9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4043e3f7024589b962ade81cf4456306f4d35e68
Validity
Not Before: Jan 1 14:03:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e47ddb7beaa0261a87fbaa190e76ead29275f34c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:de:8c:46:f1:b2:19:ed:e8:5f:1c:3e:bf:28:
4e:26:a8:03:37:0e:0e:0b:9e:89:d0:e2:13:7f:6a:
9e:72:f8:c4:2a:a0:5f:3b:4a:66:70:0d:d4:2e:a1:
8d:9d:73:0b:e1:37:e6:57:36:de:d5:6b:95:5e:ac:
d2:e2:37:5d:4f:e0:82:cd:8c:bb:44:b2:38:f3:be:
e9:cf:5e:97:7a:6c:f6:16:00:1c:39:08:aa:c4:45:
4c:12:3e:67:14:07:64:9d:06:ef:61:b1:5d:fe:1f:
d9:72:2e:e5:65:38:65:36:9b:a9:91:7f:a9:12:8e:
8a:3c:f5:a2:15:3f:e2:0b:55:a6:a8:23:2f:62:ab:
b3:07:60:54:7b:56:8a:78:0a:d3:44:48:0d:13:41:
c3:5d:d8:ff:92:00:2a:89:34:96:2b:0e:dd:ef:37:
be:7c:23:86:3d:fa:b0:ca:6d:da:56:54:41:c2:48:
10:3d:b0:d9:dd:58:c0:1f:2d:b5:aa:24:7a:3a:48:
a0:1e:ae:5b:6d:b5:47:20:55:7d:83:06:5d:b0:08:
ad:d4:c4:3c:90:bb:78:ae:aa:34:05:45:a8:8e:88:
94:f6:bc:d1:b4:79:45:03:37:35:df:4d:bb:cd:0b:
fb:37:b5:ea:bd:4a:4a:93:b6:8c:ff:80:b7:5e:9a:
60:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7D:DB:7B:EA:A0:26:1A:87:FB:AA:19:0E:76:EA:D2:92:75:F3:4C
X509v3 Authority Key Identifier:
keyid:40:43:E3:F7:02:45:89:B9:62:AD:E8:1C:F4:45:63:06:F4:D3:5E:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QEPj9wJFibliregc9EVjBvTTXmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/5H3be-qgJhqH-6oZDnbq0pJ180w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/ce1537-3892-4684-a65e-8ef8887e2d1c/1/QEPj9wJFibliregc9EVjBvTTXmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.102.75.0/24
Signature Algorithm: sha256WithRSAEncryption
80:36:ee:1f:1b:22:94:c7:1c:c0:71:11:e2:d5:19:39:71:37:
c7:ca:05:54:c7:b3:dc:59:8e:e0:0a:1d:05:12:98:71:d7:f9:
ac:15:7a:da:86:53:4d:89:cd:a4:f8:9b:9f:47:3d:78:36:72:
df:59:5f:af:75:4a:27:03:59:88:74:cf:dd:bc:aa:05:b7:58:
78:2f:3f:6a:66:51:c3:f7:7c:06:55:aa:63:98:3c:55:95:7b:
3a:17:b7:d0:8a:6f:d5:28:e3:0f:88:f0:ad:4f:d2:77:ff:41:
c0:be:8a:48:40:db:1f:bb:06:c6:84:58:8e:8a:d4:7a:a4:4a:
97:23:9b:cb:83:a2:3b:f3:3e:d3:1b:63:e6:89:cb:64:f3:ef:
fa:3b:b0:88:21:8a:24:5c:d7:39:dc:35:bb:47:ab:1c:d5:07:
4b:ec:35:38:f7:c8:9d:4f:54:8b:8c:ee:10:be:9a:09:a4:d9:
a1:51:9b:03:51:de:02:46:62:33:de:8f:0f:76:70:31:7c:28:
2e:f9:fa:1e:38:10:0d:ff:7b:2a:73:5f:35:c4:80:2e:94:53:
b0:11:2c:3f:b4:65:e0:5d:54:a4:80:b5:05:cf:d3:1e:d7:6e:
eb:d1:63:70:7b:f9:c9:0e:df:47:36:42:9b:a4:df:cd:1a:22:
8f:b8:5e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:58 2024 by rpki-client on console-fra.rpki-client.org