Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/sSxEltzonDBtMylNu902sdUnc_s.roa
File: sSxEltzonDBtMylNu902sdUnc_s.roa (raw, json)
Hash identifier: GzmCH7Qzz/FpmY+h0xx9JAr8GC3wcuVqQJ7sVPfwku0=
Subject key identifier: B1:2C:44:96:DC:E8:9C:30:6D:33:29:4D:BB:DD:36:B1:D5:27:73:FB
Certificate issuer: /CN=3432ba1c6d0b02befe68cc94ae9d2de3107a6046
Certificate serial: 09A3C1BE
Authority key identifier: 34:32:BA:1C:6D:0B:02:BE:FE:68:CC:94:AE:9D:2D:E3:10:7A:60:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NDK6HG0LAr7-aMyUrp0t4xB6YEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/sSxEltzonDBtMylNu902sdUnc_s.roa
Signing time: Sat 01 Jan 2022 15:56:10 +0000
ROA not before: Sat 01 Jan 2022 15:56:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 193.218.207.0/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161726910 (0x9a3c1be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3432ba1c6d0b02befe68cc94ae9d2de3107a6046
Validity
Not Before: Jan 1 15:56:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b12c4496dce89c306d33294dbbdd36b1d52773fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4f:b7:04:a5:e2:9f:44:37:c1:c4:1a:c9:23:
3d:5f:07:f2:b8:39:5f:34:c6:2f:28:09:7b:04:08:
dc:03:82:5b:16:84:5a:02:61:ff:07:b6:66:b4:d0:
0d:cb:f6:cd:92:1e:0c:ed:8c:76:c2:e3:2c:23:b2:
6a:a2:fb:fe:88:d9:d6:ab:81:e4:9e:db:0b:f0:87:
bb:46:f6:51:6f:7e:18:55:2a:2f:dc:ed:0e:a3:c8:
b3:01:24:69:7c:f9:a1:01:1e:be:08:e8:0d:f6:fc:
a2:40:9e:2d:eb:7d:df:64:83:71:e7:a5:16:0d:a6:
47:45:02:f6:e1:ee:cd:c9:27:53:68:4a:fa:70:bd:
e6:f9:08:1c:56:46:21:2b:a7:5e:39:a6:6e:39:8e:
72:a7:0f:d0:1a:85:23:f7:6c:9d:5b:a3:56:da:be:
8d:c7:d5:3e:5c:54:f0:2b:91:76:ab:d8:cd:8a:33:
fb:54:ad:c4:85:30:5a:05:7d:8a:4a:55:ff:0f:08:
53:6c:1b:ed:62:32:1b:6a:49:d2:a6:10:d8:51:fc:
48:10:ec:fe:0c:a8:6a:e6:ed:33:22:dd:fe:8b:dc:
ea:de:2d:e8:b7:a3:b3:e4:a7:f1:34:47:44:46:26:
96:7f:44:7d:7b:6f:c3:70:75:87:4f:96:20:1c:ad:
e5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:2C:44:96:DC:E8:9C:30:6D:33:29:4D:BB:DD:36:B1:D5:27:73:FB
X509v3 Authority Key Identifier:
keyid:34:32:BA:1C:6D:0B:02:BE:FE:68:CC:94:AE:9D:2D:E3:10:7A:60:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NDK6HG0LAr7-aMyUrp0t4xB6YEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/sSxEltzonDBtMylNu902sdUnc_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/25e17b-824e-4e7d-b3e8-27b87bfbee7b/1/NDK6HG0LAr7-aMyUrp0t4xB6YEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.207.0/28
Signature Algorithm: sha256WithRSAEncryption
c4:6f:e1:ab:e4:8f:4e:c3:aa:26:f1:af:3b:0f:63:cc:71:a9:
58:bb:c9:ad:12:5f:54:02:0e:05:a7:00:3f:72:a3:66:08:9e:
ad:b3:b1:0d:ab:92:23:03:aa:af:b1:d3:70:5a:94:8e:47:54:
63:b9:83:bb:22:f9:30:c0:fc:55:26:45:f6:16:ef:fd:ca:40:
96:72:8e:ab:cd:20:cc:51:c6:e2:8d:0e:be:1a:7d:5f:bb:02:
54:04:7b:2a:1f:f1:48:7e:0b:7f:8d:a2:22:5f:20:0d:d5:34:
bd:42:5f:6e:de:20:0b:d8:d8:eb:bd:ff:b0:62:6e:91:2c:f1:
b0:a0:b9:90:41:03:d5:42:55:b6:25:2a:c4:22:fa:d9:f1:bd:
45:23:a6:7a:82:ed:0e:b5:5c:50:7d:04:a7:22:15:8a:a4:8b:
52:0b:ef:ec:7d:7a:ac:92:f2:5a:29:19:97:f0:d9:bc:2f:14:
91:2d:0f:83:bd:5f:fb:d8:52:7c:18:02:10:21:59:48:d3:6c:
db:a5:44:f1:4d:4e:dc:3d:a9:ff:9c:d5:8d:2c:e4:ca:a3:c8:
25:74:21:c1:a9:6f:a2:9a:d6:08:04:b9:6a:c5:4d:7a:be:6b:
39:ff:eb:2e:be:df:65:53:65:5c:dd:7b:89:e8:aa:fb:63:00:
ab:ae:f1:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:26 2024 by rpki-client on console-ams.rpki-client.org