Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/0SXa4kT0PtAUcloZKbD1_3WJ38M.roa
File: 0SXa4kT0PtAUcloZKbD1_3WJ38M.roa (raw, json)
Hash identifier: 0IBgGDi2emJPBG8AlU34qN9hYMZcAMqYwXWXlYP1N64=
Subject key identifier: D1:25:DA:E2:44:F4:3E:D0:14:72:5A:19:29:B0:F5:FF:75:89:DF:C3
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 0184E12C027C2A8E867BBB0619D1601623E1
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/0SXa4kT0PtAUcloZKbD1_3WJ38M.roa
Signing time: Mon 05 Dec 2022 07:24:28 +0000
ROA not before: Mon 05 Dec 2022 07:24:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212384
IP address blocks: 193.178.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:2c:02:7c:2a:8e:86:7b:bb:06:19:d1:60:16:23:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: Dec 5 07:24:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d125dae244f43ed014725a1929b0f5ff7589dfc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:78:a0:b7:7c:72:6a:cb:26:22:af:67:36:b6:
7b:3d:5d:c2:96:28:93:22:83:ad:d5:3b:d4:8a:08:
c2:22:b0:a4:d7:f2:19:16:a0:ca:38:52:bc:20:75:
5e:df:f6:5d:e4:c1:51:ba:4e:ff:d1:ce:32:70:fa:
d1:bf:3f:85:57:db:8e:2f:11:37:3a:64:f5:d0:cf:
ed:e6:be:bf:92:51:40:9a:82:7c:a8:6d:46:72:2f:
fd:fa:2a:9b:02:46:66:1b:11:97:a0:4e:f0:42:c5:
a0:9a:80:a9:d3:04:6c:30:4f:09:d2:78:1d:cc:ef:
b1:56:23:6d:56:3e:c8:ec:8e:9d:52:b4:3c:95:cb:
76:99:62:5d:75:ee:00:ae:25:54:e9:aa:41:77:24:
5b:66:cc:aa:5a:3b:b6:96:c8:e1:dd:de:d6:ec:f3:
55:4d:a9:b1:e7:c8:10:f6:ff:56:bb:9a:0d:99:e6:
64:41:e7:76:c8:3a:a7:74:82:f2:6d:e9:ed:d2:62:
af:e2:71:69:20:bf:88:41:cb:86:cc:36:4e:c2:60:
a9:a1:62:24:a7:07:6e:98:33:50:77:00:74:c5:87:
5a:80:c8:a3:96:05:f0:ae:1c:d5:e8:80:25:6a:09:
2f:3f:1b:09:59:85:55:ab:ea:47:74:96:38:66:87:
17:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:25:DA:E2:44:F4:3E:D0:14:72:5A:19:29:B0:F5:FF:75:89:DF:C3
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/0SXa4kT0PtAUcloZKbD1_3WJ38M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.52.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:6e:3f:13:85:c5:52:11:dd:4f:9f:52:6b:54:d5:84:71:b2:
93:ea:87:5a:be:c7:21:ea:72:75:88:e6:22:3b:26:a5:5d:d6:
81:3a:ca:f0:b2:4d:37:78:88:5d:4e:8c:43:80:4f:42:79:6e:
f6:f3:ea:5e:da:d1:74:3e:dd:77:d2:84:11:63:55:5b:23:51:
e7:e8:4b:c0:59:4b:6d:93:6d:5b:78:90:5e:11:60:b9:e9:0e:
25:bb:26:04:2b:f2:14:de:85:57:2e:1b:68:62:99:3f:b0:92:
f1:68:f7:d3:ed:a3:e5:a8:f6:82:63:36:5d:2f:9b:18:8d:21:
61:b1:83:b4:6b:9f:50:37:6a:9c:cd:a4:50:59:ca:84:46:b1:
65:83:9c:33:f9:11:eb:3e:06:a5:63:0d:62:be:10:02:5f:79:
11:af:5d:b6:c5:3d:49:36:e4:0c:5e:52:44:96:82:0d:d1:76:
c0:55:a9:4c:47:27:f8:d7:37:0c:ff:3a:8c:d7:ca:f9:36:1e:
e0:36:fc:bb:6f:bd:66:91:28:68:0d:da:aa:6f:2c:b4:f2:78:
48:b8:46:61:69:25:d3:ab:70:32:dc:3c:25:aa:5f:a1:68:75:
f9:46:80:bd:9d:55:cb:b9:b4:5d:7d:2c:a1:49:47:49:ef:10:
2c:5f:52:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-ams.rpki-client.org