Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/tq32DkTAWJj1NKp2WwIxOBIxkyc.roa
File: tq32DkTAWJj1NKp2WwIxOBIxkyc.roa (raw, json)
Hash identifier: w+9z5S8oWqj/WCffF2/TABdjinuGIEAipFs5STADdCs=
Subject key identifier: B6:AD:F6:0E:44:C0:58:98:F5:34:AA:76:5B:02:31:38:12:31:93:27
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 021E5DC3
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/tq32DkTAWJj1NKp2WwIxOBIxkyc.roa
Signing time: Sat 01 Jan 2022 16:10:41 +0000
ROA not before: Sat 01 Jan 2022 16:10:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39144
IP address blocks: 193.178.115.0/24 maxlen: 24
193.178.31.0/24 maxlen: 24
193.178.33.0/24 maxlen: 24
193.178.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35544515 (0x21e5dc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: Jan 1 16:10:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6adf60e44c05898f534aa765b02313812319327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ed:aa:5a:d5:5d:9d:1e:b6:2d:78:69:08:4c:
81:0a:c8:ee:52:3f:c2:0c:6d:85:ab:7f:7d:77:b5:
2a:39:c7:a1:3e:65:a5:00:f3:ea:52:48:05:d0:ba:
4c:44:bc:97:76:ad:e1:bd:37:69:99:89:70:65:0d:
82:60:97:1b:d6:87:51:ed:4b:3c:b8:87:99:23:9f:
25:15:cb:b5:9b:ba:8e:72:bc:ed:a9:4e:e9:ac:f0:
40:6a:ad:52:52:01:ca:3f:de:78:e9:b3:79:b8:54:
0c:f5:2e:f6:b1:1c:b1:6a:64:90:87:9a:f8:37:a9:
10:6f:14:0c:30:5d:95:19:46:0f:fb:80:64:0c:84:
77:a9:a4:d7:24:92:2c:8d:23:98:0f:68:e6:31:05:
36:e7:4c:81:51:82:6e:75:0c:64:b7:88:59:a5:f5:
f0:b8:61:b6:48:46:1e:bd:05:e1:26:92:d6:81:79:
0a:f0:1d:78:d7:c8:06:c7:84:d2:fb:fe:53:bf:84:
eb:f3:d0:53:15:68:8f:70:bb:46:5f:0b:d5:3c:b7:
5b:37:6d:61:5c:70:6f:c7:02:5f:ad:92:c9:85:9a:
71:aa:d2:c9:03:79:17:b8:9f:1c:57:87:89:41:69:
80:5a:0c:4e:ce:60:dc:1e:5b:ce:fb:2b:e5:bf:ea:
23:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:AD:F6:0E:44:C0:58:98:F5:34:AA:76:5B:02:31:38:12:31:93:27
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/tq32DkTAWJj1NKp2WwIxOBIxkyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.31.0/24
193.178.33.0/24
193.178.52.0/24
193.178.115.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:2d:f4:6c:90:16:87:6e:e5:ef:87:50:56:44:67:e4:62:c6:
89:a7:9b:df:87:e0:61:bf:e9:ff:40:c7:49:fc:e2:9e:53:c4:
dd:09:3b:09:ea:74:c6:0d:6b:f3:a1:89:dd:85:ed:ae:b7:c3:
94:19:74:f8:47:b7:e4:84:0c:5b:60:db:c0:46:bc:9a:6f:29:
58:9a:b0:86:ac:40:11:b3:11:e2:68:3a:e7:c4:66:f0:b6:78:
03:2d:a7:cb:2e:11:d1:13:2a:ff:d0:ed:96:68:b1:2e:c4:ef:
6f:1d:fb:35:ae:36:01:8e:16:77:fd:16:9e:d0:d1:fd:09:71:
98:b2:44:bc:1b:59:00:45:6b:6c:b6:64:8c:04:37:5c:63:b2:
f1:95:8d:ef:1b:29:f3:08:c5:9e:12:41:df:4c:80:f9:16:da:
eb:d7:f5:c6:78:23:56:36:5c:15:d4:20:39:db:6b:1c:41:f9:
dd:bf:d6:6f:75:b2:63:59:9c:83:01:f3:fe:fc:0a:c8:57:11:
e1:0d:b8:85:af:91:07:61:af:1c:d5:4f:a1:89:16:e7:2f:89:
3c:54:e9:e7:60:44:db:44:45:ca:ff:4d:da:5f:1d:ce:9e:a2:
98:d4:96:f7:88:d4:72:7c:e5:e9:24:33:d0:ea:e8:72:ac:ed:
4c:87:57:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-ams.rpki-client.org