Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/b09530-9ca0-4407-8a05-bbd7b0aba6ab/1/3TQyJ1pe8osLWa3ZRrW_wL4MBRc.roa
File: 3TQyJ1pe8osLWa3ZRrW_wL4MBRc.roa (raw, json)
Hash identifier: +lvP9RaevsPp7siHcxP3lR4kFT0tvKQOGO1BdGtsLrI=
Subject key identifier: DD:34:32:27:5A:5E:F2:8B:0B:59:AD:D9:46:B5:BF:C0:BE:0C:05:17
Certificate issuer: /CN=aca8ecfee51f68d5f803aae6fbfc1fdc4190262a
Certificate serial: DD37C8
Authority key identifier: AC:A8:EC:FE:E5:1F:68:D5:F8:03:AA:E6:FB:FC:1F:DC:41:90:26:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKjs_uUfaNX4A6rm-_wf3EGQJio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/b09530-9ca0-4407-8a05-bbd7b0aba6ab/1/3TQyJ1pe8osLWa3ZRrW_wL4MBRc.roa
Signing time: Mon 04 Jul 2022 08:16:27 +0000
ROA not before: Mon 04 Jul 2022 08:16:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210035
IP address blocks: 193.203.227.0/24 maxlen: 24
2a12:7d40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14497736 (0xdd37c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca8ecfee51f68d5f803aae6fbfc1fdc4190262a
Validity
Not Before: Jul 4 08:16:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd3432275a5ef28b0b59add946b5bfc0be0c0517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0d:d6:01:5e:6f:cb:96:5d:be:18:be:35:41:
c9:27:26:46:c7:8c:bd:0f:f3:41:32:9b:61:a7:85:
97:84:1c:95:c5:eb:8f:d2:4b:3a:b3:1f:93:04:5e:
ed:78:37:36:be:8d:c2:ba:7f:dd:7c:22:e9:85:98:
34:95:e7:59:13:10:da:0a:f6:08:cf:41:da:9e:ab:
85:2a:f5:ba:df:d7:02:e3:d7:bb:ab:3e:09:97:04:
43:f3:94:32:5d:d6:6f:6d:0e:ac:e8:29:79:18:60:
f9:3e:ea:6a:a6:6a:c1:74:20:fc:8f:6e:fb:1e:5a:
73:c3:26:40:07:cd:aa:1a:19:94:3b:bb:d9:85:f7:
21:41:a2:57:94:c6:88:4b:b3:66:1d:96:3d:e5:de:
da:29:80:3f:c0:98:42:27:89:6f:b2:6d:d9:06:f8:
0d:98:bc:f4:c3:a2:59:ee:06:5f:61:a4:ce:06:d7:
33:83:8e:7f:db:f1:e3:f1:78:ac:e0:42:3e:53:bc:
a1:09:de:cb:49:44:1d:20:5a:04:d2:6c:4b:50:f7:
4d:af:3d:c0:be:e2:1d:be:1b:f3:23:2d:7f:b6:b5:
e7:0d:eb:ef:b9:54:76:34:8e:8b:ca:35:70:db:4c:
3f:47:9f:c2:82:0a:be:b9:3d:3b:da:fb:42:de:79:
9a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:34:32:27:5A:5E:F2:8B:0B:59:AD:D9:46:B5:BF:C0:BE:0C:05:17
X509v3 Authority Key Identifier:
keyid:AC:A8:EC:FE:E5:1F:68:D5:F8:03:AA:E6:FB:FC:1F:DC:41:90:26:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKjs_uUfaNX4A6rm-_wf3EGQJio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b09530-9ca0-4407-8a05-bbd7b0aba6ab/1/3TQyJ1pe8osLWa3ZRrW_wL4MBRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b09530-9ca0-4407-8a05-bbd7b0aba6ab/1/rKjs_uUfaNX4A6rm-_wf3EGQJio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.227.0/24
IPv6:
2a12:7d40::/32
Signature Algorithm: sha256WithRSAEncryption
9e:82:20:47:6d:3f:5e:69:e0:8a:a9:04:be:e7:f9:ca:80:d0:
f6:92:fa:f9:ae:d1:d8:93:87:36:90:c5:eb:e5:8a:23:50:a9:
83:9f:8b:33:32:07:85:60:d8:8d:57:f8:9d:a3:49:9c:c0:88:
f0:1d:d4:45:f7:cc:88:22:b9:11:05:e5:61:4e:a2:01:d5:40:
33:51:5f:b5:4f:bb:d7:40:12:a3:6c:ae:1a:50:0c:d8:4c:14:
cc:55:34:12:d6:e6:10:7a:d6:73:7a:ca:d7:67:17:22:a9:d4:
33:a9:ba:34:21:52:4b:24:26:64:3e:63:f0:af:29:9e:05:14:
62:02:33:19:51:c1:f6:54:3c:b4:00:a3:a0:f4:12:36:f8:7b:
ea:b6:75:70:11:cf:ab:11:9c:8f:34:a3:3d:bb:ea:06:2c:fe:
05:f4:3b:fa:a0:2b:33:f4:5f:96:2c:d9:00:8a:31:05:9e:56:
62:02:76:f7:15:b7:5e:e4:61:72:92:b9:2e:41:01:32:69:73:
fb:2b:07:ea:33:ce:ef:13:e7:ce:32:4f:73:ae:6b:c2:c9:05:
99:46:df:00:1e:51:ce:37:22:c5:62:df:b9:2a:6a:a7:91:a5:
73:01:ce:9a:36:fb:07:2c:b1:f5:c0:d3:c9:34:06:15:6b:d8:
99:1e:e0:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:44 2023 by rpki-client on console-ams.rpki-client.org