Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/4f9f9f-30a8-4370-94e7-38abfa4fa350/1/VtAX62T7oipMgG9ArXhw76Sj-eQ.roa
File: VtAX62T7oipMgG9ArXhw76Sj-eQ.roa (raw, json)
Hash identifier: uXgyIAU3+l59neJn3vfVHw6rQxoJyjUH25KAFzH2nek=
Subject key identifier: 56:D0:17:EB:64:FB:A2:2A:4C:80:6F:40:AD:78:70:EF:A4:A3:F9:E4
Certificate issuer: /CN=9535462ebb2029a83d3eeab462ff052ecfa0e1c3
Certificate serial: 0900BB34
Authority key identifier: 95:35:46:2E:BB:20:29:A8:3D:3E:EA:B4:62:FF:05:2E:CF:A0:E1:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lTVGLrsgKag9Puq0Yv8FLs-g4cM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/4f9f9f-30a8-4370-94e7-38abfa4fa350/1/VtAX62T7oipMgG9ArXhw76Sj-eQ.roa
Signing time: Sat 01 Jan 2022 02:59:34 +0000
ROA not before: Sat 01 Jan 2022 02:59:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 193.43.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151042868 (0x900bb34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9535462ebb2029a83d3eeab462ff052ecfa0e1c3
Validity
Not Before: Jan 1 02:59:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56d017eb64fba22a4c806f40ad7870efa4a3f9e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:05:df:f4:c4:d7:f2:64:37:f7:e0:a2:c7:c9:
df:6a:23:fc:a3:f3:83:88:7e:f7:b2:75:44:d7:80:
60:3b:8f:02:5a:75:73:0b:7a:0d:5b:1b:11:a6:42:
8d:d8:79:f4:af:0d:5e:57:30:1d:d7:a7:a8:50:df:
b8:ea:9e:0d:91:15:dc:9e:75:f2:e9:4c:e9:b0:10:
93:1e:cc:71:1b:fd:38:6c:2c:6f:9a:4e:0d:b2:9d:
ce:a9:c6:a2:28:5b:9a:8d:e8:b6:9a:2f:80:8d:f6:
69:e3:b9:22:2f:6e:4c:af:d8:d1:a7:fb:65:c8:14:
b5:d9:c1:24:e6:0c:36:bb:3f:a9:5f:5e:ba:9a:60:
24:39:6e:1e:5f:03:98:ee:0a:36:4a:08:23:62:5e:
29:16:9a:e2:0a:e5:d3:c0:c6:f5:e3:fc:fb:96:48:
5b:2b:82:87:ee:5a:27:c4:81:61:76:9a:29:bb:5f:
d5:2f:39:ca:f3:d5:06:b0:c2:9b:3d:ac:8b:21:10:
a8:96:f6:4b:b9:9c:95:56:2b:7b:f7:64:01:da:22:
6e:ab:6e:eb:28:ff:5d:77:da:52:dc:33:eb:44:da:
a7:c2:34:fe:50:e8:c6:30:12:f2:59:f6:3b:09:cc:
64:ab:07:9d:d2:c8:44:ed:26:12:95:bc:df:f1:a7:
d4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D0:17:EB:64:FB:A2:2A:4C:80:6F:40:AD:78:70:EF:A4:A3:F9:E4
X509v3 Authority Key Identifier:
keyid:95:35:46:2E:BB:20:29:A8:3D:3E:EA:B4:62:FF:05:2E:CF:A0:E1:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lTVGLrsgKag9Puq0Yv8FLs-g4cM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/4f9f9f-30a8-4370-94e7-38abfa4fa350/1/VtAX62T7oipMgG9ArXhw76Sj-eQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/4f9f9f-30a8-4370-94e7-38abfa4fa350/1/lTVGLrsgKag9Puq0Yv8FLs-g4cM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.101.0/24
Signature Algorithm: sha256WithRSAEncryption
99:1e:10:6d:b4:fe:6c:7e:1f:11:70:16:2d:05:21:8d:b2:b3:
c7:f2:3d:90:74:74:dc:ae:5b:8f:8e:cf:4e:14:d2:1d:bf:c5:
31:7e:59:3b:50:ef:6e:ad:c0:ce:05:a8:6d:d4:1e:91:c5:62:
c8:07:8f:af:62:f7:08:b4:6e:c3:d4:9e:9d:8b:1b:a5:1f:a1:
84:b0:d4:4b:de:c1:bd:78:35:98:17:3b:83:cb:cc:6f:9e:da:
72:c6:68:3c:c5:4d:2e:ca:d6:c3:15:0b:9f:f5:bb:4f:94:f0:
5f:ed:63:c1:8d:2a:54:c6:81:45:8f:2c:20:e1:7d:c5:97:68:
4e:96:65:fd:7b:48:e3:94:0f:e1:b9:7a:ae:3e:05:3b:26:17:
a6:86:79:6b:c6:fd:b2:a7:0a:cd:2a:d3:2a:bb:c2:71:d8:bd:
69:d4:2f:62:48:0f:0b:c2:ea:d5:97:05:79:8c:10:ff:f2:2f:
6d:1b:2c:01:52:74:d6:62:bd:b5:12:77:63:af:e0:34:59:ef:
6f:e5:6c:c7:7f:10:70:e6:58:b3:49:9e:d8:d5:fb:15:64:a4:
d9:69:ba:6e:8b:11:67:c6:c3:65:3f:07:62:44:c4:b4:9d:90:
ee:59:ab:37:8f:a4:66:a9:8d:b7:7b:a3:49:60:35:68:9a:a1:
2c:b8:d0:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:16 2024 by rpki-client on console-fra.rpki-client.org