Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/cccac7-4660-4e52-951f-ba0d3b2d36e0/1/Q5yE6BiA-QK7e-t4TSOk01ALXuo.roa
File: Q5yE6BiA-QK7e-t4TSOk01ALXuo.roa (raw, json)
Hash identifier: L6V91T9b2UZTtG3mCrQcf0pkHgJoJ3DE9kCfn6AVYyo=
Subject key identifier: 43:9C:84:E8:18:80:F9:02:BB:7B:EB:78:4D:23:A4:D3:50:0B:5E:EA
Certificate issuer: /CN=93f3fc9678ce5b0273538c78b0b96a13eb0862d9
Certificate serial: 457F
Authority key identifier: 93:F3:FC:96:78:CE:5B:02:73:53:8C:78:B0:B9:6A:13:EB:08:62:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k_P8lnjOWwJzU4x4sLlqE-sIYtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/cccac7-4660-4e52-951f-ba0d3b2d36e0/1/Q5yE6BiA-QK7e-t4TSOk01ALXuo.roa
Signing time: Thu 28 Apr 2022 12:30:06 +0000
ROA not before: Thu 28 Apr 2022 12:30:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 193.73.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17791 (0x457f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93f3fc9678ce5b0273538c78b0b96a13eb0862d9
Validity
Not Before: Apr 28 12:30:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=439c84e81880f902bb7beb784d23a4d3500b5eea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b2:85:a4:a5:dd:3f:d1:26:51:de:30:b4:82:
0a:8e:2f:ca:55:5c:0f:e0:d5:1f:d1:b3:cc:f5:ad:
7b:24:fd:8f:66:99:57:b9:9c:51:9d:2b:94:04:99:
bc:38:ef:59:3f:2b:ce:8e:d5:17:ee:68:26:76:e7:
44:2b:af:27:17:7b:b8:0d:c4:96:2d:ac:0e:50:f8:
97:9b:78:91:ed:5f:6c:4d:48:a8:e5:6b:58:fc:1d:
6c:64:42:c3:38:df:fc:19:99:06:8c:56:ae:12:a4:
bf:43:cc:4e:a7:ff:b6:29:2a:56:a7:09:86:fc:1e:
47:aa:80:8d:9e:00:37:fd:8a:4c:b8:38:7f:3f:55:
64:8a:33:a3:c6:85:86:9d:8e:99:32:bf:d9:bf:89:
f0:44:68:aa:19:77:9c:c7:61:47:79:20:2d:59:97:
9b:8a:eb:fe:54:7d:c0:a6:7c:66:3a:f9:46:21:78:
ab:02:43:30:e8:4e:a3:b0:e8:f1:61:c0:1e:d8:68:
f4:4f:60:82:98:f4:aa:7a:03:3e:b1:57:9d:d3:92:
b6:b2:30:93:0f:c6:2f:f2:0d:b8:94:9c:19:11:a9:
5a:02:84:ae:d4:17:4d:3c:e5:3f:c3:a6:21:30:79:
9a:63:cb:aa:5f:ef:f9:19:7b:2e:f7:2e:de:52:bd:
15:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9C:84:E8:18:80:F9:02:BB:7B:EB:78:4D:23:A4:D3:50:0B:5E:EA
X509v3 Authority Key Identifier:
keyid:93:F3:FC:96:78:CE:5B:02:73:53:8C:78:B0:B9:6A:13:EB:08:62:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k_P8lnjOWwJzU4x4sLlqE-sIYtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/cccac7-4660-4e52-951f-ba0d3b2d36e0/1/Q5yE6BiA-QK7e-t4TSOk01ALXuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/cccac7-4660-4e52-951f-ba0d3b2d36e0/1/k_P8lnjOWwJzU4x4sLlqE-sIYtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.73.251.0/24
Signature Algorithm: sha256WithRSAEncryption
10:19:75:aa:97:11:9d:eb:41:f6:82:ba:64:9f:c1:c3:fb:e9:
a3:cc:4a:c3:aa:b7:43:af:ed:1a:86:68:a4:d1:2f:7b:37:11:
2b:d7:78:e2:bc:57:f3:21:93:53:20:ee:35:50:23:7b:53:2a:
77:e6:72:19:bb:30:3f:80:17:8e:53:e3:c5:3f:25:dc:7e:a4:
53:70:87:89:e1:63:04:fb:74:0c:43:a7:9c:37:31:2c:c4:e8:
e0:40:4c:22:dd:0f:ed:12:bb:d2:3b:07:86:b6:53:bc:d9:fe:
8c:8a:c1:a2:0b:53:11:59:eb:0e:9b:5e:98:aa:9a:79:d1:15:
e8:3d:00:3b:c3:09:b6:4b:b4:f2:f0:f8:00:20:00:ad:a5:bb:
35:d0:c7:f2:40:89:92:a6:25:84:e6:62:5a:40:e9:3b:07:7b:
46:ac:e2:83:1d:f1:d8:55:2b:50:cd:5e:35:10:24:e5:f9:70:
fe:e5:a5:39:cd:ce:f7:b7:b0:a5:82:09:b5:05:07:7a:0a:b7:
52:36:ed:e8:7f:a8:19:6e:0a:e5:fb:02:98:38:c3:76:bb:c7:
52:f4:49:41:7a:e2:e3:1b:4a:e2:83:de:4c:0c:93:43:53:0e:
60:82:ba:7b:a0:19:a4:a1:2b:68:49:75:dd:47:b7:74:c5:d8:
ef:f0:db:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:56 2024 by rpki-client on console-ams.rpki-client.org