Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/XYhUxjz1rVcEbcg9IP18eB2CPCc.roa
File: XYhUxjz1rVcEbcg9IP18eB2CPCc.roa (raw, json)
Hash identifier: Dr/8voF0QJ8z+Kfjdu+pXHUTgG1PDtdC5FLD0RhXxiU=
Subject key identifier: 5D:88:54:C6:3C:F5:AD:57:04:6D:C8:3D:20:FD:7C:78:1D:82:3C:27
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 0184BDBAC1E9EA11A79D3608CC043CB17794
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/XYhUxjz1rVcEbcg9IP18eB2CPCc.roa
Signing time: Mon 28 Nov 2022 10:14:03 +0000
ROA not before: Mon 28 Nov 2022 10:14:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50194
IP address blocks: 193.104.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bd:ba:c1:e9:ea:11:a7:9d:36:08:cc:04:3c:b1:77:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: Nov 28 10:14:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d8854c63cf5ad57046dc83d20fd7c781d823c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:76:9d:97:a4:16:ef:58:67:12:4a:85:b3:f5:
0a:4c:fb:dd:c3:a1:68:aa:3e:d6:aa:fe:46:76:36:
48:07:1e:86:d0:16:9a:53:34:86:ee:96:ee:4f:8e:
c9:41:2d:a9:49:d1:fc:2b:a4:41:f3:39:a4:5f:59:
72:6e:cf:cf:42:c3:4e:87:11:96:50:bc:28:28:d9:
9c:c1:40:72:68:8a:f0:ae:49:ce:fd:fd:5d:16:78:
7e:a4:0b:a7:23:45:5d:7b:0d:1b:70:6c:b0:e2:f2:
ba:11:c6:bb:e4:66:2a:a8:a8:85:fa:02:1c:bc:08:
e4:04:ff:f5:50:41:a5:f6:5e:5c:c1:10:52:85:8d:
44:17:f9:e2:a4:db:9e:70:c2:cc:a0:a4:55:e0:13:
ad:db:a4:44:aa:d0:dc:66:8c:c1:1b:ca:2f:28:9d:
2c:af:6e:16:66:5d:e9:0b:68:9b:a8:45:3d:c8:af:
33:3d:e7:bc:8f:5e:b1:74:70:c6:a4:19:43:81:ac:
27:b4:cb:32:37:41:a9:28:f4:50:e9:68:ea:1a:5f:
e7:c7:c6:59:85:9a:db:28:d5:c1:26:48:03:e8:32:
78:89:a3:0c:e3:ad:8c:7d:6b:1c:0c:ca:34:ac:6e:
fe:be:cd:22:f6:c2:57:92:5f:39:33:5b:45:d6:23:
c4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:88:54:C6:3C:F5:AD:57:04:6D:C8:3D:20:FD:7C:78:1D:82:3C:27
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/XYhUxjz1rVcEbcg9IP18eB2CPCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.165.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:b5:3d:64:e6:ed:9f:ea:e4:b4:0e:b2:32:6f:5b:95:64:c2:
6a:ab:37:51:5c:d9:54:02:27:20:8c:e6:a3:58:77:95:15:d2:
64:f9:c5:84:6b:99:b3:89:33:5e:54:be:26:d4:59:66:3c:e3:
e5:ac:bb:7e:3c:83:c4:82:34:3b:87:91:94:a0:70:88:7c:f3:
0b:c1:20:19:4c:9c:02:0f:ac:3f:ac:e4:ba:34:c3:1d:1f:31:
c9:13:a1:b4:7a:0e:b2:37:11:9d:34:d2:c1:29:fb:b5:99:09:
4f:16:ef:9b:48:27:9c:af:4a:97:26:f7:d4:88:c6:3c:88:57:
ce:28:78:4c:52:aa:70:d7:29:26:f2:dd:b5:fa:aa:39:a8:ab:
18:1a:74:5d:9f:92:0e:67:67:c7:4c:bd:4b:e6:f5:ad:e6:49:
3b:b2:a7:cd:49:e3:03:38:56:ec:57:dd:43:ec:02:e9:ea:73:
49:4e:c2:0a:84:b9:92:dc:01:89:d2:db:d6:68:f0:7c:3e:78:
7c:e7:75:a8:48:d2:aa:89:75:83:c7:e2:f2:98:c0:34:be:99:
9e:0a:36:05:5a:2b:c1:f2:7b:9c:c7:82:b8:80:93:37:ce:f5:
a1:6d:12:b0:78:62:55:77:f0:e5:2e:6b:92:e5:09:f6:24:59:
84:af:e0:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:07 2023 by rpki-client on console-ams.rpki-client.org