Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/da4e46-2a93-44a4-b8e3-c2133dd81b56/1/T71njQA9_D2SinpnZUmBAyEPljE.roa
File: T71njQA9_D2SinpnZUmBAyEPljE.roa (raw, json)
Hash identifier: hmUrppbjWje372bak2mjyBndpHbCbe/zWv5Uf2aKy9M=
Subject key identifier: 4F:BD:67:8D:00:3D:FC:3D:92:8A:7A:67:65:49:81:03:21:0F:96:31
Certificate issuer: /CN=4d2f9fd5c8a14cdc9f31c4585cd60db57cffb4c2
Certificate serial: 045994
Authority key identifier: 4D:2F:9F:D5:C8:A1:4C:DC:9F:31:C4:58:5C:D6:0D:B5:7C:FF:B4:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TS-f1cihTNyfMcRYXNYNtXz_tMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/da4e46-2a93-44a4-b8e3-c2133dd81b56/1/T71njQA9_D2SinpnZUmBAyEPljE.roa
Signing time: Mon 09 May 2022 13:43:48 +0000
ROA not before: Mon 09 May 2022 13:43:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34022
IP address blocks: 193.17.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285076 (0x45994)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d2f9fd5c8a14cdc9f31c4585cd60db57cffb4c2
Validity
Not Before: May 9 13:43:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4fbd678d003dfc3d928a7a6765498103210f9631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c2:af:ed:b2:9c:f3:43:32:bf:a1:ad:77:98:
9f:8a:32:63:f8:9f:20:e8:c4:2b:7e:ff:df:a2:0b:
3d:19:49:80:5a:92:eb:d6:c9:c3:29:10:f2:7c:dd:
f4:ee:73:f6:fa:5a:2d:09:26:33:dd:3a:ff:88:96:
4e:7a:90:ec:fe:38:f0:4d:15:5b:54:67:ad:4e:41:
27:ad:33:0f:af:65:7e:d7:29:cc:0a:d7:fe:08:ac:
3e:c7:c0:12:5b:34:56:31:6a:01:41:b6:e2:7d:e1:
29:22:10:5f:08:07:49:e6:21:fc:17:26:e8:c5:eb:
e9:f4:e0:10:d4:2d:88:ed:e4:29:da:7e:be:22:f6:
8a:cf:49:2f:ab:a1:6d:28:79:48:da:04:0f:36:e2:
f4:7b:ff:b6:f1:46:9d:16:47:fc:94:22:e3:f3:65:
8d:57:9f:cc:7d:35:37:c7:eb:ee:93:ab:29:62:dd:
e6:1a:89:61:09:2d:0e:e1:93:0b:19:0c:c9:a6:65:
e3:77:08:66:ae:d7:6e:68:da:5e:ee:e7:be:d9:3f:
89:fa:ba:4b:ca:f2:df:ee:b7:43:69:81:37:c7:06:
a2:ab:8d:fb:27:b7:ac:0f:a7:3f:7a:c4:b2:a0:7e:
1b:a2:96:ed:fa:f3:3d:3a:ed:1c:45:c9:74:f4:df:
9a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:BD:67:8D:00:3D:FC:3D:92:8A:7A:67:65:49:81:03:21:0F:96:31
X509v3 Authority Key Identifier:
keyid:4D:2F:9F:D5:C8:A1:4C:DC:9F:31:C4:58:5C:D6:0D:B5:7C:FF:B4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TS-f1cihTNyfMcRYXNYNtXz_tMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/da4e46-2a93-44a4-b8e3-c2133dd81b56/1/T71njQA9_D2SinpnZUmBAyEPljE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/da4e46-2a93-44a4-b8e3-c2133dd81b56/1/TS-f1cihTNyfMcRYXNYNtXz_tMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.195.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:2d:44:89:97:ef:ac:20:28:96:49:8f:d8:18:54:38:a7:18:
6d:02:bb:68:91:94:bf:fc:ba:d2:50:6d:f6:cb:1d:af:b5:f6:
fb:e4:41:e2:cd:9d:01:82:86:ba:a5:5d:88:33:06:e8:9a:0a:
08:76:87:41:6b:86:60:40:bf:e8:4c:98:4c:a2:94:a7:72:0e:
95:ce:19:f5:14:90:ed:74:78:79:e8:8d:c8:1a:53:4f:6c:17:
0c:de:64:9f:31:6d:73:ee:16:69:e4:fa:5d:cc:de:9f:f5:eb:
82:58:a1:ad:18:71:9b:95:a9:cf:a4:2e:74:7d:d0:ac:73:fa:
c9:e6:fc:58:f8:ff:9c:1e:f3:fc:52:4a:d5:32:1d:52:61:84:
58:e8:1d:1a:50:30:e3:e3:2e:c9:7e:3a:34:ec:21:46:7a:45:
bf:22:c9:17:32:58:2d:76:98:b8:bc:07:a6:d1:46:a4:2a:58:
26:89:7a:aa:58:e3:6a:0c:5e:69:70:e1:d9:87:81:fb:2d:81:
c8:50:83:df:0c:89:ec:1b:0a:0d:ab:3f:dc:d8:fa:21:a4:81:
05:65:5a:6e:1f:3d:04:9b:4f:1e:16:e6:40:91:56:d9:38:76:
86:33:a4:88:e2:52:56:97:6c:86:20:72:67:0c:cb:1a:de:09:
e3:0b:d5:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:27 2023 by rpki-client on console-fra.rpki-client.org