Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/1-xfpeOjq7n2omBXTUtN9WU-2IbY.roa
File: 1-xfpeOjq7n2omBXTUtN9WU-2IbY.roa (raw, json)
Hash identifier: ULzYTN2Ea9fr87qzQnea5NodoyfwDfAUWhp4BGqLJ+k=
Subject key identifier: FB:17:E9:78:E8:EA:EE:7D:A8:98:15:D3:52:D3:7D:59:4F:B6:21:B6
Certificate issuer: /CN=daddd1b636fe3df1df3d811f644583312a651337
Certificate serial: 03311432
Authority key identifier: DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/1-xfpeOjq7n2omBXTUtN9WU-2IbY.roa
Signing time: Sat 01 Jan 2022 09:53:28 +0000
ROA not before: Sat 01 Jan 2022 09:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49010
IP address blocks: 193.162.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53548082 (0x3311432)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daddd1b636fe3df1df3d811f644583312a651337
Validity
Not Before: Jan 1 09:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb17e978e8eaee7da89815d352d37d594fb621b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d7:f2:4b:a2:22:8b:48:13:70:7c:b0:cd:dd:
29:ae:c5:7f:f0:9f:d4:6a:cb:05:38:7f:ed:95:97:
3c:95:a6:69:55:8b:af:a8:88:a4:3b:dd:87:46:df:
9e:20:32:78:8d:25:9e:c2:c9:3f:0a:34:51:97:75:
7a:3b:64:03:15:42:fe:86:c7:f2:be:1b:11:9e:d0:
d3:1c:20:87:0d:b8:e8:1a:a7:ce:4d:e2:7e:50:da:
84:32:cc:5e:3a:fb:05:cc:43:ab:10:f6:a3:d0:c6:
91:a0:9f:29:2d:18:a5:7d:b1:00:62:1a:e6:3e:48:
44:44:0a:74:b7:a6:56:ba:dd:4b:bc:b7:2b:e7:ca:
5d:b5:43:86:3a:27:01:de:74:01:36:d9:65:60:c5:
8f:ee:0a:7b:d6:ca:fb:a8:ce:46:49:7c:97:96:b8:
0d:f4:37:26:04:8b:86:63:5f:ed:de:30:96:ce:4f:
e2:ff:1d:33:ab:ec:d6:b2:5a:19:06:8f:36:1f:95:
f2:15:cf:f0:77:15:06:69:97:19:29:4e:40:7b:de:
6a:12:39:81:2d:ee:16:e2:38:88:62:ae:9c:c6:0d:
48:31:81:19:6f:69:86:0c:41:fe:df:82:88:15:dd:
52:0b:c4:24:9f:eb:29:bf:42:13:38:ce:d2:8e:32:
f4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:17:E9:78:E8:EA:EE:7D:A8:98:15:D3:52:D3:7D:59:4F:B6:21:B6
X509v3 Authority Key Identifier:
keyid:DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/1-xfpeOjq7n2omBXTUtN9WU-2IbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.102.0/24
Signature Algorithm: sha256WithRSAEncryption
68:b3:f3:50:40:76:32:b3:f4:f8:02:5a:14:5d:25:8b:17:8a:
c9:98:4c:94:12:2f:27:a8:6e:d5:fd:b6:ce:f0:a6:e9:f7:d7:
46:81:82:b3:a8:32:55:ab:0d:ca:b1:a3:c7:09:ab:7f:dc:d2:
9c:dd:c5:2b:ff:16:c0:d1:bd:22:93:2d:ff:d1:23:97:d2:10:
62:4a:24:b8:40:9d:e5:ab:59:49:25:1d:4b:62:3e:88:e4:74:
15:f2:7f:89:8b:8b:33:e7:60:c2:f1:c4:10:a2:b0:63:a7:fc:
37:d3:37:3d:fa:9b:89:a6:79:4e:05:43:01:9a:22:75:1d:30:
0d:11:ef:2e:5a:e1:f3:82:19:45:e3:7f:3b:8b:d2:60:bd:c4:
47:22:a5:fc:2d:04:3c:f7:37:7d:a2:0c:b9:06:a1:39:60:fb:
7b:77:3e:3a:59:4d:24:c5:58:fa:a8:db:c9:90:c4:d4:67:39:
b6:1b:81:ae:57:f1:d7:dc:3e:c4:45:b3:bf:71:6d:f7:13:42:
d9:2d:39:1e:6c:54:c5:78:5a:20:80:ea:3e:30:71:f3:70:51:
22:f5:34:ab:4b:32:53:37:90:5d:3f:56:7a:ff:7c:3f:8f:aa:
01:13:48:f9:4b:6e:14:1d:05:3a:da:c6:7f:63:7c:6b:ff:d0:
56:ce:96:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:16 2024 by rpki-client on console-ams.rpki-client.org