Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/pa3WPf1xfMcwUu9q2VeVfVdHzfU.roa
File: pa3WPf1xfMcwUu9q2VeVfVdHzfU.roa (raw, json)
Hash identifier: Z+Zfp3F+euo6nNcoulB1xTWvfsCR4ulCQN8V87+MSqg=
Subject key identifier: A5:AD:D6:3D:FD:71:7C:C7:30:52:EF:6A:D9:57:95:7D:57:47:CD:F5
Certificate issuer: /CN=0bcf721c71c8ae7caf706d9df3358b12d54b4d90
Certificate serial: 0185391EFCF93E137DF0C6A9A7E5117FF0C6
Authority key identifier: 0B:CF:72:1C:71:C8:AE:7C:AF:70:6D:9D:F3:35:8B:12:D5:4B:4D:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C89yHHHIrnyvcG2d8zWLEtVLTZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/pa3WPf1xfMcwUu9q2VeVfVdHzfU.roa
Signing time: Thu 22 Dec 2022 09:16:50 +0000
ROA not before: Thu 22 Dec 2022 09:16:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 193.110.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:1e:fc:f9:3e:13:7d:f0:c6:a9:a7:e5:11:7f:f0:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bcf721c71c8ae7caf706d9df3358b12d54b4d90
Validity
Not Before: Dec 22 09:16:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5add63dfd717cc73052ef6ad957957d5747cdf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e6:44:2b:cd:0a:6a:b8:5d:bc:85:82:60:7b:
04:86:90:26:d6:05:c1:5d:86:33:7b:e7:f0:84:57:
6f:6a:7d:46:61:2e:d0:40:f1:a3:46:af:da:36:e1:
ed:d7:37:ac:7e:87:69:20:38:ec:ef:b0:34:51:c1:
8f:cd:16:88:84:c5:67:1e:8e:dd:41:5d:e1:35:b5:
cb:98:8a:05:26:a0:84:2d:ac:69:69:ec:cc:d6:07:
ab:ed:b1:3f:46:a7:7d:0c:27:0a:03:d0:d4:91:44:
21:58:4e:d6:ba:d3:53:d0:f7:b3:0a:1c:41:8f:51:
f6:ad:bd:c0:47:26:c3:e3:b8:22:f8:b1:3d:2d:75:
9c:2e:c1:fb:3c:5b:17:56:61:6a:9c:1c:58:24:69:
73:ee:88:35:52:65:99:76:b3:42:68:5f:3f:d7:6d:
4e:0c:a1:3f:de:b1:86:30:78:7a:53:6a:4f:7e:79:
7d:d8:b3:66:21:05:10:ae:7e:c1:68:26:35:02:dd:
8b:1d:12:8a:b8:e9:1e:86:0e:e7:56:84:78:82:e2:
c5:47:b2:59:cf:55:7b:2c:ae:90:0d:82:af:e3:7c:
f6:db:d9:c6:a1:e9:22:96:55:85:8b:6f:f9:32:f1:
96:e0:09:c5:63:30:92:85:8e:f5:32:f3:62:0b:32:
de:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:AD:D6:3D:FD:71:7C:C7:30:52:EF:6A:D9:57:95:7D:57:47:CD:F5
X509v3 Authority Key Identifier:
keyid:0B:CF:72:1C:71:C8:AE:7C:AF:70:6D:9D:F3:35:8B:12:D5:4B:4D:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C89yHHHIrnyvcG2d8zWLEtVLTZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/pa3WPf1xfMcwUu9q2VeVfVdHzfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/C89yHHHIrnyvcG2d8zWLEtVLTZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.34.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:50:5f:1b:e6:36:0b:ea:29:1e:65:71:f1:3a:3c:27:f6:6a:
a8:c2:6b:8d:e7:0d:eb:29:52:a8:99:67:ed:38:60:ce:c2:3f:
bb:a6:5e:21:57:78:d0:e4:ae:7f:c7:1c:52:32:a6:23:70:e1:
37:69:74:4e:72:de:bf:42:2b:b8:23:87:42:f3:ac:b2:08:df:
bb:00:dc:9d:55:11:2f:34:b9:bd:7c:ec:7b:dd:4a:de:c4:36:
01:fb:3f:67:40:ed:74:75:3d:d7:bc:de:c7:4a:85:1f:26:c5:
00:a6:e4:8b:2f:43:c0:b9:31:98:f6:2a:a8:b3:51:9c:b1:40:
1c:6b:f1:7d:d9:c7:88:1d:c9:49:a1:6e:2f:66:76:61:b8:73:
4b:db:62:be:e6:98:6b:2a:5f:26:db:90:99:91:89:f6:1b:ef:
31:89:0f:3f:a3:8d:82:8a:b9:36:11:c8:d4:54:67:6a:e0:0d:
f7:2b:b3:1d:f0:a7:b5:97:d0:f5:02:00:11:a5:53:ad:85:f9:
7e:f3:d0:ed:ee:fc:0e:77:ee:91:ba:8a:83:36:f7:6c:19:70:
12:19:58:8d:8a:d0:93:33:74:0d:fe:1f:9a:89:77:9e:fd:61:
8c:51:20:1d:f2:d1:e6:9f:ef:1f:c4:b0:5c:4a:9d:98:56:24:
0b:0e:7a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:29 2024 by rpki-client on console-fra.rpki-client.org