Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/c5c1b3-e5ca-4a83-8390-917933b1502e/1/l5bk2rpJfihiHXcnRggoOq7xZ7w.roa
File: l5bk2rpJfihiHXcnRggoOq7xZ7w.roa (raw, json)
Hash identifier: b7qvuJ6qdiIxRtHksOKut1Ptfl6wUg7q7tEQQu/daQ0=
Subject key identifier: 97:96:E4:DA:BA:49:7E:28:62:1D:77:27:46:08:28:3A:AE:F1:67:BC
Certificate issuer: /CN=abc45b658b1ec0fdeb459e6ff2577db8ca6a9330
Certificate serial: 06374025
Authority key identifier: AB:C4:5B:65:8B:1E:C0:FD:EB:45:9E:6F:F2:57:7D:B8:CA:6A:93:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8RbZYsewP3rRZ5v8ld9uMpqkzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/c5c1b3-e5ca-4a83-8390-917933b1502e/1/l5bk2rpJfihiHXcnRggoOq7xZ7w.roa
Signing time: Sat 01 Jan 2022 14:05:47 +0000
ROA not before: Sat 01 Jan 2022 14:05:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12303
IP address blocks: 193.41.34.0/24 maxlen: 24
193.41.47.0/24 maxlen: 24
2a0f:7ec0:100::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104284197 (0x6374025)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc45b658b1ec0fdeb459e6ff2577db8ca6a9330
Validity
Not Before: Jan 1 14:05:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9796e4daba497e28621d77274608283aaef167bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:11:f9:fb:f7:5d:85:bf:4f:6d:36:3f:d6:89:
a3:9f:30:2d:1a:ff:8d:90:3e:0b:18:ae:19:86:50:
7b:bf:5d:53:0b:b1:40:ba:3b:e0:1a:c6:a1:93:7c:
58:d0:7b:b8:99:37:48:51:a7:96:ef:b9:fa:57:45:
1b:36:6b:45:fc:75:44:6d:ea:6c:09:bf:45:7a:f1:
12:f2:b8:c6:c9:96:b9:6b:3f:8e:6b:65:5d:70:3b:
96:8a:8e:78:92:77:11:d7:92:19:07:15:7a:7c:09:
4e:f5:89:6e:22:f8:fc:0d:1e:2c:0a:5a:88:f0:6b:
9e:5d:aa:31:a5:5a:19:4e:ae:75:1b:28:1e:d7:79:
bc:5e:f5:18:67:95:43:fa:02:99:54:10:7a:89:10:
72:f0:52:7d:af:61:45:f3:2c:ad:68:88:6d:c6:09:
0b:66:75:d2:b0:0c:53:8e:76:a8:87:9b:9e:22:23:
91:f1:68:38:16:9f:95:aa:19:c6:b7:56:29:81:87:
1c:8c:a4:28:c8:1b:48:6b:7f:8b:73:ec:2b:09:fd:
20:23:fa:83:5e:bb:f7:95:d6:3c:40:a2:41:8a:63:
2b:ae:78:6c:2f:bb:03:6b:9d:b5:4c:bd:46:05:9a:
54:64:79:ff:e5:a0:9f:8b:ee:4f:21:2a:fd:9e:85:
d4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:96:E4:DA:BA:49:7E:28:62:1D:77:27:46:08:28:3A:AE:F1:67:BC
X509v3 Authority Key Identifier:
keyid:AB:C4:5B:65:8B:1E:C0:FD:EB:45:9E:6F:F2:57:7D:B8:CA:6A:93:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8RbZYsewP3rRZ5v8ld9uMpqkzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/c5c1b3-e5ca-4a83-8390-917933b1502e/1/l5bk2rpJfihiHXcnRggoOq7xZ7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/c5c1b3-e5ca-4a83-8390-917933b1502e/1/q8RbZYsewP3rRZ5v8ld9uMpqkzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.34.0/24
193.41.47.0/24
IPv6:
2a0f:7ec0:100::/48
Signature Algorithm: sha256WithRSAEncryption
20:52:d8:58:a1:dd:94:e8:75:79:14:4d:60:4f:5d:08:a1:da:
3c:48:e0:93:b0:2e:fc:2b:55:7e:9d:4f:a0:a6:31:68:7e:64:
b6:e6:da:38:2f:98:ff:53:04:42:c3:e0:60:94:f8:c3:1a:d3:
0c:62:10:79:7b:85:14:82:11:bb:a4:e7:5a:6b:69:ed:b6:7f:
05:7c:7e:1f:37:9f:a6:50:7f:84:11:5d:94:e2:18:dd:ff:ce:
26:53:02:6c:77:80:73:3c:64:2f:d0:2c:f7:49:b5:82:58:11:
c5:e9:66:34:bb:31:4f:a0:ab:fd:7b:72:08:13:63:c6:17:0c:
b2:fc:21:0f:22:cb:ad:ec:17:54:7b:78:e3:cb:c5:e4:72:50:
d7:83:ad:d3:68:f1:9c:c4:e7:29:34:f3:a5:93:85:33:0b:de:
27:69:55:73:10:b6:92:fd:f8:32:ab:07:32:e3:37:8d:c0:fb:
15:7d:4c:7e:0a:ef:c3:83:86:a9:5b:6a:ad:5f:e2:3b:b4:dc:
9d:82:96:b7:30:75:fa:ce:63:9c:54:05:f4:17:06:76:23:85:
ae:94:ef:18:1d:90:d9:dd:35:d5:f6:5c:0e:b3:5d:58:c9:97:
2e:ad:cd:c2:2e:7e:1f:12:d4:be:c0:b3:d1:df:83:87:ae:f7:
1a:62:70:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:34 2024 by rpki-client on console-ams.rpki-client.org