Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/M_aPH0EfmHhzXX0mF9i3KEzepaw.roa
File: M_aPH0EfmHhzXX0mF9i3KEzepaw.roa (raw, json)
Hash identifier: do0jai2QZsA5iIv/l30HRZqApYGUrlS3wovtPfDaHKM=
Subject key identifier: 33:F6:8F:1F:41:1F:98:78:73:5D:7D:26:17:D8:B7:28:4C:DE:A5:AC
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33E9C1FC
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/M_aPH0EfmHhzXX0mF9i3KEzepaw.roa
Signing time: Sat 01 Jan 2022 04:55:38 +0000
ROA not before: Sat 01 Jan 2022 04:55:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213309
IP address blocks: 193.255.92.0/24 maxlen: 24
193.140.143.0/24 maxlen: 24
193.255.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870957564 (0x33e9c1fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33f68f1f411f9878735d7d2617d8b7284cdea5ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e0:d4:ef:64:42:37:b4:46:fe:f6:af:12:70:
08:1d:0f:64:4b:78:c4:37:cb:78:7d:51:53:05:d2:
e7:09:3b:0f:ed:03:a5:82:27:8c:a9:f6:76:d9:2b:
8b:6b:3f:c4:04:8d:2b:40:30:8a:e5:be:21:e2:2a:
b3:64:76:f4:60:74:ad:23:b1:2c:3c:27:57:af:e7:
52:32:7e:45:f0:c7:db:81:ad:93:f8:c2:46:16:03:
42:ac:e0:b3:c0:a6:8e:c2:cb:d9:1b:73:8d:0c:4e:
40:85:f0:02:07:0f:01:8d:ca:97:01:97:2e:af:40:
79:2c:32:d2:eb:c4:2f:6a:ca:1f:88:02:90:79:b1:
11:1b:d3:43:6f:68:16:c3:cc:20:4f:22:f8:92:48:
63:ed:5c:18:04:cc:d2:3b:e3:b8:90:34:b7:ec:36:
01:fc:3b:0d:fc:ac:8a:b4:75:0a:f4:03:93:22:ea:
df:43:55:25:e9:a5:29:90:8b:9b:ab:f7:ba:f9:59:
be:62:e3:c3:60:9e:4d:0f:a0:f1:5c:16:8e:95:37:
0a:ae:1a:f3:9c:67:b8:40:a5:6a:c0:8f:aa:51:74:
90:0d:42:cc:12:30:f0:fb:b2:e2:2a:7d:4d:fd:c4:
6b:05:19:98:7f:bd:f5:16:7b:79:2b:b7:c1:14:c2:
1a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F6:8F:1F:41:1F:98:78:73:5D:7D:26:17:D8:B7:28:4C:DE:A5:AC
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/M_aPH0EfmHhzXX0mF9i3KEzepaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.140.143.0/24
193.255.92.0/24
193.255.175.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:79:9e:7c:f0:91:0a:58:45:08:cc:6f:d7:c8:40:c1:ee:72:
63:25:6c:2a:82:0f:77:cd:5d:f2:d7:79:4e:77:1c:9d:a2:98:
27:1e:e0:0d:8c:67:50:1d:b5:50:3e:78:ec:95:2a:c7:47:ab:
34:31:4b:0f:38:24:b5:da:89:75:24:c5:80:a4:75:ff:7b:0f:
57:30:e5:e9:13:43:a1:d0:6e:28:67:50:6f:6f:9b:78:cc:54:
c1:06:c8:88:f0:d4:ef:a0:87:0d:ce:15:df:24:7f:3b:fa:c3:
2f:20:07:54:24:bf:84:56:f3:ae:d7:a4:78:01:52:57:87:42:
d8:c2:b4:c8:f4:82:26:cc:88:d8:4a:ad:02:dd:f0:fb:63:75:
86:5b:06:ce:87:73:9b:c6:8e:43:28:ec:96:6a:c2:37:4a:dc:
c8:de:87:83:4b:b5:a3:39:16:b0:c3:9c:64:2f:c6:ae:20:ea:
bc:4b:be:ac:09:b1:08:85:b1:ac:a2:71:37:94:7e:d8:0a:52:
63:c4:a2:fd:94:07:ee:fc:da:81:bd:d7:5a:3d:d9:43:c5:37:
51:cd:b3:da:03:49:c9:c3:2c:1e:43:0f:4a:55:9a:50:04:c8:
86:d0:ee:fe:c8:0c:3c:db:e7:b7:8b:6f:f1:b7:a9:16:06:4e:
93:44:dd:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:01 2024 by rpki-client on console-ams.rpki-client.org