Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/34ffe7-9bf4-452b-9199-1255da04d986/1/WrrvXDeNkZBhjIUR8FNSsAlchdE.roa
File: WrrvXDeNkZBhjIUR8FNSsAlchdE.roa (raw, json)
Hash identifier: Z/qocXW5M4JJrUyOQ+QR3MOcxjkcMHYhuQ0fVRlbLso=
Subject key identifier: 5A:BA:EF:5C:37:8D:91:90:61:8C:85:11:F0:53:52:B0:09:5C:85:D1
Certificate issuer: /CN=984b690d6dd3b0faece03bf208f0030e338c2216
Certificate serial: A60F
Authority key identifier: 98:4B:69:0D:6D:D3:B0:FA:EC:E0:3B:F2:08:F0:03:0E:33:8C:22:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mEtpDW3TsPrs4DvyCPADDjOMIhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/34ffe7-9bf4-452b-9199-1255da04d986/1/WrrvXDeNkZBhjIUR8FNSsAlchdE.roa
Signing time: Fri 04 Mar 2022 18:34:26 +0000
ROA not before: Fri 04 Mar 2022 18:34:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 193.58.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42511 (0xa60f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=984b690d6dd3b0faece03bf208f0030e338c2216
Validity
Not Before: Mar 4 18:34:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5abaef5c378d9190618c8511f05352b0095c85d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:17:67:e2:dc:0a:5f:1e:fc:db:8a:3b:18:11:
d2:03:cb:9e:53:bd:ae:bf:80:ac:cd:85:3b:49:94:
b2:48:f8:f6:94:11:1f:b2:e5:10:62:5b:fc:e0:04:
29:9c:75:f2:0e:fd:f8:d2:3e:ae:4d:d4:6a:f5:fe:
07:c5:fd:74:f4:7b:79:4a:c9:6d:f2:2f:4f:9c:91:
07:21:81:58:5e:36:1f:4a:e5:a9:60:d7:7c:a5:eb:
2c:7f:a5:a9:94:00:f4:38:3e:e8:82:bd:8c:17:94:
7b:c9:d9:9f:fb:39:40:5b:f0:bd:88:60:6c:46:b1:
f7:4d:36:d2:fb:98:ff:f7:69:f0:7c:b6:36:0e:f8:
28:48:db:9e:19:c5:11:68:14:33:b8:2c:58:08:21:
b8:31:e6:cc:1d:13:21:a4:18:18:89:bd:0f:32:a3:
1d:31:c6:68:8f:32:55:bf:c2:69:ce:a8:07:d6:81:
6a:db:24:fb:4d:3a:d0:44:1a:e3:f8:bd:40:fc:3c:
9b:a3:40:47:94:bd:8a:0d:00:44:7a:44:6d:e9:1e:
4d:a6:4d:a2:9e:af:af:d0:d3:5b:38:8d:a7:92:16:
89:54:85:7d:dd:8c:d2:89:7d:0f:75:3e:c1:4a:38:
11:11:cd:52:43:e9:51:1c:ec:3e:74:b4:ea:4a:bd:
23:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:BA:EF:5C:37:8D:91:90:61:8C:85:11:F0:53:52:B0:09:5C:85:D1
X509v3 Authority Key Identifier:
keyid:98:4B:69:0D:6D:D3:B0:FA:EC:E0:3B:F2:08:F0:03:0E:33:8C:22:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEtpDW3TsPrs4DvyCPADDjOMIhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/34ffe7-9bf4-452b-9199-1255da04d986/1/WrrvXDeNkZBhjIUR8FNSsAlchdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/34ffe7-9bf4-452b-9199-1255da04d986/1/mEtpDW3TsPrs4DvyCPADDjOMIhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.242.0/24
Signature Algorithm: sha256WithRSAEncryption
56:cb:a1:2c:e2:02:75:7b:5b:d3:08:d4:c7:8f:1c:8b:b2:1b:
72:8e:0e:ef:2c:db:76:76:e0:44:fa:cc:3e:3c:d6:f6:b0:45:
69:f0:6b:e3:82:17:ba:e5:79:81:18:f5:72:4a:f1:81:4a:57:
f2:39:9f:26:fc:15:0d:d0:d3:a0:15:d6:39:89:a4:de:f8:4e:
73:f5:be:e4:75:76:02:82:b5:3a:e6:65:f1:0b:12:18:97:64:
61:c0:5d:f1:9e:41:74:06:77:fa:77:fd:2b:d5:e7:6e:f3:34:
ef:b8:30:c0:e3:b6:c1:fe:09:92:7f:73:a3:1f:38:5d:98:3d:
aa:6e:86:b6:af:5e:fb:1c:d2:72:d2:09:5e:8b:5b:1c:b1:22:
d8:19:5d:a1:7a:b3:52:04:f1:02:24:66:44:b9:e5:df:e4:a1:
3b:39:19:23:6c:b3:54:8d:d0:d3:f2:19:c4:1a:b1:8d:c5:38:
dd:e9:d1:10:4e:fe:64:a2:df:33:ca:4a:2d:6f:3d:0a:81:41:
a9:7b:7f:f9:76:3a:01:28:3b:56:89:61:ca:0f:8f:ee:98:3c:
8a:9c:59:87:d9:95:ef:d1:5e:82:a8:5b:15:fb:e8:50:44:f9:
aa:7c:26:38:db:d3:48:9e:80:03:64:5f:48:5d:b5:ad:3c:e0:
84:3f:86:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:03 2024 by rpki-client on console-ams.rpki-client.org