Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/tao1tkMf30PyhwtePgh_H5X5p3M.roa
File: tao1tkMf30PyhwtePgh_H5X5p3M.roa (raw, json)
Hash identifier: 6qEr+bQ6LXKnleAsnulVfvoYGbEQSx2CpVIBYaZIQX8=
Subject key identifier: B5:AA:35:B6:43:1F:DF:43:F2:87:0B:5E:3E:08:7F:1F:95:F9:A7:73
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0DBEB6E8
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/tao1tkMf30PyhwtePgh_H5X5p3M.roa
Signing time: Fri 01 Apr 2022 12:34:21 +0000
ROA not before: Fri 01 Apr 2022 12:34:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23470
IP address blocks: 193.26.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230602472 (0xdbeb6e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Apr 1 12:34:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5aa35b6431fdf43f2870b5e3e087f1f95f9a773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:55:68:ac:fd:be:80:63:94:ed:39:fe:9a:86:
68:4f:77:a2:7b:07:ff:9a:fc:b6:79:7b:a0:7f:c9:
24:46:10:33:64:7d:27:b2:30:ce:6e:9e:cc:0a:5b:
80:07:14:a0:a3:df:16:2b:34:0b:22:57:6a:2d:7c:
07:fc:4d:59:6d:df:e0:67:b7:0d:55:2b:b6:82:8e:
99:9d:2c:78:c9:77:86:df:c1:cd:fe:e4:57:09:d5:
62:27:8b:67:96:f5:86:c3:a0:f7:8b:b8:8a:3a:4c:
a1:b6:fb:e7:e5:0e:c0:8b:9f:3b:a1:d3:92:bb:75:
6f:46:8f:03:ac:27:46:81:58:44:2b:8d:8d:21:bb:
96:66:a3:9b:05:bd:1b:f1:f8:ba:30:fd:45:9d:bc:
93:ae:18:36:7e:77:4d:cc:7e:77:0e:31:df:05:39:
6d:69:e9:94:b7:12:c9:0f:31:e9:73:1e:ef:c2:18:
ff:f5:0e:50:ee:33:e8:c6:74:49:8b:99:99:55:8c:
a1:cd:50:77:f2:d6:a5:e2:5f:d1:0b:be:01:cd:82:
43:be:52:0b:54:e2:89:67:ad:d0:0a:e1:ae:94:87:
a7:a6:ed:28:2b:5e:8f:18:1e:fd:c5:3f:53:a9:ba:
5a:ae:b6:af:82:d1:7e:35:50:0a:a8:45:36:25:92:
13:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AA:35:B6:43:1F:DF:43:F2:87:0B:5E:3E:08:7F:1F:95:F9:A7:73
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/tao1tkMf30PyhwtePgh_H5X5p3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.115.0/24
Signature Algorithm: sha256WithRSAEncryption
03:ec:88:78:ed:67:70:87:9e:a9:4c:6c:39:e4:13:2e:e3:c3:
b1:db:ec:75:e8:11:99:93:fd:9c:8c:53:be:a2:21:3b:fa:bd:
63:66:b4:e9:77:f0:ea:30:f7:47:51:e6:03:8e:5e:9a:41:b7:
07:ef:3a:84:48:2f:94:c2:9e:5c:4d:b3:5e:19:28:8c:4c:30:
1a:58:70:65:cf:5b:27:75:76:af:d0:04:30:b8:77:ec:81:b0:
80:1d:99:40:78:d4:46:6e:ce:c1:1b:23:bd:ef:14:b4:31:f7:
b1:26:77:94:0b:af:12:08:8a:82:43:ca:2a:c7:68:bc:27:f7:
a3:d6:2f:e2:07:f9:d0:85:d1:76:90:e1:37:88:d8:1f:ec:12:
69:a0:0f:70:78:cb:a8:49:9e:22:02:8b:3f:e1:f8:00:ae:ec:
68:4f:d1:50:ae:5a:0b:23:3a:0e:06:10:3c:1e:a6:1d:51:7e:
fa:42:8d:6b:fd:01:2d:d3:c1:a4:f4:cd:ad:31:7b:4e:c1:3a:
79:b8:c6:4e:17:07:da:cb:bb:68:03:1e:35:88:0d:68:81:59:
74:4e:f7:86:b2:dc:be:8a:ed:26:69:fd:76:f6:c0:d7:29:1d:
c9:74:f4:3c:f3:be:ef:ef:a2:be:6f:09:ea:f1:32:f7:b6:8c:
15:c4:ed:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:48 2024 by rpki-client on console-fra.rpki-client.org