Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b21dfe-f138-406c-90ac-8823ac349b8e/1/rDEW5L9hiv5bJ4zjMQ_EJ2u56RA.roa
File: rDEW5L9hiv5bJ4zjMQ_EJ2u56RA.roa (raw, json)
Hash identifier: tQwObJ4DFQivoKLTUq3RPFjFihHrzyexXMvlZfVKhfw=
Subject key identifier: AC:31:16:E4:BF:61:8A:FE:5B:27:8C:E3:31:0F:C4:27:6B:B9:E9:10
Certificate issuer: /CN=dee12d8c09292452c66b3a3521095333a9ecfe95
Certificate serial: 020E8CE7
Authority key identifier: DE:E1:2D:8C:09:29:24:52:C6:6B:3A:35:21:09:53:33:A9:EC:FE:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3uEtjAkpJFLGazo1IQlTM6ns_pU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b21dfe-f138-406c-90ac-8823ac349b8e/1/rDEW5L9hiv5bJ4zjMQ_EJ2u56RA.roa
Signing time: Sat 01 Jan 2022 09:54:38 +0000
ROA not before: Sat 01 Jan 2022 09:54:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211298
IP address blocks: 193.163.125.0/24 maxlen: 24
2a06:4880::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34508007 (0x20e8ce7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dee12d8c09292452c66b3a3521095333a9ecfe95
Validity
Not Before: Jan 1 09:54:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac3116e4bf618afe5b278ce3310fc4276bb9e910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:15:2e:a1:a3:f9:25:83:d9:b8:5d:0c:02:7a:
86:e3:ce:c5:07:33:50:a8:7d:51:7c:05:8e:f0:51:
27:4c:b8:28:e9:59:69:da:3a:f8:c6:79:6f:25:19:
f9:08:78:0f:a3:67:3b:c8:05:e2:cd:3a:8c:1f:ae:
ba:98:24:ec:83:79:2a:41:9e:12:21:2e:dc:05:a7:
6f:2f:4b:c8:0b:2c:33:87:d9:ae:4c:e2:22:46:96:
09:48:35:91:17:81:6b:3d:b8:85:45:0b:6d:a9:85:
c8:5e:46:d4:b2:c1:8c:fa:21:b8:8a:f1:b0:65:9c:
5e:61:26:db:91:e0:71:30:9e:12:33:16:3d:08:04:
b8:d9:1c:81:54:e8:ab:4c:04:48:ff:be:ec:f4:86:
c6:50:69:a7:c4:0a:67:1a:fd:d8:21:28:b9:e6:55:
e8:0d:65:4d:77:5d:4f:79:2f:ab:b0:06:7b:a9:7c:
31:82:29:28:4e:2f:31:4e:b3:b1:52:bb:85:8e:0f:
49:3a:0f:5d:e2:05:30:77:a8:2c:45:45:30:e8:d0:
81:25:80:a3:ca:53:69:fc:4e:62:88:85:59:51:76:
e5:28:cb:50:91:4c:e1:f6:d8:3f:79:c0:40:1f:e6:
f3:78:a2:f3:47:dc:cc:0e:eb:5b:a9:66:0e:7f:d8:
2e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:31:16:E4:BF:61:8A:FE:5B:27:8C:E3:31:0F:C4:27:6B:B9:E9:10
X509v3 Authority Key Identifier:
keyid:DE:E1:2D:8C:09:29:24:52:C6:6B:3A:35:21:09:53:33:A9:EC:FE:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3uEtjAkpJFLGazo1IQlTM6ns_pU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b21dfe-f138-406c-90ac-8823ac349b8e/1/rDEW5L9hiv5bJ4zjMQ_EJ2u56RA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b21dfe-f138-406c-90ac-8823ac349b8e/1/3uEtjAkpJFLGazo1IQlTM6ns_pU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.125.0/24
IPv6:
2a06:4880::/32
Signature Algorithm: sha256WithRSAEncryption
22:12:19:37:eb:c3:d1:e7:5f:c5:77:aa:ff:98:aa:7c:2f:79:
2c:81:fa:ea:ed:08:5e:ad:b5:52:85:d1:ee:77:bd:48:75:32:
f0:62:eb:00:08:37:81:18:23:ba:ae:4a:88:e1:0b:49:9c:15:
31:0a:56:59:a4:e0:9c:4b:96:b3:e8:ca:5d:7a:0c:2d:f5:aa:
c9:2c:7c:16:11:0f:f7:ae:f7:9f:21:f7:ee:fd:5e:29:28:e8:
96:67:7f:5c:4b:f8:b2:c7:11:d1:c0:c0:05:16:6c:f7:6b:67:
b1:56:ea:76:91:25:40:16:fc:67:fa:b6:a9:08:bf:b3:79:5d:
70:d1:92:d1:34:bb:1b:44:a6:82:0a:d8:a9:14:25:c1:ca:dd:
f4:4c:44:07:37:61:35:d6:90:c0:62:4a:1d:5d:f3:70:26:1c:
d8:54:49:42:07:bb:c6:03:e9:65:c7:f2:8c:4b:6c:8b:14:d9:
80:a2:e7:a7:7f:56:a4:03:0d:6f:58:89:f0:fe:7d:e8:c6:63:
b8:31:08:79:e3:d0:9c:e7:f1:cb:89:b9:f2:da:06:53:eb:30:
a5:49:10:3a:dc:1e:55:74:23:15:10:e5:77:84:d7:22:ca:77:
5c:37:06:1c:d5:9d:74:00:3e:78:48:5f:1a:b7:23:fb:6f:1f:
b5:68:17:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:30 2024 by rpki-client on console-fra.rpki-client.org