Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/S93PDqgYAbt4iq78JOghrXqnouo.roa
File: S93PDqgYAbt4iq78JOghrXqnouo.roa (raw, json)
Hash identifier: DLSWaPnja15hg5qI7Nmj/uByOvR9kjY69N6lahM5G98=
Subject key identifier: 4B:DD:CF:0E:A8:18:01:BB:78:8A:AE:FC:24:E8:21:AD:7A:A7:A2:EA
Certificate issuer: /CN=f6af433974df373b70abd76b13e1c70c775f554b
Certificate serial: BC2FFC
Authority key identifier: F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/S93PDqgYAbt4iq78JOghrXqnouo.roa
Signing time: Mon 21 Feb 2022 15:14:51 +0000
ROA not before: Mon 21 Feb 2022 15:14:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 193.187.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12333052 (0xbc2ffc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6af433974df373b70abd76b13e1c70c775f554b
Validity
Not Before: Feb 21 15:14:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bddcf0ea81801bb788aaefc24e821ad7aa7a2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c5:51:fd:32:58:20:85:35:32:1b:db:a1:13:
7a:32:7f:fa:b4:8b:61:e2:29:3a:6c:dd:21:36:ff:
4e:39:03:0b:ca:2d:f0:83:18:d6:67:29:02:db:96:
4b:76:7d:30:a9:a5:27:25:97:71:17:58:1e:0b:c0:
51:fe:49:1e:a2:f9:a9:e2:b1:9e:36:bc:11:fc:f2:
11:ad:42:fe:c9:18:57:e2:f4:6e:0d:52:d2:d0:17:
89:9c:0b:b3:26:58:57:88:a9:1c:86:3c:95:40:e4:
00:27:6d:5a:ba:47:39:d4:de:42:03:b9:f2:18:5a:
a1:80:32:ba:e1:4b:93:f9:01:7a:b7:ea:e8:61:de:
68:fa:93:6a:22:25:cb:8c:a3:5f:0f:80:aa:ed:69:
3a:07:da:d3:13:d5:55:c2:3b:47:28:dd:57:fe:22:
e2:77:53:e5:b8:00:16:1d:f4:53:8c:00:5d:fd:d6:
15:f5:e0:36:89:54:a5:43:ef:af:e5:3b:59:74:07:
89:b1:54:e0:df:15:6c:b5:1d:4c:98:28:e7:da:5b:
5f:25:14:cc:e6:19:33:bc:b1:8f:9b:72:23:a5:99:
ac:cd:bd:4f:0c:f1:35:56:80:91:cf:76:da:5d:6e:
21:5f:54:e6:16:fa:52:e2:f3:ba:f0:18:d3:84:00:
8a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:DD:CF:0E:A8:18:01:BB:78:8A:AE:FC:24:E8:21:AD:7A:A7:A2:EA
X509v3 Authority Key Identifier:
keyid:F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/S93PDqgYAbt4iq78JOghrXqnouo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/9q9DOXTfNztwq9drE-HHDHdfVUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.187.255.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:31:09:f7:c7:fc:fe:9b:52:0c:03:ec:dc:8b:06:db:f2:14:
b3:82:ab:4a:67:eb:cb:96:cc:cf:be:3e:36:44:0b:bf:30:44:
d6:ca:79:05:45:2b:64:c9:4f:0b:e2:a9:7f:e5:78:3e:43:a5:
23:70:b7:68:01:d5:a4:56:ec:b7:14:46:ca:18:65:49:2a:bc:
0e:cf:6d:66:95:11:90:69:7d:8b:2b:11:a3:69:80:36:eb:fc:
ba:3e:34:fb:a5:96:6f:26:d9:a8:43:e6:37:15:d0:16:2f:33:
33:a2:6e:de:35:5e:3f:86:1d:d0:2f:d9:f5:4a:eb:d8:14:c3:
dc:63:20:f7:ce:59:3c:79:29:db:35:dc:91:1c:dd:9d:b4:c3:
ab:ae:17:7d:b8:2d:5e:61:35:66:ec:dd:af:fc:20:d7:67:0d:
6a:38:e8:84:af:92:bd:4b:d4:4d:ce:e9:cf:ef:13:1e:2e:af:
01:88:40:82:b2:4a:a6:6b:35:23:f8:15:c1:04:06:19:94:df:
b4:d0:94:44:63:30:d0:23:65:6e:af:8e:d4:c5:9b:e7:34:9a:
ff:a3:fe:ea:21:d8:80:8e:67:41:fa:98:20:9e:42:3f:c5:fa:
09:89:1c:69:8a:6c:77:50:b5:e9:4b:5e:91:d1:18:7c:9a:bf:
b8:67:43:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:31 2024 by rpki-client on console-fra.rpki-client.org