Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/cbd362-7694-4183-915d-8f4f291b23b6/1/1--TxB7cW8jvM-wM_BBpLk03YZrQ.roa
File: 1--TxB7cW8jvM-wM_BBpLk03YZrQ.roa (raw, json)
Hash identifier: IjYBsxbj+IfaIm2IVxvGWWvAKefF+ShMMwI5k2MV7+k=
Subject key identifier: FB:E4:F1:07:B7:16:F2:3B:CC:FB:03:3F:04:1A:4B:93:4D:D8:66:B4
Certificate issuer: /CN=3f296fe945a23180753f67f7748e6f299d2e672a
Certificate serial: 017367
Authority key identifier: 3F:29:6F:E9:45:A2:31:80:75:3F:67:F7:74:8E:6F:29:9D:2E:67:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pylv6UWiMYB1P2f3dI5vKZ0uZyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/cbd362-7694-4183-915d-8f4f291b23b6/1/1--TxB7cW8jvM-wM_BBpLk03YZrQ.roa
Signing time: Wed 27 Apr 2022 08:26:51 +0000
ROA not before: Wed 27 Apr 2022 08:26:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12213
IP address blocks: 193.19.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95079 (0x17367)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f296fe945a23180753f67f7748e6f299d2e672a
Validity
Not Before: Apr 27 08:26:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbe4f107b716f23bccfb033f041a4b934dd866b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:65:81:fe:7a:7d:fc:86:f1:9d:58:3c:ed:cd:
79:d1:b6:70:56:51:cf:1d:df:40:d5:54:1a:39:ce:
93:16:aa:ac:4e:15:46:67:71:ea:6c:0e:46:ea:2a:
25:4a:a2:8a:33:13:49:1c:b6:12:81:24:a6:98:9e:
eb:95:7d:8c:0d:0d:d6:8c:cc:6d:22:25:08:a6:b9:
39:72:ae:2b:06:96:d8:21:f3:0f:4e:93:95:2b:8a:
63:31:56:42:7b:bd:2d:ed:ea:7d:2a:3a:40:9d:32:
84:13:87:9c:e1:09:6d:81:af:80:b2:07:35:8e:35:
f6:0c:62:15:45:a7:95:92:97:de:12:aa:ae:87:4a:
95:2e:05:9d:98:e6:c5:50:83:fa:92:e4:c2:4c:90:
fe:43:8b:6f:e3:24:67:5c:cd:b9:fa:0f:17:4c:af:
db:e1:f6:92:c7:cf:f6:b3:4b:24:3d:a8:81:35:23:
ec:0d:c3:75:d5:c9:be:09:f0:9a:3f:9c:87:f1:77:
7d:56:a7:5e:eb:31:21:c3:1b:8f:04:b0:ed:75:c2:
12:e4:73:71:c5:b0:a8:ce:be:47:3d:ae:e8:60:51:
2e:eb:06:74:83:cd:cf:bd:5c:5e:4d:3a:c9:6c:e8:
78:dd:24:2c:c0:72:26:f1:fe:aa:ca:a3:d8:4b:b2:
ce:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E4:F1:07:B7:16:F2:3B:CC:FB:03:3F:04:1A:4B:93:4D:D8:66:B4
X509v3 Authority Key Identifier:
keyid:3F:29:6F:E9:45:A2:31:80:75:3F:67:F7:74:8E:6F:29:9D:2E:67:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pylv6UWiMYB1P2f3dI5vKZ0uZyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cbd362-7694-4183-915d-8f4f291b23b6/1/1--TxB7cW8jvM-wM_BBpLk03YZrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cbd362-7694-4183-915d-8f4f291b23b6/1/Pylv6UWiMYB1P2f3dI5vKZ0uZyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.188.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:63:ae:ab:d4:6a:65:3d:35:4f:98:40:38:66:63:c3:8a:a4:
37:0c:61:d1:2c:be:0a:be:46:49:7d:52:bc:c9:04:6c:a0:ae:
b1:d5:6f:a4:bd:71:09:13:db:d4:70:95:10:e1:73:74:d0:76:
da:9f:5c:3a:82:01:cb:99:fb:fc:e4:29:3b:7e:59:74:89:af:
28:89:a2:6f:75:9c:79:54:a1:4e:a0:93:0c:de:e8:92:cc:b9:
6e:73:3c:0f:b7:e7:5f:f4:b5:74:95:77:02:76:7e:59:35:66:
45:d2:8d:04:e8:c3:5e:04:27:6b:1d:f3:1c:d7:55:bf:77:d6:
31:60:80:7f:8d:3f:47:bd:5f:56:65:0c:78:33:18:81:ea:a5:
52:ac:55:45:b8:3c:31:1c:51:e6:b3:44:c3:be:ad:55:45:0c:
ae:77:1c:e8:e1:40:2c:eb:46:bd:6e:d1:28:a6:ac:2c:01:32:
d9:23:19:96:19:17:b3:b6:5b:ac:e5:09:45:22:96:73:5a:a4:
26:32:5f:40:6f:4f:b4:d8:60:5d:a9:b9:76:42:bb:f5:1c:7f:
7c:86:cd:75:25:32:21:df:ba:80:d4:df:80:70:89:84:4f:aa:
27:ad:a1:6c:02:01:47:37:a7:68:c7:61:25:5b:3c:80:a3:aa:
87:2f:c9:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:44 2024 by rpki-client on console-fra.rpki-client.org