Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/625ed5-7e74-4427-9bdf-dd1d249017aa/1/9TO-iH-IWCQe-PB6AMN29YFVyIQ.roa
File: 9TO-iH-IWCQe-PB6AMN29YFVyIQ.roa (raw, json)
Hash identifier: jWWxMrV4Rv5n/l4WWkVnaAxglzI18QyRYANrJliOFic=
Subject key identifier: F5:33:BE:88:7F:88:58:24:1E:F8:F0:7A:00:C3:76:F5:81:55:C8:84
Certificate issuer: /CN=59acb4022765898be4f06050cd3a2f9291d83367
Certificate serial: 07310262
Authority key identifier: 59:AC:B4:02:27:65:89:8B:E4:F0:60:50:CD:3A:2F:92:91:D8:33:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Way0AidliYvk8GBQzTovkpHYM2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/625ed5-7e74-4427-9bdf-dd1d249017aa/1/9TO-iH-IWCQe-PB6AMN29YFVyIQ.roa
Signing time: Sat 01 Jan 2022 14:57:35 +0000
ROA not before: Sat 01 Jan 2022 14:57:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6798
IP address blocks: 193.105.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120652386 (0x7310262)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59acb4022765898be4f06050cd3a2f9291d83367
Validity
Not Before: Jan 1 14:57:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f533be887f8858241ef8f07a00c376f58155c884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ad:4f:39:b1:c4:8e:05:1c:18:b8:56:85:db:
58:5f:51:5d:9e:21:a4:c5:43:ef:6c:5f:3b:ca:d0:
03:81:08:bd:cc:c2:fe:07:fe:06:3b:71:f0:ee:e8:
f0:08:85:a6:c7:10:a1:e8:dd:00:fd:fe:a1:da:a0:
30:0e:47:6d:33:e8:3c:d1:df:9d:ce:f5:9c:62:40:
4c:c3:01:ca:8e:55:3e:49:a2:d3:82:e2:68:fa:9a:
d9:55:bc:ab:ab:98:d8:d0:43:86:5e:ab:d0:2f:58:
9f:0e:91:bf:0c:41:1d:76:ae:00:17:5a:87:d5:94:
0b:e7:f1:6d:3a:20:19:0b:e6:37:c3:08:18:d9:6c:
ea:80:cd:46:95:41:b2:f1:1b:36:1d:84:09:e5:0b:
e3:20:65:b3:72:3a:f9:0e:9a:52:48:2c:9a:f3:fd:
ed:5b:68:d4:3d:9e:d4:6a:c0:d6:b2:bb:37:6e:65:
0c:ab:8c:4d:6f:3b:5a:f1:90:c1:29:3f:c3:86:b5:
fe:fc:a3:ce:76:82:3a:ba:5d:00:3a:aa:36:8b:bc:
d1:46:f3:81:b2:37:de:58:30:10:ae:0d:4b:3a:5d:
b4:81:3f:5f:22:b6:50:37:83:88:dd:40:55:60:97:
61:96:9e:69:9d:df:4c:d7:be:cb:71:72:92:d3:d4:
bb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:33:BE:88:7F:88:58:24:1E:F8:F0:7A:00:C3:76:F5:81:55:C8:84
X509v3 Authority Key Identifier:
keyid:59:AC:B4:02:27:65:89:8B:E4:F0:60:50:CD:3A:2F:92:91:D8:33:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Way0AidliYvk8GBQzTovkpHYM2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/625ed5-7e74-4427-9bdf-dd1d249017aa/1/9TO-iH-IWCQe-PB6AMN29YFVyIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/625ed5-7e74-4427-9bdf-dd1d249017aa/1/Way0AidliYvk8GBQzTovkpHYM2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.153.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:c5:61:0a:e8:f9:4c:dd:dc:2a:d5:b1:41:f7:bc:9f:27:26:
b1:2b:c8:ed:a0:38:25:b5:d2:a6:3d:b0:fc:0a:5d:f9:7e:fb:
00:e3:40:72:da:89:03:ed:a6:9b:45:40:02:27:aa:58:13:92:
58:69:18:92:5d:7d:1b:86:d2:68:69:ad:74:0c:6d:0d:38:21:
ec:28:3f:c3:31:e3:16:c1:d4:84:6a:e3:60:04:8a:58:ca:d2:
55:30:86:db:51:58:59:22:ee:62:93:f0:47:dc:2a:9e:78:72:
6a:7e:04:fe:09:15:eb:35:80:6e:29:d9:8f:dd:7c:c5:89:45:
6a:b6:a6:25:2e:0c:e3:20:63:ee:eb:02:55:71:18:8b:8b:82:
c0:95:8b:eb:61:b9:f8:d0:60:f7:7e:61:01:aa:7d:11:02:c2:
af:44:b9:1e:7d:bc:48:24:68:d7:e3:a7:36:41:36:f7:d5:e8:
bd:7e:bc:f5:e6:56:d2:3e:7c:31:34:e6:f7:76:5c:c7:e4:e7:
b8:f7:b1:c5:1a:6a:50:5b:7d:e6:3c:68:c6:86:1c:c8:b7:c5:
1f:5b:93:03:38:52:10:84:a6:b0:77:a3:e0:9e:5c:84:66:05:
93:bb:3b:4e:44:6f:8e:a4:fa:48:3a:fe:f9:a5:4b:39:9c:93:
46:5b:d9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:58 2024 by rpki-client on console-fra.rpki-client.org