Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/tdmsCXo5RjOVbOWSsuGPab5QDPI.roa
File: tdmsCXo5RjOVbOWSsuGPab5QDPI.roa (raw, json)
Hash identifier: 45X6Ove43jvvvclvYZljTq1DYGU6KGgTnnk/1B0DgoY=
Subject key identifier: B5:D9:AC:09:7A:39:46:33:95:6C:E5:92:B2:E1:8F:69:BE:50:0C:F2
Certificate issuer: /CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Certificate serial: 0B9C3E95
Authority key identifier: B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/tdmsCXo5RjOVbOWSsuGPab5QDPI.roa
Signing time: Wed 04 May 2022 07:25:05 +0000
ROA not before: Wed 04 May 2022 07:25:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62315
IP address blocks: 193.32.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194789013 (0xb9c3e95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Validity
Not Before: May 4 07:25:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5d9ac097a394633956ce592b2e18f69be500cf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4b:c3:f3:7d:1e:5e:35:45:a3:fc:62:7b:3e:
d0:83:75:8d:3e:0b:64:4a:a6:4f:92:60:1d:a4:88:
7a:b3:98:37:00:2b:4c:2e:2b:9f:34:76:4f:0f:e0:
b5:a0:c5:ef:a4:30:d2:ac:e7:e0:79:0c:d9:c8:a2:
4b:06:52:a8:c4:fe:ac:8c:c8:5d:03:55:32:d5:1d:
ea:4b:40:d0:2c:97:d8:30:7e:16:0b:0e:8a:06:de:
c5:ea:7c:5f:32:72:9c:8c:4c:bc:8c:ce:77:06:62:
06:ca:db:6d:59:09:62:20:5d:92:c1:a5:31:d1:f8:
65:ec:a0:c5:49:9a:1c:5d:2f:17:cc:55:73:5f:e0:
f6:04:74:d9:88:86:db:8a:8a:a4:47:e2:66:c4:b4:
fd:1e:b8:49:a9:6b:d0:a2:d7:f5:f6:33:02:dd:b8:
23:89:24:b2:16:29:f0:ef:a8:72:60:79:8e:3b:14:
84:5f:a7:c9:6d:63:ed:ba:54:05:01:6c:b2:d5:08:
66:e4:d1:15:a3:5e:29:52:22:9d:72:12:41:3d:39:
90:65:09:40:f8:fc:25:42:9a:b3:a8:72:f6:1d:53:
af:98:5d:ee:73:c5:70:4d:a3:fa:51:9d:50:60:96:
3f:2d:31:44:b3:86:7a:3b:41:bc:0d:71:47:a0:c7:
66:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D9:AC:09:7A:39:46:33:95:6C:E5:92:B2:E1:8F:69:BE:50:0C:F2
X509v3 Authority Key Identifier:
keyid:B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/tdmsCXo5RjOVbOWSsuGPab5QDPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/sMIK4drMoxgVsnRwKSfBpanbx7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.10.0/24
Signature Algorithm: sha256WithRSAEncryption
59:93:6a:4d:24:cb:e7:f6:40:53:24:0f:6f:1e:8a:04:96:55:
b2:8e:5d:e7:88:c5:53:f6:42:0c:02:87:ed:12:64:ce:e0:46:
0e:94:f9:e7:f5:01:1b:bb:a7:92:83:11:48:0e:68:2a:54:f8:
23:bb:12:f8:9e:ac:71:1e:fa:de:b8:9d:54:56:d3:b7:7a:52:
54:d6:81:8b:0e:61:6e:35:42:d5:ae:98:ee:53:57:1f:41:fe:
3c:d5:56:a3:f5:81:d3:a9:89:4d:2a:70:01:99:ee:15:62:b2:
71:e4:6a:74:dd:24:12:af:f3:eb:86:2e:50:bc:37:fc:ea:1a:
d0:06:e7:47:a2:76:b0:89:79:7e:94:78:c3:ba:c1:6a:a2:64:
5e:4e:a0:1e:2e:44:7c:f1:37:90:90:c4:a0:a8:bc:81:c2:12:
26:ca:89:a0:09:c2:dd:95:32:11:91:45:4c:5f:ff:c9:47:17:
41:bf:7b:8b:c4:df:ef:6c:4c:1e:09:02:ef:44:3f:e1:c9:c1:
0f:d0:59:46:71:54:d8:05:b5:ab:54:29:72:4d:04:e8:5e:fd:
3f:4b:9f:04:77:3e:a7:ea:80:05:94:9a:97:9e:9a:06:a9:fb:
09:4e:1b:c5:13:71:82:c3:e9:d4:ad:f8:5d:29:9b:94:ef:86:
fc:9a:89:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org