Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/2UFPrxlkKG0fCh1k7alEz3In7P4.roa
File: 2UFPrxlkKG0fCh1k7alEz3In7P4.roa (raw, json)
Hash identifier: bEnatNy31783dZp5Q9Y6JhLFolt3ctyQgsMv59hP+hU=
Subject key identifier: D9:41:4F:AF:19:64:28:6D:1F:0A:1D:64:ED:A9:44:CF:72:27:EC:FE
Certificate issuer: /CN=0bed43f409cb35ceb5e77b56d0bbc9a4cc2d2693
Certificate serial: 05A6E87A
Authority key identifier: 0B:ED:43:F4:09:CB:35:CE:B5:E7:7B:56:D0:BB:C9:A4:CC:2D:26:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C-1D9AnLNc6153tW0LvJpMwtJpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/2UFPrxlkKG0fCh1k7alEz3In7P4.roa
Signing time: Sat 01 Jan 2022 04:03:10 +0000
ROA not before: Sat 01 Jan 2022 04:03:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.176.186.0/24 maxlen: 24
193.176.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94824570 (0x5a6e87a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bed43f409cb35ceb5e77b56d0bbc9a4cc2d2693
Validity
Not Before: Jan 1 04:03:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9414faf1964286d1f0a1d64eda944cf7227ecfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5d:c6:ef:77:1b:9b:be:9d:ba:e8:a9:23:67:
e5:2e:a4:57:35:5d:5b:4b:41:f2:7c:bd:73:be:ce:
42:5d:ee:c6:84:61:99:54:15:30:46:2e:4d:1c:7d:
72:ae:ed:da:c7:c4:6a:a8:81:ad:80:34:17:8e:4a:
a4:02:59:5b:14:71:60:dd:d5:c0:b1:1e:bf:09:c7:
c5:61:e1:9e:bf:24:a5:8f:55:61:5a:68:f9:0c:36:
3b:fe:f7:79:29:cf:2e:9b:7c:bb:ae:e1:6d:aa:df:
fc:e3:ba:f8:56:24:bf:a1:6e:5a:a4:9d:65:6e:f0:
06:bb:e0:9d:18:b9:34:5b:2a:99:64:f3:73:ce:0d:
36:aa:64:d1:0d:d7:b1:8c:61:72:be:23:ad:00:92:
61:ec:4e:86:59:a9:66:08:45:db:e1:f2:ed:2c:c8:
e7:5a:5c:dd:d7:a1:a5:20:a9:37:84:b0:28:8d:55:
71:41:39:de:9d:60:9a:bf:0f:71:6a:3f:6c:64:95:
bc:50:1e:a4:de:4e:4c:21:af:c8:f6:25:48:8c:cc:
3b:23:86:ab:a5:13:8c:6b:21:27:2c:85:52:37:1a:
fe:ab:9e:b6:50:fc:57:61:ad:c1:0b:37:16:b3:11:
6a:4d:49:cc:05:54:4f:f0:fe:40:45:26:73:57:21:
73:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:41:4F:AF:19:64:28:6D:1F:0A:1D:64:ED:A9:44:CF:72:27:EC:FE
X509v3 Authority Key Identifier:
keyid:0B:ED:43:F4:09:CB:35:CE:B5:E7:7B:56:D0:BB:C9:A4:CC:2D:26:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C-1D9AnLNc6153tW0LvJpMwtJpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/2UFPrxlkKG0fCh1k7alEz3In7P4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/C-1D9AnLNc6153tW0LvJpMwtJpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.186.0/23
Signature Algorithm: sha256WithRSAEncryption
57:8f:3f:a5:26:dd:5a:fd:8c:b9:59:c4:53:90:7c:a4:c4:0d:
c1:38:f1:bb:ae:00:98:33:66:14:d9:31:58:95:02:c1:e4:c1:
54:3b:bc:4d:70:c8:94:7f:45:20:fc:1b:60:40:2a:2f:21:5d:
b6:a7:67:0a:bc:5a:71:3d:82:62:2e:7e:24:e4:b3:6c:69:68:
9c:ee:e7:26:79:08:87:5b:a1:03:24:83:b9:83:c7:bf:2d:15:
49:d4:34:35:2e:3a:31:58:75:e0:d5:75:7b:2d:45:5b:d6:0f:
07:37:fe:9e:00:04:77:07:f0:64:c5:1e:94:41:1c:70:79:02:
5b:63:ae:ac:1c:f2:1e:b2:8d:03:cd:b6:1c:e3:99:7f:aa:35:
43:6c:67:30:68:13:9d:85:11:61:4e:ce:03:94:14:1a:ea:4f:
92:c9:e4:17:c3:1a:3c:53:e9:02:6f:e7:fc:47:d0:02:cd:00:
2c:cf:f9:19:e5:ea:3b:87:77:98:08:8b:0c:eb:aa:fc:39:cd:
d9:70:cb:d9:41:23:84:13:47:21:13:1a:a6:22:8c:d5:e8:77:
ae:1a:53:19:37:1e:90:67:78:62:5c:60:70:ba:57:53:13:b4:
f9:88:d9:9e:2d:42:e6:72:44:6f:45:e6:16:ec:fd:cc:76:79:
88:4b:48:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:24 2024 by rpki-client on console-ams.rpki-client.org