Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/f0b09b-86b3-48b5-b71b-e0aa86d250e3/1/u3-DNgOm-Q0mSBC6CMcT2-ZJcbA.roa
File: u3-DNgOm-Q0mSBC6CMcT2-ZJcbA.roa (raw, json)
Hash identifier: EqQS3quwGE5asULHRbLdmqn8AqtScNSBqZQVwCkiXRU=
Subject key identifier: BB:7F:83:36:03:A6:F9:0D:26:48:10:BA:08:C7:13:DB:E6:49:71:B0
Certificate issuer: /CN=db0ae651defb0666c22b2e5d7add5653487076af
Certificate serial: 021B5402
Authority key identifier: DB:0A:E6:51:DE:FB:06:66:C2:2B:2E:5D:7A:DD:56:53:48:70:76:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wrmUd77BmbCKy5det1WU0hwdq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/f0b09b-86b3-48b5-b71b-e0aa86d250e3/1/u3-DNgOm-Q0mSBC6CMcT2-ZJcbA.roa
Signing time: Sat 01 Jan 2022 04:56:50 +0000
ROA not before: Sat 01 Jan 2022 04:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.105.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35345410 (0x21b5402)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db0ae651defb0666c22b2e5d7add5653487076af
Validity
Not Before: Jan 1 04:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb7f833603a6f90d264810ba08c713dbe64971b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:13:88:0d:04:92:38:87:f1:1a:47:e2:47:91:
7a:ad:ad:97:50:89:22:7c:bb:ff:0a:b9:f8:a5:39:
4a:1b:cc:38:b4:9f:c0:9d:5d:3b:e4:a5:bb:f6:93:
fd:b0:5a:f3:c7:55:1c:5b:64:5c:21:2a:34:70:f1:
12:11:aa:fe:8c:16:e1:79:16:3d:f2:15:fb:46:e5:
5c:06:52:93:bb:30:f6:81:b1:c9:70:a1:00:db:86:
ea:45:c5:21:67:9e:5f:71:a0:af:88:27:9c:5f:b7:
ff:52:29:fc:98:7a:bb:03:4a:45:57:f8:f5:0b:c1:
be:03:da:1d:d4:a5:5a:df:b8:d7:ac:7e:d7:41:12:
e5:19:fa:71:70:51:61:c0:bf:85:ad:76:c3:db:fa:
ff:e4:0b:65:08:9c:4e:d7:2b:b9:9e:8a:cf:c6:c7:
a3:59:6a:38:57:e3:17:0c:a7:b5:c8:cc:f6:09:a2:
c5:b4:60:cb:66:e4:43:4e:ad:57:e6:88:0d:3a:40:
aa:15:5d:ab:c2:25:6e:39:65:da:1a:42:3a:b2:cc:
27:40:f1:59:57:59:3b:7e:9e:07:df:cf:77:5f:4e:
3d:a3:5b:63:f8:b3:d4:d6:9b:3c:3f:4e:1c:01:87:
80:be:18:ba:6a:3f:d4:64:77:2e:ee:48:06:da:75:
f5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:7F:83:36:03:A6:F9:0D:26:48:10:BA:08:C7:13:DB:E6:49:71:B0
X509v3 Authority Key Identifier:
keyid:DB:0A:E6:51:DE:FB:06:66:C2:2B:2E:5D:7A:DD:56:53:48:70:76:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wrmUd77BmbCKy5det1WU0hwdq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f0b09b-86b3-48b5-b71b-e0aa86d250e3/1/u3-DNgOm-Q0mSBC6CMcT2-ZJcbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f0b09b-86b3-48b5-b71b-e0aa86d250e3/1/2wrmUd77BmbCKy5det1WU0hwdq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.212.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:1a:92:ec:19:df:2a:73:5d:94:60:5c:db:87:b4:0f:d9:40:
59:5f:37:b4:ce:75:1e:8b:2a:81:be:f6:21:2f:7c:47:06:54:
5c:58:33:34:a3:40:45:00:5b:2d:74:3f:88:5f:5f:fc:2e:a4:
c8:d7:10:ad:ba:d2:a8:4f:2b:eb:1b:6d:1c:fc:a0:ee:06:f7:
7a:26:0b:5d:78:15:d2:94:b2:e6:20:78:3f:98:71:75:31:4d:
4a:4c:c0:13:99:9b:96:5d:e2:42:28:fb:f5:ca:2b:4a:52:c8:
92:7a:99:19:1f:02:dd:d2:b2:60:6a:84:11:7f:04:f8:40:9c:
19:38:2b:49:0e:85:6e:6f:38:15:62:0d:6f:2e:b0:b3:f5:2d:
a9:9e:d0:5c:1c:a1:86:80:2d:4e:4d:e3:b7:a4:7c:9c:f6:4c:
75:ed:1b:32:1d:c2:9d:c9:f7:f9:c1:2a:56:42:ba:76:bd:a1:
85:08:5a:37:98:b5:63:2b:c7:c1:d1:52:e6:30:12:37:f8:ce:
4d:42:ff:95:fe:f4:76:dc:05:da:e9:5f:63:01:02:0e:f2:b6:
77:90:4e:97:19:84:4c:86:a8:87:05:ac:d8:cb:a5:b1:f1:08:
15:e9:96:b6:3f:68:b2:0e:36:26:08:92:2e:29:bb:43:03:ee:
3b:a1:0b:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:51 2023 by rpki-client on console-fra.rpki-client.org