Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/4Tp9BPYpymiW6sCh8cU9bVKXZdY.roa
File: 4Tp9BPYpymiW6sCh8cU9bVKXZdY.roa (raw, json)
Hash identifier: CQBtUCkSMYYRScPa6pmNWaUsn8azrUsk/pMMSYRfBV4=
Subject key identifier: E1:3A:7D:04:F6:29:CA:68:96:EA:C0:A1:F1:C5:3D:6D:52:97:65:D6
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 08943BEB
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/4Tp9BPYpymiW6sCh8cU9bVKXZdY.roa
Signing time: Tue 26 Apr 2022 18:25:05 +0000
ROA not before: Tue 26 Apr 2022 18:25:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 193.37.196.0/24 maxlen: 24
193.37.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143932395 (0x8943beb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Apr 26 18:25:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e13a7d04f629ca6896eac0a1f1c53d6d529765d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ef:ef:70:14:9e:11:74:4c:66:91:98:32:8e:
63:cc:7c:02:e6:2c:d2:cb:e5:b8:b3:f1:a9:ed:77:
e5:a9:d3:0f:26:ad:f2:52:df:fb:0b:2c:62:c2:11:
72:05:ca:f5:7d:54:5d:5d:f0:14:ec:ed:ee:58:0b:
4c:0f:8e:1f:70:ee:a8:ae:1f:68:f1:4b:4d:92:cf:
08:2c:3c:72:37:2b:13:5a:10:a0:25:49:26:b8:cc:
ad:9f:4e:42:fc:2e:92:65:3c:25:a2:12:50:2d:0f:
8e:fb:a1:fe:ff:1d:3f:36:96:62:80:7d:2d:47:9a:
99:cf:62:a7:a5:03:59:79:38:87:96:f6:38:c8:77:
04:1f:9d:c2:9f:a3:23:2a:1c:da:cf:61:3e:f8:df:
63:87:19:98:1e:29:88:ac:59:e1:8a:94:e2:4b:d0:
26:8a:82:78:20:ba:12:6b:c4:34:13:74:d7:78:8a:
1e:d4:b8:a3:3a:e6:31:46:8a:f7:8a:a1:13:05:b1:
87:dd:44:28:72:92:45:2c:1f:14:91:6d:75:18:5b:
97:37:03:ee:22:94:ef:4f:3d:b2:04:be:05:8c:e9:
76:85:c0:b3:dc:f4:45:b3:8d:c3:ba:85:dc:e6:8d:
37:9f:02:36:5c:c4:ba:05:72:bb:f2:a2:72:1f:4d:
78:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:3A:7D:04:F6:29:CA:68:96:EA:C0:A1:F1:C5:3D:6D:52:97:65:D6
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/4Tp9BPYpymiW6sCh8cU9bVKXZdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.196.0/24
193.37.199.0/24
Signature Algorithm: sha256WithRSAEncryption
58:ab:a6:e7:e3:b4:23:2a:0b:2b:e5:7d:52:1c:b1:e7:d2:53:
2d:d3:b7:43:cb:5e:d8:14:b4:ec:2c:3b:2e:0a:92:1f:f4:ab:
d1:e9:0b:2e:2f:6c:e9:9b:72:dc:28:85:c0:1c:3b:3a:e2:10:
dd:35:71:6a:80:4c:90:40:b2:c6:a7:03:4c:9b:c9:45:b8:8e:
6e:99:5f:87:4e:0c:a4:fe:ff:dc:c9:2a:18:52:cb:50:27:21:
e0:eb:e1:47:fe:8a:94:33:93:de:9e:05:9f:73:b1:62:16:94:
ab:35:7f:89:41:e9:65:c5:78:39:c3:ee:65:1d:7d:2b:54:0e:
e4:b6:af:d8:99:8c:b3:84:9a:b6:c9:1e:53:ef:e1:bf:4b:48:
09:13:d2:8b:ce:78:25:de:4a:a8:15:ee:cd:65:41:b4:a6:d6:
31:cb:aa:d0:40:a0:1f:88:21:3d:3d:73:32:1d:b4:67:93:eb:
7a:71:c7:9f:eb:e1:1b:a6:2f:3c:d2:1c:1b:c6:57:f5:15:8c:
05:a0:99:3e:8a:94:30:54:b3:02:0a:3a:aa:1c:f1:3b:48:0d:
ec:e8:07:af:20:52:97:5f:c0:e5:4a:9e:98:5d:01:76:0e:d6:
de:28:3d:d9:98:01:0d:5e:77:e4:e4:74:54:1a:2d:77:8b:e2:
20:61:64:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org