Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Ug1Vt2A49ul9LSEDO7A79pT--1s.roa
File: Ug1Vt2A49ul9LSEDO7A79pT--1s.roa (raw, json)
Hash identifier: DgScbeqpedKx4FhVVmhxfIDoejsYuCey6+rR5npZJV4=
Subject key identifier: 52:0D:55:B7:60:38:F6:E9:7D:2D:21:03:3B:B0:3B:F6:94:FE:FB:5B
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 0182C5F52D69AD555D3D7E796CC43AFCCC76
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Ug1Vt2A49ul9LSEDO7A79pT--1s.roa
Signing time: Mon 22 Aug 2022 14:29:15 +0000
ROA not before: Mon 22 Aug 2022 14:29:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32181
IP address blocks: 193.37.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:f5:2d:69:ad:55:5d:3d:7e:79:6c:c4:3a:fc:cc:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Aug 22 14:29:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=520d55b76038f6e97d2d21033bb03bf694fefb5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1a:8f:a6:73:48:57:98:f1:b1:a4:af:41:f2:
c9:5a:1f:98:49:4c:96:4a:d7:74:5a:c8:e6:01:20:
76:83:61:46:eb:10:af:a5:28:4c:cc:5c:f3:c6:c2:
75:fe:90:ea:92:86:26:01:ae:59:61:31:f8:75:9b:
b6:bd:6e:b9:b5:aa:9b:13:60:2d:cc:33:49:12:11:
4e:64:e7:e7:33:87:29:cc:e1:92:87:a0:cd:08:28:
43:ec:d4:7e:8d:c6:be:8f:7e:42:e1:76:b3:64:3a:
be:4e:9d:65:ff:a4:c8:26:db:f6:b3:b8:cc:49:b1:
00:f6:0b:27:22:c7:81:a1:0f:8d:3e:34:d8:23:86:
47:c9:cb:8f:42:28:e5:a7:3b:81:72:f7:98:47:75:
9f:4b:5e:ba:31:a2:27:6f:92:ec:b2:3d:c5:fb:91:
76:e0:cd:7e:56:85:fc:ab:a0:66:22:83:d1:2a:b8:
55:e1:46:a4:89:c2:78:f5:9f:77:1f:0b:f5:d8:00:
12:29:22:22:de:4f:b4:ab:cd:4b:bf:5c:d6:e1:76:
7a:94:a7:a2:d1:27:1b:bb:5c:c0:68:08:9b:a9:e8:
07:8a:d6:3f:44:c1:c6:81:de:99:e8:c3:f7:a9:01:
57:d1:29:6a:2e:da:a3:fb:68:96:eb:9a:98:90:d4:
f7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0D:55:B7:60:38:F6:E9:7D:2D:21:03:3B:B0:3B:F6:94:FE:FB:5B
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Ug1Vt2A49ul9LSEDO7A79pT--1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.196.0/24
Signature Algorithm: sha256WithRSAEncryption
59:c3:90:f0:4f:5b:7e:29:13:ea:3b:e9:67:29:cd:03:a9:81:
6f:86:20:2f:50:55:9f:d5:20:f7:a2:72:bb:62:fa:5d:97:fd:
2b:6c:ee:42:bc:33:0c:a8:bd:69:2f:7f:9f:30:47:94:a5:f0:
c8:ed:f1:da:e7:55:92:45:ac:9e:d6:b5:d2:29:16:69:fa:32:
89:30:0e:3d:e9:de:e6:c6:06:b1:a3:45:a8:0c:83:58:0f:84:
c3:6d:64:2a:6e:7f:b5:1a:fc:98:2b:3e:d3:d2:04:8f:46:92:
2c:1d:24:a1:f1:af:5b:7d:be:8e:54:16:0a:59:7b:e8:b5:33:
a1:1d:d3:c8:fc:2a:03:69:80:75:3e:40:fb:6a:43:1f:f9:eb:
fb:25:80:ba:17:65:e8:1f:23:34:06:42:c2:72:31:29:cf:c3:
44:aa:00:4c:0c:09:a8:3f:3c:8a:16:ff:c8:90:82:ae:b4:9d:
fe:86:6d:f9:f0:61:b5:f4:b5:55:84:11:e8:e5:11:d3:db:7f:
33:7c:db:d6:98:da:b5:12:46:cb:3c:cc:dc:f4:05:48:d5:e0:
43:82:39:21:b2:3e:e3:de:01:f7:f0:bc:c0:46:48:95:5f:5f:
60:56:f0:54:05:60:eb:78:d0:6b:52:cc:4c:a2:35:39:10:22:
96:d5:54:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org