Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/fsYJlTYZwM6ptNrr3hnWPO1NoxE.roa
File: fsYJlTYZwM6ptNrr3hnWPO1NoxE.roa (raw, json)
Hash identifier: I1N/BVCoJ2T3UkwNxJD9ZcAQ06/vFR/HKzrdQOGXWeo=
Subject key identifier: 7E:C6:09:95:36:19:C0:CE:A9:B4:DA:EB:DE:19:D6:3C:ED:4D:A3:11
Certificate issuer: /CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Certificate serial: 07D685A0
Authority key identifier: 02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/fsYJlTYZwM6ptNrr3hnWPO1NoxE.roa
Signing time: Sat 01 Jan 2022 02:53:40 +0000
ROA not before: Sat 01 Jan 2022 02:53:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31274
IP address blocks: 193.25.124.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131499424 (0x7d685a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Validity
Not Before: Jan 1 02:53:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ec609953619c0cea9b4daebde19d63ced4da311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:48:24:bb:17:c0:55:13:23:7f:00:86:b2:14:
08:fb:a3:8f:a4:98:7d:e0:0a:5f:33:37:79:aa:60:
68:b1:8d:dc:8c:98:5e:5e:50:60:ee:72:3a:de:84:
fe:80:08:4f:bd:6c:95:9f:78:8f:9f:49:e4:91:b2:
f3:1e:ec:9c:8b:73:1c:a3:8f:35:c5:1d:93:9a:e5:
c9:55:8b:0a:a5:f1:ac:e0:fc:17:1c:d7:6c:10:84:
79:65:f1:e7:fe:85:a1:ff:70:d6:8f:73:34:41:b3:
1e:ef:23:33:30:13:18:8c:f6:bd:34:73:c9:54:72:
a7:24:2a:90:52:64:3c:78:88:03:17:72:7e:fa:5b:
36:ac:ff:e8:6e:93:85:0a:c8:0b:4d:93:d1:a6:e2:
0a:d8:10:53:52:c4:d5:51:aa:2e:7c:8b:08:2f:10:
0b:74:99:ed:d1:c5:d4:56:b1:92:e6:aa:c5:21:e6:
39:60:37:19:6f:bc:0a:7a:71:d3:17:b5:5f:4f:62:
e9:f9:0f:5c:2a:c6:f2:eb:06:8b:b3:1d:ee:e8:58:
b5:b4:27:60:b5:48:b7:88:99:a4:55:33:b2:f0:95:
d0:d9:13:b7:30:d0:7e:1e:63:f6:1d:b9:11:5a:a9:
2d:5c:cb:65:31:7d:97:8a:dd:cd:65:32:d1:69:2a:
bb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C6:09:95:36:19:C0:CE:A9:B4:DA:EB:DE:19:D6:3C:ED:4D:A3:11
X509v3 Authority Key Identifier:
keyid:02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/fsYJlTYZwM6ptNrr3hnWPO1NoxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.124.0/23
Signature Algorithm: sha256WithRSAEncryption
46:87:f3:ed:72:38:42:dc:55:da:6e:45:4d:51:b0:ca:15:a4:
93:22:48:ee:62:96:b6:4e:54:fa:b2:8c:bd:84:f4:46:56:8a:
4e:c7:12:8b:28:44:fe:ba:71:ef:8f:9b:f0:f7:4d:da:94:b6:
fc:a0:c5:78:00:01:82:b1:cd:f6:52:05:25:b3:4b:99:cf:de:
c7:a4:1f:0c:f0:8d:b9:4e:df:ef:62:27:52:72:10:e7:48:fe:
d4:79:2f:41:66:01:83:d8:55:a7:a5:46:e5:22:f4:6f:6d:a6:
c4:18:1c:26:3e:59:e5:86:ed:7c:03:c2:15:c1:23:a9:c0:54:
1f:54:b6:88:77:d2:6e:f0:f2:5e:d5:19:4e:7c:2a:22:11:2f:
c9:cd:f4:f3:1c:5f:20:c7:98:8a:5b:40:19:a4:53:98:04:a8:
d6:a5:16:6e:d1:60:f2:35:e7:ed:c1:29:b1:f8:39:f2:17:cb:
65:96:1d:13:88:42:f9:7d:ee:b9:44:e0:aa:bd:6f:a3:70:29:
cc:c0:32:22:07:fc:09:9e:2e:8d:9e:f8:6f:c6:41:c1:66:6d:
6e:ba:a1:eb:5b:a7:5c:16:f9:d6:fd:86:c0:c5:c5:bd:47:0f:
72:f4:d3:ae:77:6b:aa:af:82:5b:54:28:5d:7a:48:e8:6b:cc:
48:74:83:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:11 2024 by rpki-client on console-fra.rpki-client.org