Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/cnUjO3Ps28KuVEdPwbZOhoXKJk0.roa
File: cnUjO3Ps28KuVEdPwbZOhoXKJk0.roa (raw, json)
Hash identifier: XSCftHk9DOp4d0mcte1kCyZJUE3HHAMoI5OEH90l29s=
Subject key identifier: 72:75:23:3B:73:EC:DB:C2:AE:54:47:4F:C1:B6:4E:86:85:CA:26:4D
Certificate issuer: /CN=ea583d61f2e57a6b16ea4b1a9ca27bb250d748ef
Certificate serial: 09A6F9A2
Authority key identifier: EA:58:3D:61:F2:E5:7A:6B:16:EA:4B:1A:9C:A2:7B:B2:50:D7:48:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6lg9YfLlemsW6ksanKJ7slDXSO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/cnUjO3Ps28KuVEdPwbZOhoXKJk0.roa
Signing time: Sat 01 Jan 2022 13:01:08 +0000
ROA not before: Sat 01 Jan 2022 13:01:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60295
IP address blocks: 193.25.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161937826 (0x9a6f9a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea583d61f2e57a6b16ea4b1a9ca27bb250d748ef
Validity
Not Before: Jan 1 13:01:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7275233b73ecdbc2ae54474fc1b64e8685ca264d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e4:16:a5:82:3a:4b:f5:e7:af:18:ab:bd:cb:
f2:ae:6e:ae:18:22:71:01:0c:dd:17:1d:a3:70:73:
36:89:7d:dc:13:45:01:1c:e8:52:6a:0f:6d:c7:cf:
fd:94:45:46:82:a1:3d:5c:76:b9:7b:28:68:25:4b:
52:6d:09:94:84:66:12:09:ed:f0:d9:51:30:5f:e4:
ff:cf:1c:75:cd:58:6f:97:2d:c8:f9:d8:7b:16:a5:
00:a9:7f:33:9b:1a:b3:74:71:e5:fa:c2:61:f1:fa:
a3:81:bb:26:70:48:55:11:ff:90:11:ac:62:33:b9:
b0:4d:08:52:3b:73:2b:cf:be:50:33:19:d0:a7:de:
b6:00:04:55:9e:82:54:f2:06:06:7f:2f:80:89:e3:
83:74:9b:d1:20:a4:2e:a8:f4:4e:fa:87:28:a8:75:
66:d0:d4:1c:ba:d9:9d:e3:88:4e:54:3f:e6:0d:7f:
f3:ca:af:ac:25:6e:cc:0f:b1:a8:9b:0e:a0:7e:71:
00:5f:15:7e:47:8d:43:d3:ff:74:60:d6:3c:51:1b:
8b:75:31:5c:b9:2c:91:6f:44:9a:87:90:bb:13:45:
82:9a:d6:3a:4c:68:40:1f:3e:97:96:af:28:43:ad:
ac:44:2e:34:1a:cd:45:6b:ed:30:cd:3b:d4:78:f7:
11:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:75:23:3B:73:EC:DB:C2:AE:54:47:4F:C1:B6:4E:86:85:CA:26:4D
X509v3 Authority Key Identifier:
keyid:EA:58:3D:61:F2:E5:7A:6B:16:EA:4B:1A:9C:A2:7B:B2:50:D7:48:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6lg9YfLlemsW6ksanKJ7slDXSO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/cnUjO3Ps28KuVEdPwbZOhoXKJk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6f5128-7cba-49c5-9b25-99c1b0cfc3a8/1/6lg9YfLlemsW6ksanKJ7slDXSO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.173.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:1a:43:07:94:55:23:a6:b3:6f:3f:86:09:76:c6:b7:17:6b:
08:69:f4:c4:23:7a:b5:f7:4b:03:4b:27:f4:b6:53:19:c0:51:
f1:ab:4f:fa:83:0d:0f:c9:bb:80:92:21:ab:72:3b:17:a9:19:
c5:02:17:89:88:92:d2:4e:50:11:1f:c4:dd:8a:61:ae:16:ae:
46:66:45:e4:b3:04:a6:46:fa:04:c4:3b:a2:f1:0b:52:e2:10:
65:9c:a2:a2:38:7c:38:de:ca:45:ea:eb:96:1b:bb:04:ba:9e:
54:7c:1a:83:4e:2b:e7:e0:4f:21:3d:5a:84:6b:a7:f6:1b:23:
0f:89:ea:46:2d:85:d0:d7:1a:27:73:49:bf:15:3a:8e:52:d8:
a2:2f:3e:3d:b9:53:23:15:74:90:c4:d5:a6:80:de:dc:ea:8c:
00:18:07:6f:fa:7f:4d:5c:61:3b:5a:31:2c:58:2e:3b:b7:17:
d9:fd:c8:e9:df:97:97:cf:5e:31:a9:0a:8f:23:5f:6f:ba:b1:
70:c6:aa:d0:ef:45:00:cc:74:c7:ef:ae:e8:cf:c4:19:89:6d:
75:55:66:1f:aa:40:88:84:e4:1c:78:81:dc:e6:c6:9d:c1:dc:
04:1b:82:8b:10:4c:a7:e8:86:7e:96:67:d5:91:ad:5a:04:eb:
9e:97:cb:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:17 2024 by rpki-client on console-fra.rpki-client.org