Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/a13a17-6c73-4c78-9752-949dbe9b57fe/1/SFpNI9tUFMn_h3fhn_o4md0eR6k.roa
File: SFpNI9tUFMn_h3fhn_o4md0eR6k.roa (raw, json)
Hash identifier: d/Z05tD98YGMjey34htQO92raBtancaNpKAcC1mC4jY=
Subject key identifier: 48:5A:4D:23:DB:54:14:C9:FF:87:77:E1:9F:FA:38:99:DD:1E:47:A9
Certificate issuer: /CN=3aa32ee01266e018d2365c3bba1772f424179ac2
Certificate serial: 0B0BCCB8
Authority key identifier: 3A:A3:2E:E0:12:66:E0:18:D2:36:5C:3B:BA:17:72:F4:24:17:9A:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OqMu4BJm4BjSNlw7uhdy9CQXmsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/a13a17-6c73-4c78-9752-949dbe9b57fe/1/SFpNI9tUFMn_h3fhn_o4md0eR6k.roa
Signing time: Sat 01 Jan 2022 04:55:57 +0000
ROA not before: Sat 01 Jan 2022 04:55:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 193.104.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185322680 (0xb0bccb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aa32ee01266e018d2365c3bba1772f424179ac2
Validity
Not Before: Jan 1 04:55:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=485a4d23db5414c9ff8777e19ffa3899dd1e47a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:70:f9:e1:0d:b7:fc:d9:a2:6d:76:e0:fb:51:
41:8a:38:49:51:74:01:2c:83:ae:18:93:7e:41:a2:
82:b8:6c:7e:22:b9:ef:bf:e5:cc:8d:3b:64:4f:e0:
8b:44:bb:ea:ec:c5:7b:94:f4:45:3c:8b:e0:e6:e0:
78:f6:ef:6a:40:6f:7b:78:31:79:b6:ac:11:ce:47:
25:13:db:b6:1a:9c:88:81:98:11:82:86:c8:60:3b:
12:d4:90:a0:5f:8f:99:de:c5:c0:f4:53:20:3e:65:
51:bb:e5:bf:e0:b3:e8:11:75:be:ea:5c:c6:ca:bd:
c8:13:80:0d:ee:0b:47:6a:f3:97:50:8f:7a:72:09:
6e:b4:c9:c6:7f:2f:88:00:2b:67:e0:c7:73:d7:5d:
96:f0:8a:0b:41:5a:99:24:43:b4:08:2f:9d:5d:82:
01:e2:24:6d:97:ad:ec:40:87:8c:d9:bc:cd:5a:53:
2a:e0:70:80:bf:14:0a:ef:50:cc:9d:93:9e:21:ea:
81:13:9b:3f:9c:44:af:f0:65:15:55:b0:79:d1:a9:
7a:35:e9:97:e8:03:14:ab:06:68:5e:0d:c6:e4:a1:
69:dd:43:65:a3:e1:8e:45:ae:7c:31:fa:99:eb:d4:
f2:b8:f9:bf:9c:fe:25:e4:b9:02:e1:9c:64:9e:7f:
3a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:5A:4D:23:DB:54:14:C9:FF:87:77:E1:9F:FA:38:99:DD:1E:47:A9
X509v3 Authority Key Identifier:
keyid:3A:A3:2E:E0:12:66:E0:18:D2:36:5C:3B:BA:17:72:F4:24:17:9A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OqMu4BJm4BjSNlw7uhdy9CQXmsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/a13a17-6c73-4c78-9752-949dbe9b57fe/1/SFpNI9tUFMn_h3fhn_o4md0eR6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/a13a17-6c73-4c78-9752-949dbe9b57fe/1/OqMu4BJm4BjSNlw7uhdy9CQXmsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.246.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:b8:fe:d6:7c:20:2c:bf:28:8c:87:df:ef:e3:31:9e:ed:f0:
34:13:42:41:df:aa:5d:d3:44:f2:27:ac:64:0f:3c:3a:7f:d6:
21:5c:fc:d2:c2:dd:f1:bd:4c:19:88:b9:52:eb:db:48:c0:34:
ff:90:79:84:51:a1:02:39:be:a1:81:75:5e:39:85:e6:5e:54:
d6:5a:f4:a0:c0:3a:fc:f2:ac:32:99:55:3b:56:fc:39:b1:1e:
79:4e:f1:87:e7:0f:99:99:d7:df:d0:de:0e:02:3c:c1:b0:ca:
67:62:6c:d5:ba:83:fd:ad:a2:e2:e1:7f:61:6c:b1:48:31:8c:
88:de:fd:d3:82:d9:3f:fa:c2:89:18:0a:90:e5:ef:44:b0:7e:
12:b1:3c:b0:9d:da:c5:4d:95:07:81:50:5b:96:f5:3f:52:05:
41:00:af:99:f2:70:99:72:8f:23:a6:2d:72:c7:de:a1:1b:a3:
79:c8:91:2e:2e:cc:62:69:ef:8e:c8:06:69:5a:29:d9:b0:6a:
0e:75:a2:5a:3e:89:ac:b2:ff:3e:20:0b:e0:6e:41:99:ec:d6:
bb:67:19:1b:92:47:7d:f8:85:84:23:2b:e5:6e:e9:58:f7:ac:
f1:72:ac:95:5b:eb:25:85:ae:3a:b9:11:e3:e8:20:45:06:53:
45:7b:8b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:32 2024 by rpki-client on console-fra.rpki-client.org