Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/962ec5-38c7-4790-8962-0df566ea64dd/1/bDZXb-wni-kUb0uCElRQ0FXuNu4.roa
File: bDZXb-wni-kUb0uCElRQ0FXuNu4.roa (raw, json)
Hash identifier: SmPLVDeyjWviIl6IUR+kY3dJmMYHam/DERGj7DGSh/Q=
Subject key identifier: 6C:36:57:6F:EC:27:8B:E9:14:6F:4B:82:12:54:50:D0:55:EE:36:EE
Certificate issuer: /CN=9f0f7e99fb4d6544f222df38a898eb162c0d818e
Certificate serial: 0183C7562AC36968E33A44A5402086CFDADA
Authority key identifier: 9F:0F:7E:99:FB:4D:65:44:F2:22:DF:38:A8:98:EB:16:2C:0D:81:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw9-mftNZUTyIt84qJjrFiwNgY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/962ec5-38c7-4790-8962-0df566ea64dd/1/bDZXb-wni-kUb0uCElRQ0FXuNu4.roa
Signing time: Tue 11 Oct 2022 13:57:36 +0000
ROA not before: Tue 11 Oct 2022 13:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58028
IP address blocks: 193.201.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:56:2a:c3:69:68:e3:3a:44:a5:40:20:86:cf:da:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0f7e99fb4d6544f222df38a898eb162c0d818e
Validity
Not Before: Oct 11 13:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c36576fec278be9146f4b82125450d055ee36ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f7:20:1d:71:35:3e:76:c0:b6:19:7d:4b:88:
84:fc:ee:fc:c7:d7:2f:cb:69:3c:cc:7c:92:7a:fb:
1f:34:79:71:55:c8:c8:71:27:a7:29:16:43:66:c0:
7c:0e:58:3a:35:3e:8f:65:1d:62:c3:c4:85:e9:7d:
57:85:9e:5f:f4:e4:0d:ea:57:89:7d:d9:87:f3:e1:
ba:ce:11:e7:24:3f:6a:a0:df:ee:ae:c0:77:a5:a1:
34:4f:3c:f3:a0:a8:42:70:aa:eb:fa:fb:ec:a3:8b:
00:5a:a4:13:35:2e:7c:a0:38:7a:25:0f:7d:18:37:
d3:8c:97:e5:4e:21:f7:c0:0c:42:2e:41:15:6c:6e:
d4:77:ca:b6:00:7e:8d:c0:75:e3:6f:1f:ef:6e:b4:
8a:02:13:0b:5c:75:4a:ea:69:ad:e7:c3:4b:11:70:
6b:13:ec:41:45:ad:d1:34:fb:3f:84:4e:48:25:d2:
d7:18:9f:9d:70:06:c7:06:1b:58:e9:44:b0:14:8e:
35:a9:d4:a9:2a:84:07:e8:55:94:11:7f:11:8d:38:
31:c4:d6:b7:e6:3c:de:02:34:a0:1f:59:6c:f5:97:
10:d3:66:e9:ee:50:30:57:94:60:ab:35:f0:c9:17:
82:59:b0:c8:de:ff:8a:f3:fb:33:0f:b0:b5:17:af:
12:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:36:57:6F:EC:27:8B:E9:14:6F:4B:82:12:54:50:D0:55:EE:36:EE
X509v3 Authority Key Identifier:
keyid:9F:0F:7E:99:FB:4D:65:44:F2:22:DF:38:A8:98:EB:16:2C:0D:81:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw9-mftNZUTyIt84qJjrFiwNgY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/962ec5-38c7-4790-8962-0df566ea64dd/1/bDZXb-wni-kUb0uCElRQ0FXuNu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/962ec5-38c7-4790-8962-0df566ea64dd/1/nw9-mftNZUTyIt84qJjrFiwNgY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.158.0/24
Signature Algorithm: sha256WithRSAEncryption
32:8c:13:49:98:45:ab:2a:d2:da:3a:5f:9a:9d:54:f4:b6:da:
06:73:75:ec:1c:a3:af:19:5f:86:24:66:7d:ec:02:6b:8f:b5:
77:a4:7b:b2:9c:02:db:30:82:7f:04:be:e0:22:80:53:30:9e:
5e:95:4c:9b:02:65:c8:70:5d:1d:0d:c6:ee:cf:41:e7:26:42:
8a:ce:6b:6a:d1:a4:31:5f:8b:41:a9:b9:69:13:71:99:6f:8a:
27:8c:d2:42:f2:00:cf:c6:dc:58:5e:30:c8:ed:a5:9c:b9:4e:
f7:3c:34:9e:fe:0f:9d:2e:fb:b2:51:86:c7:78:e6:bd:dd:58:
6b:d2:03:5d:3a:cd:ae:42:dd:6c:71:52:56:50:62:7e:4c:2a:
c3:5b:8c:89:b9:9a:46:8d:55:ec:9f:6f:d7:8b:91:41:fd:db:
3d:b4:a4:34:cb:57:38:c2:a1:94:d4:82:2a:73:cf:bf:a1:8a:
6a:b9:2f:8a:22:ba:66:8c:00:8c:77:fa:28:c8:97:72:8d:17:
f9:0d:f9:86:86:3e:80:72:38:46:83:9a:5e:5b:fe:7e:60:f6:
f5:73:ed:ce:13:c2:95:b6:79:78:1f:d1:25:36:2c:62:6a:d4:
a5:e2:2b:dc:8f:da:d8:c4:aa:18:3f:41:be:82:2f:78:b6:4f:
90:9a:da:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:09 2024 by rpki-client on console-fra.rpki-client.org