Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/cbxN9E_PlTgRnU8q-I9OAuBOjt0.roa
File: cbxN9E_PlTgRnU8q-I9OAuBOjt0.roa (raw, json)
Hash identifier: b7kC+oa+zY+QpUazaLuf/TepbYZ8scTMiFT5FI+n1S8=
Subject key identifier: 71:BC:4D:F4:4F:CF:95:38:11:9D:4F:2A:F8:8F:4E:02:E0:4E:8E:DD
Certificate issuer: /CN=7b6d28404044239ef58242f210e0b16667eb40d0
Certificate serial: 06A18906
Authority key identifier: 7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/cbxN9E_PlTgRnU8q-I9OAuBOjt0.roa
Signing time: Sat 01 Jan 2022 12:55:32 +0000
ROA not before: Sat 01 Jan 2022 12:55:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 559
IP address blocks: 193.5.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111249670 (0x6a18906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b6d28404044239ef58242f210e0b16667eb40d0
Validity
Not Before: Jan 1 12:55:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71bc4df44fcf9538119d4f2af88f4e02e04e8edd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:52:17:9e:04:e0:f1:29:ab:a4:89:6f:2b:d5:
cd:8b:68:e2:db:f6:2a:8b:c3:5b:6c:e4:3f:8e:4d:
02:4b:10:6a:af:ce:d6:73:42:1a:f8:e2:f5:29:69:
27:61:b7:e3:50:4d:81:8e:6f:17:60:82:fc:b3:89:
8b:9e:f1:a5:79:d9:cb:4a:71:c2:cf:a5:fd:9f:1e:
fe:2a:02:0c:0d:ac:49:fb:f1:d2:71:63:9c:cb:07:
1f:23:e7:23:05:7d:3d:29:96:cd:d5:65:02:32:6e:
8c:f8:ec:41:b1:a0:59:17:66:0b:0d:37:68:d7:ef:
84:d7:90:40:b3:23:50:82:c1:4d:b4:86:50:0a:1f:
a3:f7:65:f1:f3:ae:ae:da:d3:e2:95:ea:ac:5b:0b:
33:31:5b:7a:2c:31:dc:bb:4d:61:d6:75:0e:36:0b:
f4:68:eb:e9:d1:25:44:66:49:7b:fa:3f:1a:4b:10:
3e:d8:5b:06:c6:3f:1a:67:7d:07:b2:f4:4e:60:d0:
e3:1e:99:d1:49:2d:f4:13:26:39:45:32:2b:81:04:
8c:5b:a8:1a:cc:75:e6:46:01:23:e3:4b:2a:b0:5a:
88:fa:c7:65:58:ff:e3:96:d7:52:86:15:54:3d:9e:
2e:db:b4:66:2e:4b:f5:54:4e:ca:cd:84:92:79:2e:
a0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:BC:4D:F4:4F:CF:95:38:11:9D:4F:2A:F8:8F:4E:02:E0:4E:8E:DD
X509v3 Authority Key Identifier:
keyid:7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/cbxN9E_PlTgRnU8q-I9OAuBOjt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.53.0/24
Signature Algorithm: sha256WithRSAEncryption
24:46:e5:fd:85:fb:34:fe:74:98:2c:23:c6:78:45:e1:fd:ad:
ee:11:76:67:cb:eb:06:a6:02:82:f9:8b:17:55:9c:3e:aa:0e:
e9:bb:99:ed:08:fc:df:45:13:52:67:5a:0d:1c:d1:f8:9d:cb:
3c:90:0c:b5:1e:84:bb:8e:18:3b:59:10:39:ab:fd:1f:78:e0:
c9:d6:54:3e:b9:b5:db:85:5a:d8:a7:24:b8:d7:84:09:2e:4c:
f6:09:d2:62:38:22:ee:3d:8f:ba:80:17:c5:e1:95:7f:92:d6:
a3:e1:49:cd:8c:6d:bc:9b:d6:9a:c5:eb:43:1e:0b:cd:d2:ac:
86:64:9f:f2:90:64:80:62:60:db:b8:33:c4:ef:ef:73:15:9c:
73:b3:0e:6e:87:3f:53:4d:2b:d6:6b:b6:aa:8b:6f:fc:4b:ec:
d8:b3:f2:47:de:32:51:ec:3c:4d:9c:91:53:eb:e5:74:47:8e:
17:62:bc:46:cf:90:c2:0b:a6:30:ed:f7:c4:6d:02:cd:2e:41:
20:0f:0e:f9:16:91:c6:5e:ef:b9:af:fd:7e:ed:f4:5c:1c:3c:
2e:b3:39:49:6d:48:68:53:c4:14:88:9c:62:08:94:d7:ac:d1:
d3:1a:db:d6:6f:e4:8b:7c:6e:e1:f7:99:65:aa:a3:92:9a:c1:
19:5a:98:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:22 2024 by rpki-client on console-ams.rpki-client.org