Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/UQ4kX0OZKTH6juHtTtLagf1GkO8.roa
File: UQ4kX0OZKTH6juHtTtLagf1GkO8.roa (raw, json)
Hash identifier: jHKkC89lz8JEECnfYoGVMGy5mB9Kha29zm9teE/ErqU=
Subject key identifier: 51:0E:24:5F:43:99:29:31:FA:8E:E1:ED:4E:D2:DA:81:FD:46:90:EF
Certificate issuer: /CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Certificate serial: 37A354
Authority key identifier: 3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/UQ4kX0OZKTH6juHtTtLagf1GkO8.roa
Signing time: Sat 01 Jan 2022 02:56:05 +0000
ROA not before: Sat 01 Jan 2022 02:56:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50097
IP address blocks: 193.104.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3646292 (0x37a354)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Validity
Not Before: Jan 1 02:56:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=510e245f43992931fa8ee1ed4ed2da81fd4690ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f7:7c:b0:47:bb:c2:75:99:d0:69:73:d6:25:
47:b6:a2:2f:3d:fa:90:c7:5b:f0:13:a5:e7:08:9a:
54:71:40:71:6c:e9:92:42:af:7b:b0:64:b7:76:56:
f9:73:85:96:00:e3:72:e4:69:5f:5b:c0:eb:88:f5:
e8:60:95:c2:35:a9:6e:47:d9:1e:c9:cd:ae:74:13:
e1:14:90:d2:14:79:2e:21:a7:c7:98:01:3b:e9:26:
1b:11:4d:2b:79:9d:5c:10:e7:66:57:03:20:4a:06:
a3:93:29:19:e8:2d:99:95:76:aa:29:e5:f7:8a:f8:
16:8a:38:e4:20:36:c2:48:87:0a:52:ab:23:cf:43:
f2:7f:7d:c3:4f:f8:45:e9:7b:72:95:38:c1:8c:9f:
8f:d6:dd:79:9a:c9:a0:a4:47:ff:65:48:dc:fc:37:
96:63:9d:a2:32:11:09:29:4a:f8:6e:01:f0:8e:c0:
80:2b:be:d0:61:80:f7:65:19:ce:a5:99:d3:ac:ca:
d1:dd:25:61:29:66:43:6a:18:ea:36:c2:6b:b8:19:
ec:ee:6b:14:c2:7b:9d:2a:29:e9:52:fb:6f:99:0a:
58:71:b8:d9:c0:31:98:26:49:4b:b7:2d:e9:b5:ba:
8f:30:18:d8:0a:f2:24:fa:5e:cc:6c:2d:4b:4e:4f:
cb:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0E:24:5F:43:99:29:31:FA:8E:E1:ED:4E:D2:DA:81:FD:46:90:EF
X509v3 Authority Key Identifier:
keyid:3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/UQ4kX0OZKTH6juHtTtLagf1GkO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.17.0/24
Signature Algorithm: sha256WithRSAEncryption
59:4f:e7:64:24:9b:ae:65:41:71:a0:ab:de:8f:7e:58:78:15:
34:ba:29:b9:ce:9f:c8:53:d5:d3:d2:69:8b:83:29:14:d0:0c:
c0:e7:9e:ce:a4:70:6b:02:8e:47:81:e7:ae:b4:63:cd:2c:4a:
3c:43:c2:13:9e:ac:e4:37:d8:15:64:71:ff:11:8f:d9:e8:7f:
f6:8a:5e:35:4c:03:7e:29:ed:92:5a:2b:76:f7:2d:40:0f:10:
2a:7e:23:88:20:e1:36:63:00:d1:c0:23:bf:fb:6e:d6:33:0b:
d5:4e:10:d8:0e:6d:57:d2:15:84:9c:7e:20:2b:68:3c:aa:b7:
25:aa:de:6e:66:ac:66:56:5b:c3:17:a8:06:43:35:b1:fe:4e:
a4:46:6f:35:22:ed:46:2f:68:11:ce:54:08:31:60:84:b3:44:
cb:51:04:60:9b:b4:22:d3:d8:c9:cf:3a:94:87:cf:d9:1c:cf:
c1:c9:3b:e1:87:e9:1b:b0:3e:22:91:14:37:68:49:0d:2e:ec:
3b:06:d0:c6:55:d1:9b:c3:3f:3a:9a:10:bf:1a:9f:45:a8:62:
b4:a3:db:4a:d9:70:c6:9d:0b:85:07:8a:8b:2f:9e:7e:14:80:
f2:52:91:77:57:a7:63:86:7a:b5:f5:a1:16:a8:2c:e9:5a:01:
5b:2d:af:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:24 2024 by rpki-client on console-fra.rpki-client.org