Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/7bd0e9-abe1-4a74-8955-8a8d4c6918b4/1/_-3hQyX4aAsuDMC6hknZl0Ml1jI.roa
File: _-3hQyX4aAsuDMC6hknZl0Ml1jI.roa (raw, json)
Hash identifier: Q4EjBGizhN0b9OBgPWKLuG075UlWl98qk73JySmz/6Y=
Subject key identifier: FF:ED:E1:43:25:F8:68:0B:2E:0C:C0:BA:86:49:D9:97:43:25:D6:32
Certificate issuer: /CN=8a242e0a7b60cfdeb8e0e03ff9aec33e5ab7d2c8
Certificate serial: 01856287BF2DB0C18A388C36E0FF915EF81F
Authority key identifier: 8A:24:2E:0A:7B:60:CF:DE:B8:E0:E0:3F:F9:AE:C3:3E:5A:B7:D2:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iiQuCntgz9644OA_-a7DPlq30sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/7bd0e9-abe1-4a74-8955-8a8d4c6918b4/1/_-3hQyX4aAsuDMC6hknZl0Ml1jI.roa
Signing time: Fri 30 Dec 2022 10:15:41 +0000
ROA not before: Fri 30 Dec 2022 10:15:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21203
IP address blocks: 193.109.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:87:bf:2d:b0:c1:8a:38:8c:36:e0:ff:91:5e:f8:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a242e0a7b60cfdeb8e0e03ff9aec33e5ab7d2c8
Validity
Not Before: Dec 30 10:15:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffede14325f8680b2e0cc0ba8649d9974325d632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4e:b8:06:32:ac:6e:b0:be:89:9f:85:a4:ae:
ae:de:4b:91:5e:2a:42:c5:ad:ff:24:ad:de:3b:bd:
4e:a3:94:53:02:82:33:e9:ef:cd:49:51:db:33:d5:
a3:2e:ba:fd:8a:75:b9:a8:a0:d0:49:f5:c3:29:6d:
11:55:e8:7a:62:ea:3d:2c:bb:56:28:14:d2:08:2b:
78:85:56:4c:b8:61:dc:aa:3e:1e:74:89:3a:bc:1f:
39:a4:9d:48:11:d7:0c:b9:9d:86:d6:4a:12:67:43:
45:e5:5b:f7:04:b9:61:e3:1c:4d:39:d8:cc:8c:6f:
b5:07:a1:cf:9d:49:37:de:06:83:54:c1:01:af:c2:
80:18:a4:24:f7:51:21:38:57:7d:9b:60:e4:37:ca:
3b:70:ff:31:b2:fe:f8:ca:95:a4:71:4b:c7:51:de:
11:9c:2c:f9:b4:58:54:a3:89:ba:5c:65:7c:a6:da:
ac:cb:84:89:80:3c:d7:07:4e:ed:eb:d7:62:8b:7c:
e6:9a:7a:cd:02:69:69:7b:d8:35:72:f5:7d:d7:9f:
66:95:13:5e:8e:11:51:3f:95:8b:e9:20:38:ef:8a:
67:23:b3:9d:99:0d:77:d7:5f:87:58:b1:47:32:5e:
ae:2f:bc:8a:27:4e:6d:b0:31:77:18:b5:23:1c:78:
3c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:ED:E1:43:25:F8:68:0B:2E:0C:C0:BA:86:49:D9:97:43:25:D6:32
X509v3 Authority Key Identifier:
keyid:8A:24:2E:0A:7B:60:CF:DE:B8:E0:E0:3F:F9:AE:C3:3E:5A:B7:D2:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iiQuCntgz9644OA_-a7DPlq30sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7bd0e9-abe1-4a74-8955-8a8d4c6918b4/1/_-3hQyX4aAsuDMC6hknZl0Ml1jI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7bd0e9-abe1-4a74-8955-8a8d4c6918b4/1/iiQuCntgz9644OA_-a7DPlq30sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.119.0/24
Signature Algorithm: sha256WithRSAEncryption
11:f3:02:f3:b6:ed:65:32:c6:cf:58:67:36:0c:43:ed:b3:33:
34:a5:c2:a3:40:65:e2:67:26:71:e2:c0:83:43:d4:4e:15:fa:
82:b1:2c:bc:52:d5:74:ad:17:69:94:40:2b:73:86:45:f8:14:
fa:a3:fd:f5:9a:96:4e:06:c6:8a:a7:d0:3c:f7:44:12:e9:2b:
89:b9:2b:ce:ce:f7:16:e3:03:1f:a1:e0:58:7b:92:f0:0c:6c:
2a:e8:fa:4e:92:53:1e:e2:81:e1:c7:d9:40:ee:04:0d:d1:59:
89:db:bd:6d:85:93:f3:58:df:0f:c5:52:58:33:84:97:30:e0:
f3:70:d4:64:7d:c2:b2:4f:53:6a:e4:04:32:ed:5b:a6:21:20:
19:7f:c0:d8:ca:5e:fe:0f:ea:ff:4d:bc:8c:c5:60:b9:31:da:
07:04:c5:4c:71:1e:aa:02:4f:91:0c:a8:da:b9:1c:a2:64:d6:
50:1f:c4:0f:b4:a1:41:3a:e2:4b:81:f4:56:48:3f:a5:55:86:
ed:2f:cf:a6:88:48:fc:ad:93:4c:ee:26:ee:ba:fa:5a:3b:a0:
91:b8:59:6b:ca:20:05:a6:ee:2e:99:31:9d:fd:d1:7f:b8:04:
87:df:b3:c5:97:80:44:b0:a6:93:dd:52:4c:29:d7:d4:c7:9f:
07:2c:a5:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:42 2024 by rpki-client on console-ams.rpki-client.org