Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8a5353-14f1-40f6-a482-aee5927b4dd2/1/4MqFUJPzDW5xt3PzzgfJMK7Im8g.roa
File: 4MqFUJPzDW5xt3PzzgfJMK7Im8g.roa (raw, json)
Hash identifier: QwI0B3kcOIaVIpFaTgNS+kVqt/gzoOnKToP3mXBJ41A=
Subject key identifier: E0:CA:85:50:93:F3:0D:6E:71:B7:73:F3:CE:07:C9:30:AE:C8:9B:C8
Certificate issuer: /CN=2d5894923bb002a434128810607dfb526722004f
Certificate serial: 07563E30
Authority key identifier: 2D:58:94:92:3B:B0:02:A4:34:12:88:10:60:7D:FB:52:67:22:00:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LViUkjuwAqQ0EogQYH37UmciAE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/8a5353-14f1-40f6-a482-aee5927b4dd2/1/4MqFUJPzDW5xt3PzzgfJMK7Im8g.roa
Signing time: Sat 01 Jan 2022 03:54:40 +0000
ROA not before: Sat 01 Jan 2022 03:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41863
IP address blocks: 193.34.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123092528 (0x7563e30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d5894923bb002a434128810607dfb526722004f
Validity
Not Before: Jan 1 03:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0ca855093f30d6e71b773f3ce07c930aec89bc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5d:d5:be:80:71:cb:5f:40:c1:86:20:d0:78:
93:07:c8:7c:c3:9b:fd:b5:92:4f:f8:09:8f:4e:1e:
d7:bc:12:a3:1b:8e:3e:96:9a:e9:ef:68:67:18:79:
e6:47:93:82:83:78:52:ee:78:4f:2b:63:0b:68:90:
ce:77:4e:e5:53:07:a4:cd:4b:04:cf:ee:8a:ab:26:
32:e0:db:cf:15:49:f5:e9:aa:80:92:75:be:9e:d3:
f3:c2:bc:1c:74:d5:ee:3e:ff:fd:b5:a8:0c:b8:7d:
ce:1e:a5:c6:97:e6:1f:62:c7:99:13:af:7a:7b:e6:
a2:c6:cd:33:71:c4:b0:9b:a4:40:0d:20:80:c9:61:
cf:95:25:d8:0a:5a:5a:d8:8a:cf:68:3d:91:6c:de:
a0:a7:49:e5:91:54:8c:f7:93:91:f7:e0:90:a3:2b:
3c:ee:84:f9:1b:8b:69:00:cd:c5:fd:e2:6c:c4:65:
e5:4b:bf:e2:0f:84:ed:9a:b5:51:d2:f3:30:04:28:
ed:03:3e:73:58:f9:64:94:74:6a:ef:2d:a4:3f:8c:
4b:da:c7:33:cb:4a:14:0b:59:6a:28:a3:5f:63:9d:
30:77:a2:ca:a5:6e:e2:a9:9b:16:cf:96:5d:61:d4:
84:92:de:3c:89:91:f0:06:94:a7:38:2e:5e:44:b5:
74:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:CA:85:50:93:F3:0D:6E:71:B7:73:F3:CE:07:C9:30:AE:C8:9B:C8
X509v3 Authority Key Identifier:
keyid:2D:58:94:92:3B:B0:02:A4:34:12:88:10:60:7D:FB:52:67:22:00:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LViUkjuwAqQ0EogQYH37UmciAE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8a5353-14f1-40f6-a482-aee5927b4dd2/1/4MqFUJPzDW5xt3PzzgfJMK7Im8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8a5353-14f1-40f6-a482-aee5927b4dd2/1/LViUkjuwAqQ0EogQYH37UmciAE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.16.0/22
Signature Algorithm: sha256WithRSAEncryption
38:ce:de:d5:af:87:3a:11:a5:8d:e2:2a:62:93:7f:d9:a1:e6:
8f:18:b5:22:fc:97:fd:41:6f:16:4c:5a:58:dd:62:7b:4a:d2:
34:ff:96:c9:89:fd:12:b1:44:fe:00:17:eb:c4:7c:bf:1c:65:
30:2d:62:37:3b:f4:50:dd:70:0d:3f:4b:12:a9:62:92:c9:5e:
c9:df:90:af:be:e5:66:61:6e:5f:82:bd:da:e2:0f:22:0a:b2:
62:67:17:44:f6:54:f1:95:48:bc:ac:11:02:35:f1:72:6a:66:
dd:cc:ce:20:0d:35:6a:be:61:22:3d:1d:38:36:6b:42:1f:b8:
3e:29:22:cc:87:e7:b6:1b:9f:92:82:13:d1:62:4a:d0:de:4e:
f4:f1:98:c1:03:c7:20:33:a4:fe:d2:d4:54:8d:49:fd:6e:dd:
b2:41:d9:31:4e:f9:32:0c:b3:d9:dd:be:e5:42:1f:e4:51:36:
6f:82:5c:67:28:28:c5:2f:82:6d:66:43:36:6b:6c:46:39:f6:
8c:84:ba:2b:55:6c:11:b6:33:9b:bd:6b:c0:b5:4e:c5:ae:a6:
75:a8:e6:40:2a:9a:30:4e:65:6b:b8:5f:da:f8:40:7b:76:20:
71:83:54:5f:44:76:ee:18:0b:87:b0:f1:c8:fa:63:6b:7c:e1:
1c:c8:01:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:39 2023 by rpki-client on console-ams.rpki-client.org