Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/b9ed6c-e8c5-431e-b188-f5200f549377/1/aVczD2g-43VhnMaJinsm4HbTB0M.roa
File: aVczD2g-43VhnMaJinsm4HbTB0M.roa (raw, json)
Hash identifier: kMgBzGmmLsnneOUk4NtzujX0cOQOitXe4KjQlJEqs9E=
Subject key identifier: 69:57:33:0F:68:3E:E3:75:61:9C:C6:89:8A:7B:26:E0:76:D3:07:43
Certificate issuer: /CN=fe0c9f30e3b46d50b8d1bf79b9d1db84f25134ba
Certificate serial: 42A16F
Authority key identifier: FE:0C:9F:30:E3:B4:6D:50:B8:D1:BF:79:B9:D1:DB:84:F2:51:34:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_gyfMOO0bVC40b95udHbhPJRNLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/b9ed6c-e8c5-431e-b188-f5200f549377/1/aVczD2g-43VhnMaJinsm4HbTB0M.roa
Signing time: Mon 25 Apr 2022 09:31:36 +0000
ROA not before: Mon 25 Apr 2022 09:31:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12874
IP address blocks: 193.26.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4366703 (0x42a16f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe0c9f30e3b46d50b8d1bf79b9d1db84f25134ba
Validity
Not Before: Apr 25 09:31:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6957330f683ee375619cc6898a7b26e076d30743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:74:80:16:9e:ee:cf:20:ae:4d:fe:05:1a:fb:
b0:8d:a6:8a:71:75:19:b2:2b:4f:27:e2:f1:55:20:
55:6f:64:76:46:32:ed:6e:ce:c9:e4:4c:1c:25:66:
80:01:d3:c9:a2:15:bf:a4:9d:4a:2c:24:ea:c3:7f:
cb:20:c5:7b:e9:10:0c:0c:73:b4:1e:69:ad:8c:1e:
f3:31:32:43:09:a6:67:12:02:1c:b1:90:5f:71:fd:
74:d8:77:81:69:83:9a:5e:4c:ed:18:4a:d8:d6:48:
42:3a:21:de:57:fb:b7:3b:f0:9c:60:aa:eb:7c:c7:
5a:07:c2:b4:48:f2:e5:9a:bb:46:31:4b:df:30:c0:
d1:55:7e:ea:b9:d0:08:0e:69:85:34:a1:26:b7:31:
b1:af:b2:a2:24:e2:6d:84:d8:0d:81:22:bd:a4:4e:
74:e7:8d:cf:4d:1d:bb:2c:8e:09:b8:8a:7d:a7:0b:
25:d2:ad:a5:04:cc:5c:13:bd:03:3e:01:65:ee:19:
04:0a:d6:a9:19:01:49:ba:d6:54:e5:33:e0:b3:67:
a9:bb:fd:60:61:7b:87:bd:a2:db:fe:70:ca:72:1a:
bb:ad:73:3b:29:b0:3c:65:3d:94:41:18:04:73:1c:
47:c1:8e:2e:b4:70:9b:40:81:21:1c:2a:e7:58:dc:
9d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:57:33:0F:68:3E:E3:75:61:9C:C6:89:8A:7B:26:E0:76:D3:07:43
X509v3 Authority Key Identifier:
keyid:FE:0C:9F:30:E3:B4:6D:50:B8:D1:BF:79:B9:D1:DB:84:F2:51:34:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_gyfMOO0bVC40b95udHbhPJRNLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/b9ed6c-e8c5-431e-b188-f5200f549377/1/aVczD2g-43VhnMaJinsm4HbTB0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/b9ed6c-e8c5-431e-b188-f5200f549377/1/_gyfMOO0bVC40b95udHbhPJRNLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.22.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:9d:da:da:e3:3c:7a:23:8b:92:ed:38:72:1d:db:61:2f:3c:
ae:dd:70:01:8d:ab:fb:07:23:6d:36:3c:22:f8:50:b8:0f:7b:
3a:67:5b:06:b9:36:06:04:93:9e:4a:72:70:ca:72:c1:61:51:
1a:2c:f1:88:2f:9c:00:40:72:5d:65:41:ed:6e:1a:d8:83:19:
4f:2c:24:1d:89:b1:b0:ec:76:e0:34:06:5d:60:65:28:10:43:
70:62:b5:08:0e:3b:98:55:8d:89:98:0d:a7:e5:98:bf:36:6a:
cb:d2:70:39:8a:a2:c1:55:66:78:10:dd:19:f5:d7:b2:42:0a:
33:4c:25:3c:20:d3:70:82:d1:61:29:01:8d:e7:88:a8:88:e5:
c0:20:26:7e:e8:14:b9:92:74:fd:73:4d:31:e1:1e:60:a4:02:
6e:97:3e:5f:40:51:c1:7b:c9:ba:4c:3b:24:e1:eb:ed:7b:81:
ab:45:6a:ad:04:87:93:49:20:6a:65:76:48:ac:a9:55:46:d3:
05:2e:e5:75:1d:a7:3d:f6:b8:31:58:3b:36:4e:b2:7e:f2:71:
e0:ee:70:54:7e:8e:00:06:f9:7a:4b:34:97:3f:fc:4e:a1:2f:
65:de:ce:f5:ab:7c:48:e5:72:69:fa:32:d0:b1:f3:72:95:a5:
79:ba:cb:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:12 2024 by rpki-client on console-ams.rpki-client.org