Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/gx1e8PtNxDhx8cKA4Ve6kP_OIYg.roa
File: gx1e8PtNxDhx8cKA4Ve6kP_OIYg.roa (raw, json)
Hash identifier: +aj4RM38lracSjaRfNGAbzHYbWIlApK3DMAisTrczEs=
Subject key identifier: 83:1D:5E:F0:FB:4D:C4:38:71:F1:C2:80:E1:57:BA:90:FF:CE:21:88
Certificate issuer: /CN=4d29282d47373f942f0ad8b91ed94093b66ea3af
Certificate serial: 058268E7
Authority key identifier: 4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/gx1e8PtNxDhx8cKA4Ve6kP_OIYg.roa
Signing time: Sat 01 Jan 2022 15:58:50 +0000
ROA not before: Sat 01 Jan 2022 15:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207488
IP address blocks: 193.29.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92432615 (0x58268e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d29282d47373f942f0ad8b91ed94093b66ea3af
Validity
Not Before: Jan 1 15:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=831d5ef0fb4dc43871f1c280e157ba90ffce2188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:65:b0:48:1d:78:05:4d:70:dc:2d:4a:f5:2b:
1c:56:82:ab:80:c5:9f:d2:7a:8b:aa:96:35:0e:41:
a7:47:61:51:71:91:57:7e:9f:23:5a:85:2d:ed:e4:
9c:75:fb:63:26:5b:72:57:00:0e:3c:93:52:61:6f:
6e:1a:db:60:7c:39:d8:35:b0:a9:4a:fb:1c:14:1a:
a9:c4:95:5f:8a:2a:7d:ee:fc:46:e1:50:bb:5a:9b:
e7:a8:87:d0:94:33:dd:19:1c:17:6a:df:f5:4c:b2:
0c:66:8c:21:b2:20:cb:64:01:c7:0b:c3:b7:5e:a1:
a5:61:7c:10:88:c7:8e:e7:6b:f5:23:09:64:1e:e8:
f8:c4:ea:00:08:02:85:e0:cf:26:44:97:9b:50:73:
d0:b9:fa:78:b1:59:ad:59:d8:64:53:4c:a7:15:91:
7d:98:df:43:f5:7c:1d:a6:39:08:76:4c:c6:da:d6:
60:89:e4:31:38:8a:bb:60:5a:5b:39:ac:77:a1:fb:
ee:84:42:ea:a0:02:62:0c:4a:94:f3:b1:fb:ff:1f:
9e:5d:92:6d:4c:07:dd:41:45:1a:41:6f:5e:24:37:
fd:ca:ac:b4:67:ff:89:be:15:96:36:52:e9:9a:96:
ea:3c:7e:78:5b:d7:6e:de:99:0a:92:33:c3:97:dd:
38:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:1D:5E:F0:FB:4D:C4:38:71:F1:C2:80:E1:57:BA:90:FF:CE:21:88
X509v3 Authority Key Identifier:
keyid:4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/gx1e8PtNxDhx8cKA4Ve6kP_OIYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.203.0/24
Signature Algorithm: sha256WithRSAEncryption
35:bb:23:32:d0:60:84:09:4a:cc:af:6a:56:3e:19:0a:56:46:
a9:7a:a1:ac:7c:23:cc:f1:26:b6:b9:21:f9:45:0d:5a:a1:f0:
3c:22:14:ed:22:10:b1:e5:c1:3f:7f:a6:cf:04:7d:33:0e:82:
48:d1:15:69:42:0c:14:03:98:c6:89:e5:11:3e:b9:29:55:10:
41:dc:27:3a:48:38:83:74:e0:75:d7:05:36:7a:3f:07:e3:14:
da:48:bb:af:cc:80:f4:75:92:1c:a2:e6:30:ed:cc:c2:a6:c3:
a0:e3:e1:0d:73:02:d8:d9:95:e3:7a:df:9d:36:ea:2a:41:f3:
55:b5:b2:7f:c6:e5:6f:27:da:69:2c:d1:30:ca:cb:d8:da:d9:
e5:27:92:49:17:ba:9e:f5:41:93:e3:75:ef:25:84:ab:6b:62:
af:54:5e:0f:3c:3a:75:ef:20:4b:b4:63:f6:fc:6f:56:1b:fd:
94:16:b3:8d:c7:80:f8:f6:4a:d6:33:ca:79:11:40:88:b4:3b:
18:84:b7:5c:96:56:1e:3d:16:c9:81:36:72:29:0b:e2:8f:28:
cd:b8:7c:91:21:6e:f4:ad:2d:9b:62:7b:95:09:02:ee:63:2e:
80:a3:b3:55:e2:8c:8e:c7:f2:79:22:12:e8:23:56:d0:54:41:
90:6f:d3:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:29 2024 by rpki-client on console-fra.rpki-client.org