Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/1-SnqehzikQtQb3WgRGh2fjhDIg0.roa
File: 1-SnqehzikQtQb3WgRGh2fjhDIg0.roa (raw, json)
Hash identifier: rzxXJrnQwxehBVhCbz8XvntypxNM8tyjHwq8Vn9Imhk=
Subject key identifier: F9:29:EA:7A:1C:E2:91:0B:50:6F:75:A0:44:68:76:7E:38:43:22:0D
Certificate issuer: /CN=41fc55ee2488fb9401c4b668abac54110ebb8092
Certificate serial: 03A888AA
Authority key identifier: 41:FC:55:EE:24:88:FB:94:01:C4:B6:68:AB:AC:54:11:0E:BB:80:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/1-SnqehzikQtQb3WgRGh2fjhDIg0.roa
Signing time: Sat 01 Jan 2022 14:05:52 +0000
ROA not before: Sat 01 Jan 2022 14:05:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50246
IP address blocks: 193.29.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61376682 (0x3a888aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41fc55ee2488fb9401c4b668abac54110ebb8092
Validity
Not Before: Jan 1 14:05:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f929ea7a1ce2910b506f75a04468767e3843220d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c0:02:fb:f8:36:75:44:6d:66:81:37:5e:26:
6f:db:26:22:e4:9d:d8:82:6c:94:8d:59:bd:df:96:
65:4b:32:44:26:1c:64:d3:03:a1:ad:c9:fe:84:1b:
7a:8c:51:3c:d3:d7:24:2b:af:2d:85:ac:c1:3f:10:
fc:69:07:3d:83:40:f9:2a:73:4f:15:e6:8d:ab:d3:
62:f7:a9:55:70:8d:e6:0d:ae:60:73:19:30:b4:88:
2a:70:53:31:6d:06:7d:d4:a2:24:2d:d6:b0:08:af:
ee:6e:6d:27:cf:6b:3f:cd:29:78:2e:1f:0c:ae:3e:
01:38:4a:66:de:48:76:53:34:00:05:c8:45:49:5d:
0b:89:b3:31:56:24:c3:5f:46:ef:00:ed:61:dd:c2:
b4:ff:d9:54:33:a6:bd:fe:d1:3f:29:a5:7e:1a:4f:
d0:3d:d7:2b:2b:97:3e:e3:6b:ac:68:f1:70:2c:92:
9a:98:bb:c4:0c:f6:e5:63:0f:52:34:83:1b:dc:87:
67:de:0b:cf:de:84:82:84:77:87:12:23:df:ea:84:
fd:b1:94:34:1c:8b:53:7a:1d:1c:ad:e3:f7:9c:f9:
75:04:b6:c8:36:a6:0f:cb:ff:e9:43:24:79:ed:27:
e3:eb:02:70:e7:af:34:40:3c:41:2e:6c:45:f5:87:
de:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:29:EA:7A:1C:E2:91:0B:50:6F:75:A0:44:68:76:7E:38:43:22:0D
X509v3 Authority Key Identifier:
keyid:41:FC:55:EE:24:88:FB:94:01:C4:B6:68:AB:AC:54:11:0E:BB:80:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/1-SnqehzikQtQb3WgRGh2fjhDIg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/QfxV7iSI-5QBxLZoq6xUEQ67gJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.38.0/24
Signature Algorithm: sha256WithRSAEncryption
75:66:b4:73:a0:74:bf:1c:a7:0f:8f:d1:a0:b0:25:2f:3d:7f:
8d:f1:7a:d9:d8:ee:8c:bc:3b:65:3e:a7:47:69:72:a8:a1:84:
77:19:64:da:25:d7:7e:7f:86:b5:e6:6e:34:2d:9b:a8:66:29:
21:94:e5:89:71:31:bc:62:35:d2:30:4e:bf:8e:70:55:d3:5b:
d4:f3:0c:e1:2b:49:43:e7:96:1c:3e:ee:c5:d9:1a:87:41:50:
d0:9c:0d:0d:9a:38:50:78:7a:5f:81:61:ef:30:7b:c2:2f:f2:
89:9f:ee:57:56:a9:0b:58:8e:e8:96:7f:99:73:c0:88:1a:6a:
f8:d0:e8:7a:25:8c:c3:fd:4b:6a:95:5b:3c:6d:d9:a4:f4:7b:
5f:65:99:b0:1f:e5:e4:e1:b4:11:ae:95:86:f7:a9:f8:73:10:
3c:a7:fe:d3:44:c5:00:bc:a7:e4:8e:43:4c:9e:46:2a:11:73:
45:52:53:c4:66:85:cc:d5:ea:b2:a7:5d:1a:59:77:64:16:7c:
e4:6b:cc:bf:dc:ee:d9:be:e9:1a:3c:d1:1a:28:6f:b5:b7:a4:
fe:ea:f4:e6:8d:97:aa:d0:76:75:2a:53:f8:23:c8:23:3b:28:
38:9c:27:ee:07:88:52:f2:f8:65:0b:42:55:c4:9c:db:41:10:
71:f5:97:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org