Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/dMyGEZq6ZR94lbA85r26fwJDOGY.roa
File: dMyGEZq6ZR94lbA85r26fwJDOGY.roa (raw, json)
Hash identifier: UGh55NsPB7/iMab6Cv8al32AsCcBfpjqrnR37TrAs4o=
Subject key identifier: 74:CC:86:11:9A:BA:65:1F:78:95:B0:3C:E6:BD:BA:7F:02:43:38:66
Certificate issuer: /CN=91189e6edf53e40672c9b5f1f3519728291ec2ee
Certificate serial: 0176E7
Authority key identifier: 91:18:9E:6E:DF:53:E4:06:72:C9:B5:F1:F3:51:97:28:29:1E:C2:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRiebt9T5AZyybXx81GXKCkewu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/dMyGEZq6ZR94lbA85r26fwJDOGY.roa
Signing time: Fri 03 Jun 2022 13:12:20 +0000
ROA not before: Fri 03 Jun 2022 13:12:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.178.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95975 (0x176e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91189e6edf53e40672c9b5f1f3519728291ec2ee
Validity
Not Before: Jun 3 13:12:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74cc86119aba651f7895b03ce6bdba7f02433866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:98:58:ff:7f:d8:b6:8f:6e:86:98:ac:80:8e:
2b:63:84:71:d3:92:02:13:bb:dd:95:e8:19:8d:4a:
30:b1:2e:4f:20:38:6a:48:da:62:69:6b:dc:75:f1:
90:b9:e9:1f:f4:de:fd:ac:75:f9:d8:e6:fa:d0:7c:
fa:fb:cd:15:17:33:b0:f0:1c:6c:5b:af:81:79:d2:
e5:18:0c:1b:39:b1:b6:f5:fc:ee:bb:80:b4:e7:8c:
c1:a1:39:03:9a:31:f9:6a:7e:98:96:10:ad:1e:9d:
6b:39:97:1c:4d:19:7e:af:1e:38:3a:d2:09:49:e0:
65:2c:5e:e3:dd:88:b2:ec:bc:52:b7:28:c1:69:38:
37:32:5d:a7:f4:ce:8a:44:ff:32:94:4b:90:fd:8c:
28:84:f4:11:17:47:67:6a:11:f9:d6:4f:b1:2f:79:
c6:ea:b0:3e:b5:e8:50:f4:28:b2:98:16:77:d0:ea:
11:82:64:25:de:0e:e9:4b:06:22:61:f0:81:ca:b7:
ef:6c:ef:94:5a:64:95:66:c4:b1:e0:b3:ef:17:fd:
d2:bd:e5:de:78:c6:b8:a5:da:9b:31:ef:dd:36:c8:
06:08:d7:1e:c0:6a:9e:d3:62:33:bb:c5:76:af:ae:
3b:23:8a:e4:92:3f:f0:84:39:93:4e:39:73:f0:e8:
ff:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CC:86:11:9A:BA:65:1F:78:95:B0:3C:E6:BD:BA:7F:02:43:38:66
X509v3 Authority Key Identifier:
keyid:91:18:9E:6E:DF:53:E4:06:72:C9:B5:F1:F3:51:97:28:29:1E:C2:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRiebt9T5AZyybXx81GXKCkewu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/dMyGEZq6ZR94lbA85r26fwJDOGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/kRiebt9T5AZyybXx81GXKCkewu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.134.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:2e:ef:92:ae:b3:1e:c4:0d:29:e3:29:a9:b7:6c:d3:ab:e0:
38:28:b7:a8:0f:f1:9f:d6:c6:ae:ef:b6:1e:85:a9:4b:59:d7:
23:9b:30:b0:c9:10:74:85:1a:60:c7:6d:f2:c9:55:6a:c5:fb:
87:8e:54:32:97:6d:a3:20:ec:47:0b:dc:28:9e:61:40:16:01:
82:a4:cc:6a:1f:89:81:a4:c4:f2:cf:29:41:10:00:7e:8b:78:
82:19:70:81:cd:b5:e6:54:6a:2c:81:cd:f0:85:76:bc:58:07:
ee:01:77:b1:5d:76:54:b6:00:b4:9e:d5:86:9c:c8:e5:75:ae:
17:f8:79:3d:a0:f4:5b:74:6b:ca:84:c3:60:dd:84:96:1f:61:
a2:5f:8c:c4:31:a5:7b:b4:13:40:de:d2:bb:b8:8e:c7:72:4a:
71:1b:a1:a6:8b:cd:1f:41:0a:dc:77:6f:ca:8b:fa:fc:ed:fd:
c2:00:14:2d:06:37:03:f4:94:1d:0b:ba:30:5a:bf:8a:be:94:
a9:59:54:fa:a3:fe:02:78:a5:2b:8b:50:e3:03:a6:16:a6:3b:
cf:f3:16:e9:ae:41:18:a3:35:0a:1f:09:ed:d0:3d:91:f7:06:
08:cf:89:60:43:8c:4e:e7:bf:ea:f1:57:eb:31:75:4c:6f:9d:
39:2e:9b:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:28 2024 by rpki-client on console-ams.rpki-client.org