Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/11592e-3296-48c6-a4d4-8708f697e669/1/DvriI4KMih8bw6zkbDZtdGcsutk.roa
File: DvriI4KMih8bw6zkbDZtdGcsutk.roa (raw, json)
Hash identifier: XmhQoG+9NGTJemV3kdoW3ykBMrTgih8V/G95cv/muMM=
Subject key identifier: 0E:FA:E2:23:82:8C:8A:1F:1B:C3:AC:E4:6C:36:6D:74:67:2C:BA:D9
Certificate issuer: /CN=9748fcd3ceecdb8e04a524af9674cb58803ff668
Certificate serial: 0BE42BAF
Authority key identifier: 97:48:FC:D3:CE:EC:DB:8E:04:A5:24:AF:96:74:CB:58:80:3F:F6:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0j8087s244EpSSvlnTLWIA_9mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/11592e-3296-48c6-a4d4-8708f697e669/1/DvriI4KMih8bw6zkbDZtdGcsutk.roa
Signing time: Sat 01 Jan 2022 04:58:23 +0000
ROA not before: Sat 01 Jan 2022 04:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202499
IP address blocks: 193.142.188.0/22 maxlen: 24
2a0c:9b40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199502767 (0xbe42baf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9748fcd3ceecdb8e04a524af9674cb58803ff668
Validity
Not Before: Jan 1 04:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0efae223828c8a1f1bc3ace46c366d74672cbad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b7:c1:31:1d:17:6b:5e:d9:73:ad:ae:51:22:
15:04:bb:a8:9c:e8:f6:f0:05:00:f1:ad:1b:87:fd:
7f:97:26:5c:d5:9c:86:cb:71:8c:77:2d:c5:8b:2a:
8d:79:44:ab:93:f7:93:8c:47:93:de:70:78:96:95:
a9:e5:01:5e:4f:54:c1:19:0e:9c:7a:00:c2:83:eb:
0f:7c:9f:b7:6c:4c:c4:f3:64:2f:60:af:27:ba:1c:
d9:f0:97:d0:c3:2d:8b:d2:65:95:ce:32:5f:66:54:
c1:47:ac:b7:36:b4:93:fc:e0:94:62:0f:47:30:0e:
23:81:b4:0e:ed:ef:e0:79:f0:f6:55:30:fd:7f:a1:
c6:87:8b:50:ec:98:6a:85:0f:0a:3f:fe:e0:62:21:
41:1a:63:0f:f5:8f:44:2d:52:43:aa:0b:38:d0:1d:
24:31:4c:f2:9c:da:1d:de:70:2a:51:05:dc:44:b3:
c7:96:fb:67:a7:53:6c:a6:fe:3f:23:b2:f9:06:2c:
84:51:49:1e:6e:52:80:dd:e9:f8:6f:7a:8e:f8:ff:
31:de:ac:de:57:68:7b:86:aa:19:0b:f9:cd:b8:21:
1e:97:86:53:dd:c0:9f:9a:7a:25:4c:6a:88:1c:10:
f4:ac:ba:bd:95:05:96:24:10:8f:5d:d5:7a:e6:5a:
23:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FA:E2:23:82:8C:8A:1F:1B:C3:AC:E4:6C:36:6D:74:67:2C:BA:D9
X509v3 Authority Key Identifier:
keyid:97:48:FC:D3:CE:EC:DB:8E:04:A5:24:AF:96:74:CB:58:80:3F:F6:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0j8087s244EpSSvlnTLWIA_9mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/11592e-3296-48c6-a4d4-8708f697e669/1/DvriI4KMih8bw6zkbDZtdGcsutk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/11592e-3296-48c6-a4d4-8708f697e669/1/l0j8087s244EpSSvlnTLWIA_9mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.188.0/22
IPv6:
2a0c:9b40::/29
Signature Algorithm: sha256WithRSAEncryption
41:10:17:18:f2:45:48:c7:cc:d4:53:00:56:4f:b3:99:38:d5:
aa:76:40:23:03:1b:05:35:45:8d:21:4f:fc:84:24:e3:0f:81:
57:ca:95:e9:2a:a0:20:ff:99:60:12:f6:b1:ea:1c:1a:68:80:
46:5b:58:c2:44:19:f9:88:78:12:23:86:ee:7c:79:6f:4f:1d:
44:70:48:57:9f:55:41:d0:08:78:3a:67:93:f9:2b:52:89:79:
43:1c:7e:7a:cb:1b:a6:52:54:99:dc:aa:d9:8a:40:3b:26:48:
06:ac:1c:28:1d:da:14:00:fd:7a:43:0f:f8:31:d4:2f:c7:6f:
7f:dd:a2:02:2d:f4:83:18:e8:ca:18:38:fb:d7:33:28:0d:2e:
02:01:da:6f:73:91:90:3f:78:95:eb:82:ff:30:9e:a8:35:e3:
c4:d2:d7:58:35:bb:a2:79:d8:d2:2a:79:27:23:17:33:1f:39:
bc:9f:be:31:f0:9b:cd:4b:ab:aa:86:28:23:1f:eb:4e:08:9f:
c2:65:46:fe:12:25:5c:d3:1e:e2:a4:80:68:7d:97:51:ae:df:
5f:14:34:76:7b:a2:6e:d4:ea:05:ad:1c:6e:b1:a3:3d:a4:bf:
7d:b2:94:1f:0f:8c:55:aa:44:58:78:48:ac:a2:70:80:42:0c:
2d:18:56:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:34 2024 by rpki-client on console-ams.rpki-client.org