Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/_ogdftyh7Z4I44NId_c2Epd-Moc.roa
File: _ogdftyh7Z4I44NId_c2Epd-Moc.roa (raw, json)
Hash identifier: i8IZKTzVoPaDgevOQ7cTwmgDbtroSeisG4tj2jUFYp8=
Subject key identifier: FE:88:1D:7E:DC:A1:ED:9E:08:E3:83:48:77:F7:36:12:97:7E:32:87
Certificate issuer: /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial: 026D6D2C
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/_ogdftyh7Z4I44NId_c2Epd-Moc.roa
Signing time: Tue 08 Mar 2022 17:51:34 +0000
ROA not before: Tue 08 Mar 2022 17:51:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16243
IP address blocks: 193.176.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40725804 (0x26d6d2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
Validity
Not Before: Mar 8 17:51:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe881d7edca1ed9e08e3834877f73612977e3287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ce:86:bf:73:92:94:fd:af:97:27:74:c3:08:
9a:f8:d4:22:b1:4d:1c:55:09:0e:c3:82:c3:e1:18:
ae:d7:f9:5c:c3:b9:69:ad:57:c5:50:b7:27:34:55:
d4:c9:24:b9:20:75:63:e4:6e:54:76:46:fc:af:6a:
ea:eb:bb:67:35:7e:bc:04:2b:70:40:e8:11:79:8a:
9c:4a:04:e7:8d:34:c0:fd:59:ea:bc:7e:5f:bf:e8:
af:19:6d:45:94:ae:22:76:dd:37:44:bf:f3:a7:fd:
01:90:a3:3e:d3:e6:68:8e:ac:c2:5b:a0:d7:5b:72:
18:47:8b:fe:14:8b:b0:29:f8:67:22:18:96:17:b9:
03:85:43:a7:18:24:f0:b2:5c:89:25:6a:d8:c3:d3:
38:67:62:e3:62:52:0b:91:fe:86:36:3b:0a:cb:63:
6b:b1:3f:1b:ff:0d:a0:01:b0:6f:97:fe:c0:e4:39:
56:dd:1a:75:e8:ca:a9:fe:4d:fd:67:05:c0:b0:4e:
7b:7f:d9:3d:ac:67:4f:e7:81:07:27:c9:8f:e2:43:
1c:39:9d:3a:ba:40:64:d6:a0:f7:8d:99:b5:ae:aa:
f6:e8:05:16:64:d4:c9:b5:3c:cd:0e:be:c7:2e:b4:
db:f6:e3:c5:50:b2:fb:87:c7:6a:ce:cd:56:22:91:
e3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:88:1D:7E:DC:A1:ED:9E:08:E3:83:48:77:F7:36:12:97:7E:32:87
X509v3 Authority Key Identifier:
keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/_ogdftyh7Z4I44NId_c2Epd-Moc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.5.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:00:e8:ba:80:a0:47:f3:42:24:6d:64:45:76:3a:91:14:e7:
5c:65:9d:29:44:cd:fe:01:e8:cd:64:cc:2a:fc:db:14:ee:99:
d9:87:3c:96:f4:c6:e9:03:28:41:b9:b5:ad:8d:b5:24:03:b6:
b6:7d:1d:88:2d:be:45:98:85:29:82:e5:47:09:6e:55:44:5c:
2c:09:3d:71:87:cc:8a:6f:93:89:95:e1:01:5c:ed:34:79:79:
04:c5:36:08:f4:20:c3:6b:10:cf:d3:ce:75:de:45:9b:5c:fa:
a3:2b:cd:62:2b:e1:ae:97:5e:d7:a3:4c:f6:2c:cf:1c:37:ed:
a1:b9:83:ad:9d:15:82:6a:8f:02:c7:7b:67:d3:71:45:c3:31:
20:49:23:9f:d1:be:e4:a8:5d:10:ac:77:22:f1:dd:62:fe:2c:
f0:e1:cc:73:5d:94:14:68:0c:c6:8f:a7:36:c7:a2:82:26:28:
5a:d2:df:8a:46:02:0b:d0:9d:d9:fa:71:af:8c:fe:51:0b:84:
e2:51:d5:98:fd:69:81:8f:ff:a6:ef:3a:bf:33:fb:b1:b8:1c:
8c:25:49:15:68:99:22:6a:1a:5c:ca:ee:16:f4:ed:d9:cd:5a:
98:cf:80:a1:a9:fc:45:52:58:24:b9:b0:9b:4b:b1:4b:bd:f1:
35:ff:5a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:54 2024 by rpki-client on console-fra.rpki-client.org