Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/dc4e4d-ae22-4147-ac87-e0d914c1cb50/1/Y-qXjBUOfvz0-6rcMIBiT-szATw.roa
File: Y-qXjBUOfvz0-6rcMIBiT-szATw.roa (raw, json)
Hash identifier: wab0Q0kKSUAPpvHUR+8jxsWIx5dgFF3M341cpT/utnI=
Subject key identifier: 63:EA:97:8C:15:0E:7E:FC:F4:FB:AA:DC:30:80:62:4F:EB:33:01:3C
Certificate issuer: /CN=0b5a5eca6cd38e921b5a14570854adb4a3b69238
Certificate serial: 168C49
Authority key identifier: 0B:5A:5E:CA:6C:D3:8E:92:1B:5A:14:57:08:54:AD:B4:A3:B6:92:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1peymzTjpIbWhRXCFSttKO2kjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc4e4d-ae22-4147-ac87-e0d914c1cb50/1/Y-qXjBUOfvz0-6rcMIBiT-szATw.roa
Signing time: Mon 07 Mar 2022 16:00:31 +0000
ROA not before: Mon 07 Mar 2022 16:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1930
IP address blocks: 192.207.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1477705 (0x168c49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5a5eca6cd38e921b5a14570854adb4a3b69238
Validity
Not Before: Mar 7 16:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63ea978c150e7efcf4fbaadc3080624feb33013c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:58:8d:30:ad:9f:be:9f:a3:9d:99:a4:78:0e:
81:53:9e:ab:88:59:a9:8f:f4:46:33:4c:55:c9:7f:
2e:64:9f:72:3b:03:ff:a4:68:3d:d8:8c:99:1f:26:
d3:2e:5b:71:0a:a9:1f:63:70:e1:d3:fb:b9:9d:ce:
b9:f5:28:ee:04:10:56:6e:e7:fd:3b:b6:d6:d9:b4:
9b:fd:45:35:e6:72:d8:2a:71:b9:b9:03:3b:45:5c:
ef:69:aa:5a:c4:6b:15:9a:8d:31:7e:e1:61:de:05:
c6:33:d7:59:af:64:c2:98:ed:4d:94:7a:11:ac:d0:
bc:c3:1d:98:a4:4c:2d:8b:ec:23:3d:c0:32:9b:06:
a9:fd:7e:4e:df:77:92:20:1d:ee:b8:e9:6a:81:ce:
94:34:d7:21:7c:dc:4e:0a:29:73:21:99:96:a0:cd:
a5:c9:ed:ac:de:b8:95:b7:66:95:47:5a:1f:15:14:
b1:0c:3a:76:d3:da:a2:b2:3e:5e:36:6d:43:b6:16:
ef:d9:bc:ff:c8:09:19:03:c0:0e:70:15:d9:5e:45:
e3:37:54:84:de:03:f4:fb:02:9f:c9:b2:7b:26:8c:
eb:a8:1f:22:67:10:0c:c0:63:2c:a0:1e:f2:41:ef:
29:3d:b9:d1:0f:22:f8:27:56:44:40:dc:8a:a6:43:
1e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:EA:97:8C:15:0E:7E:FC:F4:FB:AA:DC:30:80:62:4F:EB:33:01:3C
X509v3 Authority Key Identifier:
keyid:0B:5A:5E:CA:6C:D3:8E:92:1B:5A:14:57:08:54:AD:B4:A3:B6:92:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1peymzTjpIbWhRXCFSttKO2kjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc4e4d-ae22-4147-ac87-e0d914c1cb50/1/Y-qXjBUOfvz0-6rcMIBiT-szATw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc4e4d-ae22-4147-ac87-e0d914c1cb50/1/C1peymzTjpIbWhRXCFSttKO2kjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.207.196.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:04:93:4b:2d:0d:a0:58:80:6a:d6:c2:fe:5d:60:50:87:b3:
de:77:7f:12:8d:2f:2f:89:f7:18:9b:8a:c7:b9:18:c9:2e:21:
7c:5e:f3:22:ee:28:45:82:78:6a:b7:a5:71:c6:8f:ac:e2:3e:
ef:c4:a8:25:3a:f2:95:a3:4c:a8:e9:38:d4:de:65:ff:f6:a1:
ab:e3:c0:10:d0:24:30:aa:fc:6c:41:5c:28:aa:3c:fd:7c:ab:
90:d8:ed:32:02:3f:7d:de:fd:31:47:3c:ec:4d:38:b2:ec:c3:
7b:95:50:19:db:98:7b:ae:18:24:d0:b5:5b:4a:1a:d7:13:12:
a2:fe:db:f3:ea:7c:42:e0:25:0e:26:5c:88:8f:c4:5e:56:f8:
36:a4:0c:41:83:ea:d0:30:66:bd:36:5d:0b:35:c8:57:98:b5:
ed:1b:e3:62:61:40:a4:a3:fc:c2:69:af:7e:af:eb:d7:09:c4:
a9:e8:55:a3:97:83:e8:98:1d:ac:f2:63:18:dd:a9:95:06:40:
0d:80:5e:ce:57:1b:8d:d6:52:7f:9a:01:11:48:bd:48:0f:2a:
ff:0f:30:c8:78:95:c7:13:17:fb:c7:7f:ca:e5:f2:da:2d:18:
e3:52:a4:ac:82:38:33:cb:48:63:83:f3:6c:a6:41:2d:4a:ed:
e8:37:8d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:12 2024 by rpki-client on console-fra.rpki-client.org