Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/a905e9-f93b-4d60-8108-810b9f5cc415/1/Pw66XFxbvr_KIi6jSGe7VJqzWrU.roa
File: Pw66XFxbvr_KIi6jSGe7VJqzWrU.roa (raw, json)
Hash identifier: tS9gCtbjuA35Lk1pjGC2zknsSwcDLtpSCRIBKbDHTGk=
Subject key identifier: 3F:0E:BA:5C:5C:5B:BE:BF:CA:22:2E:A3:48:67:BB:54:9A:B3:5A:B5
Certificate issuer: /CN=4b5d45a2abb960d2bce758ece733b126dca7e71b
Certificate serial: 0183BBD4B12B803EC809827853649712854E
Authority key identifier: 4B:5D:45:A2:AB:B9:60:D2:BC:E7:58:EC:E7:33:B1:26:DC:A7:E7:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S11Foqu5YNK851js5zOxJtyn5xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/a905e9-f93b-4d60-8108-810b9f5cc415/1/Pw66XFxbvr_KIi6jSGe7VJqzWrU.roa
Signing time: Sun 09 Oct 2022 08:20:21 +0000
ROA not before: Sun 09 Oct 2022 08:20:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50405
IP address blocks: 193.8.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:bb:d4:b1:2b:80:3e:c8:09:82:78:53:64:97:12:85:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b5d45a2abb960d2bce758ece733b126dca7e71b
Validity
Not Before: Oct 9 08:20:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f0eba5c5c5bbebfca222ea34867bb549ab35ab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:43:bb:de:cb:42:7d:34:ae:24:a9:bf:02:e2:
2f:39:bd:01:74:98:53:bc:f5:22:e7:97:27:50:4e:
55:fa:5e:21:44:f0:a9:a6:de:25:cf:aa:a2:86:ca:
92:88:99:71:42:bb:f7:db:be:e8:33:3b:6f:7c:ec:
b7:83:99:fe:57:b4:99:81:e6:61:b0:32:7e:0a:0c:
e0:1b:7a:f7:44:5a:0e:78:5d:97:7c:f7:eb:0a:13:
9a:ed:54:d2:35:32:75:fc:17:a8:c4:6f:f4:c1:24:
23:64:1f:26:4c:0f:7a:5e:05:e2:8d:61:74:75:d6:
2a:f8:2d:c0:22:65:9c:f5:65:59:5b:02:bd:ac:7d:
1f:4b:7a:1d:59:2b:bd:4b:ef:eb:eb:bd:43:b8:b2:
6f:d5:b8:00:93:00:28:67:9e:04:f8:5a:9d:9b:69:
b0:b5:4a:50:d8:e5:02:79:3c:50:57:84:0a:f9:f2:
8f:22:f1:6f:39:a5:6e:a1:4a:a8:8d:1b:28:41:5c:
6e:9b:4c:86:60:39:e8:bc:98:80:2e:35:d6:ea:80:
bc:e0:2c:d0:5c:68:2e:63:79:b5:46:a8:3b:76:66:
6c:1f:a0:5a:ef:cc:f8:8f:d6:5c:86:bd:05:98:73:
31:10:7e:93:dc:c1:28:cf:fa:9b:fa:69:0b:c6:63:
63:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0E:BA:5C:5C:5B:BE:BF:CA:22:2E:A3:48:67:BB:54:9A:B3:5A:B5
X509v3 Authority Key Identifier:
keyid:4B:5D:45:A2:AB:B9:60:D2:BC:E7:58:EC:E7:33:B1:26:DC:A7:E7:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S11Foqu5YNK851js5zOxJtyn5xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/a905e9-f93b-4d60-8108-810b9f5cc415/1/Pw66XFxbvr_KIi6jSGe7VJqzWrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/a905e9-f93b-4d60-8108-810b9f5cc415/1/S11Foqu5YNK851js5zOxJtyn5xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.252.0/24
Signature Algorithm: sha256WithRSAEncryption
62:d1:5e:7d:d4:24:ca:3c:0c:ee:71:76:4f:b4:6d:46:d9:0e:
89:d2:6b:7c:db:52:b2:99:78:53:59:da:61:e0:e6:26:7c:ff:
bb:6c:37:f3:15:08:9a:15:e5:a7:0e:51:88:82:4a:48:22:0c:
49:e8:c9:6a:91:a9:5f:25:35:16:d7:b5:40:bd:0a:79:e3:04:
92:e6:57:63:6c:00:11:84:03:27:72:74:cd:9b:b3:cd:30:61:
35:06:09:a4:8f:e5:6d:a6:d8:78:5f:cf:f6:e5:41:9f:46:21:
d6:45:c3:c8:b5:da:5e:f8:88:18:89:31:f4:8a:0d:29:d2:27:
89:bf:5c:54:ee:b5:64:ee:33:4b:11:99:0c:70:4e:75:b5:e5:
e2:a9:86:c7:6b:b9:d8:f2:2e:67:b3:e7:3a:2f:80:7b:06:89:
5b:31:72:2e:34:de:38:69:0b:81:c9:79:92:78:f6:48:6e:2f:
fc:34:6c:3d:5a:48:e7:2d:ae:c1:fd:57:b4:58:28:7a:2d:97:
63:df:71:ee:92:2e:bb:60:4d:26:e8:71:26:39:4c:bb:9c:b0:
b2:e9:e8:dc:83:ce:77:ff:4a:19:8c:a6:20:19:b6:93:25:b4:
6f:4d:22:c6:e2:4f:dd:41:cb:b9:3e:1e:38:a9:dd:8e:92:2b:
82:71:5d:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:14 2024 by rpki-client on console-fra.rpki-client.org