Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/pMHzIXg5yFFHcYE4e79qjbLOGbo.roa
File: pMHzIXg5yFFHcYE4e79qjbLOGbo.roa (raw, json)
Hash identifier: of20HDx5HBcJUWiwxm1qplhhhVVy1EMAlpjpSMDbuUc=
Subject key identifier: A4:C1:F3:21:78:39:C8:51:47:71:81:38:7B:BF:6A:8D:B2:CE:19:BA
Certificate issuer: /CN=2f3eaf4ec754f4a0e3d84ca253ad406ee9c7de15
Certificate serial: 03CF699E
Authority key identifier: 2F:3E:AF:4E:C7:54:F4:A0:E3:D8:4C:A2:53:AD:40:6E:E9:C7:DE:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lz6vTsdU9KDj2EyiU61AbunH3hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/pMHzIXg5yFFHcYE4e79qjbLOGbo.roa
Signing time: Fri 25 Feb 2022 19:04:46 +0000
ROA not before: Fri 25 Feb 2022 19:04:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203735
IP address blocks: 193.219.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63924638 (0x3cf699e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f3eaf4ec754f4a0e3d84ca253ad406ee9c7de15
Validity
Not Before: Feb 25 19:04:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4c1f3217839c851477181387bbf6a8db2ce19ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:af:31:b2:7e:59:ca:ce:4a:bc:4c:3d:0c:f7:
71:d7:df:e2:e5:7a:fa:8e:bd:a6:35:72:e5:78:0a:
a2:00:f7:81:08:80:2f:32:b0:dc:fd:df:23:50:f6:
e1:6d:02:49:53:73:34:b2:4c:d4:8f:b1:2b:ea:34:
e4:35:5c:e2:68:9c:d8:e9:f7:35:90:5a:75:7e:44:
8c:6f:a4:5b:5d:89:46:96:b0:01:81:01:cf:ae:5a:
e9:99:36:fd:a6:56:32:05:31:a2:31:51:82:7c:40:
c9:eb:49:e0:39:81:77:0d:55:a2:b0:dd:46:82:e8:
aa:52:80:44:cf:ef:72:b4:df:c6:e4:a2:61:ea:e4:
a8:6d:96:21:ae:25:0a:8d:ae:9a:33:fb:a5:7f:65:
0d:46:78:96:26:83:c6:ab:09:e7:13:6a:61:bf:8f:
f0:18:4f:ef:b2:76:d1:8b:b6:a0:19:56:83:ac:41:
df:0a:8c:3f:96:2d:1c:c1:d1:31:25:5f:ac:d8:09:
88:00:12:57:d5:90:78:4d:33:bc:15:a9:77:d6:7e:
a7:84:04:08:09:5f:c7:6d:03:c5:a1:ab:60:f0:c2:
0d:3b:b5:52:b6:ae:4b:1e:92:1c:a9:f0:a1:f9:93:
cc:05:29:c9:d3:29:98:74:6d:6f:c5:12:cc:7b:9d:
b5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C1:F3:21:78:39:C8:51:47:71:81:38:7B:BF:6A:8D:B2:CE:19:BA
X509v3 Authority Key Identifier:
keyid:2F:3E:AF:4E:C7:54:F4:A0:E3:D8:4C:A2:53:AD:40:6E:E9:C7:DE:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lz6vTsdU9KDj2EyiU61AbunH3hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/pMHzIXg5yFFHcYE4e79qjbLOGbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/Lz6vTsdU9KDj2EyiU61AbunH3hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.219.112.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:0c:64:09:1f:a1:e8:36:04:c6:6a:63:53:84:9b:13:18:75:
db:7c:6d:2b:d6:a7:99:e0:73:f2:f7:49:e6:a7:ae:23:ae:1d:
7c:c2:01:20:e0:f3:01:bd:d0:5b:51:c8:d6:80:79:9b:e4:d6:
fd:4f:9a:eb:97:a6:8e:e5:40:88:91:21:e1:a5:bd:35:6a:23:
5b:42:7a:31:c1:bd:c0:1d:50:26:aa:28:46:d3:2c:89:ae:2a:
1c:6a:5c:0d:2a:e7:cf:cc:56:f8:76:5f:a6:c9:58:c9:2a:9a:
f5:a3:95:d0:53:96:45:2b:1f:36:1f:fd:88:de:ed:dc:a0:9f:
6b:8b:ac:ff:80:06:af:7b:f0:5c:a2:f3:3c:9a:87:7c:d9:0f:
2b:b8:d3:e7:b0:59:54:27:ca:95:59:bc:4d:05:0d:26:aa:36:
fb:da:c4:3f:10:63:97:b3:fc:fc:06:63:63:f1:11:88:2b:55:
57:66:cf:82:79:7c:5e:a2:85:4e:df:7e:fc:17:c5:10:3a:b1:
4b:54:a8:ee:6d:69:0e:21:79:17:5c:9b:98:79:b8:ec:88:4f:
35:f0:65:f7:23:50:96:4d:2c:a3:d1:5b:35:e1:86:63:d1:12:
00:ae:02:ad:d5:ff:10:cf:b1:77:c4:65:b6:cb:1e:f0:d7:fc:
e3:7a:dd:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:28 2024 by rpki-client on console-fra.rpki-client.org