Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/1UA3Fu-relkOE2HtygSEne8u9ew.roa
File: 1UA3Fu-relkOE2HtygSEne8u9ew.roa (raw, json)
Hash identifier: MYNnKDpq05NxYJMPcLJrqJMU9UzL6geDRXk8r64pE5o=
Subject key identifier: D5:40:37:16:EF:AB:7A:59:0E:13:61:ED:CA:04:84:9D:EF:2E:F5:EC
Certificate issuer: /CN=4acef45fbb0f26930aeb833cf79fc41e22ca9235
Certificate serial: 057DFCF5
Authority key identifier: 4A:CE:F4:5F:BB:0F:26:93:0A:EB:83:3C:F7:9F:C4:1E:22:CA:92:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ss70X7sPJpMK64M895_EHiLKkjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/1UA3Fu-relkOE2HtygSEne8u9ew.roa
Signing time: Sat 01 Jan 2022 05:03:31 +0000
ROA not before: Sat 01 Jan 2022 05:03:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210773
IP address blocks: 193.111.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92142837 (0x57dfcf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4acef45fbb0f26930aeb833cf79fc41e22ca9235
Validity
Not Before: Jan 1 05:03:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5403716efab7a590e1361edca04849def2ef5ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d4:b6:47:c8:c9:73:13:e5:90:f8:d2:7b:25:
5b:ba:88:dc:de:cd:bc:5c:57:fb:27:d9:fc:a8:e7:
af:91:c6:16:fe:7f:9a:83:8c:b8:74:73:a3:34:1c:
39:12:19:9c:c2:85:28:53:bb:51:df:77:e9:95:b5:
da:65:70:55:5f:49:ae:1f:15:0f:44:c4:7a:24:8f:
86:17:f6:f8:08:1a:47:bc:fe:41:02:3b:d1:d9:4b:
bf:d1:65:6c:ee:71:dc:fd:7a:7d:aa:b8:3d:e9:7e:
f2:43:64:7d:25:4d:72:56:e0:76:b1:e6:71:da:63:
d0:b2:87:43:65:eb:e0:d5:7e:0d:ce:e2:af:e5:86:
8c:35:cb:42:10:15:50:ed:a9:ee:14:d6:1b:3e:0a:
35:c8:1b:7b:a7:7f:9d:54:5e:3a:1d:24:16:e2:94:
e5:1b:f0:a2:0e:84:5f:83:24:64:5c:a7:8f:46:3a:
c0:a7:f2:5a:e2:db:25:61:b1:7b:78:f5:89:76:c4:
75:08:dc:8a:d7:cd:9a:3a:08:3c:aa:df:67:d2:d3:
93:e8:cf:25:9b:a0:e9:ad:f0:ab:14:ff:1b:43:1d:
28:87:c0:99:8d:74:44:f3:12:d7:92:40:9b:68:8d:
7d:1d:c0:66:bb:ce:c2:89:fa:c6:6e:6d:ad:30:35:
f3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:40:37:16:EF:AB:7A:59:0E:13:61:ED:CA:04:84:9D:EF:2E:F5:EC
X509v3 Authority Key Identifier:
keyid:4A:CE:F4:5F:BB:0F:26:93:0A:EB:83:3C:F7:9F:C4:1E:22:CA:92:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ss70X7sPJpMK64M895_EHiLKkjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/1UA3Fu-relkOE2HtygSEne8u9ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/Ss70X7sPJpMK64M895_EHiLKkjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.235.0/24
Signature Algorithm: sha256WithRSAEncryption
64:b8:a3:9d:d2:ea:2a:93:af:5c:b9:ba:95:43:ca:08:15:4c:
8e:5e:e6:2d:70:99:b7:f1:55:ef:38:b3:3f:60:00:e7:5b:cb:
77:13:b5:0e:e4:ea:2e:79:98:d7:0c:73:2e:26:6e:f1:2f:86:
55:ee:a3:40:76:b5:31:9e:99:28:dc:90:0c:d5:9f:ad:87:08:
a3:91:36:30:80:bc:b5:f2:a4:ec:ac:eb:bd:de:6e:9f:af:10:
83:23:d8:f3:7a:bc:a1:6d:5b:dc:48:19:07:22:ff:0f:2d:a5:
55:39:b6:1d:9b:46:76:73:0e:e6:51:e8:2e:6e:6f:4e:11:e0:
db:a0:d0:72:95:56:e1:70:63:f5:0f:f9:2a:cc:a3:33:85:1f:
8d:98:6e:9b:cf:d2:c4:83:43:15:48:89:fb:41:50:3e:ac:08:
fb:3e:df:a7:66:1b:d9:12:5c:61:ef:74:5d:1b:f3:7a:3c:03:
50:a9:ce:48:00:6e:83:e1:6d:ab:f1:23:89:1b:dd:51:26:c9:
2a:df:67:63:f1:90:c3:7d:8f:32:8c:a9:e9:9f:ec:25:d2:96:
b5:9c:62:a9:0d:9b:a4:b5:6b:b8:03:70:eb:9e:47:f0:f8:f0:
9e:0d:9a:66:1d:ae:f1:76:03:3e:a0:6f:54:8e:92:f6:54:50:
1f:e3:05:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:15 2024 by rpki-client on console-fra.rpki-client.org