Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/ac3260-7069-44f2-9ea9-394ff928f570/1/ehLueU5m4cZ_CHZ1pVxRWmTf7z8.roa
File: ehLueU5m4cZ_CHZ1pVxRWmTf7z8.roa (raw, json)
Hash identifier: MNAebH1M2uhs/4sc08zfnRJwueONNzl29ycdu+iIr2s=
Subject key identifier: 7A:12:EE:79:4E:66:E1:C6:7F:08:76:75:A5:5C:51:5A:64:DF:EF:3F
Certificate issuer: /CN=9e4fae6d2c25dd5f2fb16b4fbea284e6658c12ba
Certificate serial: 01528DBA
Authority key identifier: 9E:4F:AE:6D:2C:25:DD:5F:2F:B1:6B:4F:BE:A2:84:E6:65:8C:12:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nk-ubSwl3V8vsWtPvqKE5mWMEro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/ac3260-7069-44f2-9ea9-394ff928f570/1/ehLueU5m4cZ_CHZ1pVxRWmTf7z8.roa
Signing time: Sat 01 Jan 2022 13:01:05 +0000
ROA not before: Sat 01 Jan 2022 13:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196895
IP address blocks: 193.105.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22187450 (0x1528dba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e4fae6d2c25dd5f2fb16b4fbea284e6658c12ba
Validity
Not Before: Jan 1 13:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a12ee794e66e1c67f087675a55c515a64dfef3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c9:5d:ba:dd:5d:03:a8:a9:6b:f2:22:1e:31:
77:bc:59:95:4a:8a:00:e2:66:c9:1a:ba:ba:43:20:
c5:6d:0c:dd:88:2f:04:6a:01:d0:fe:fe:40:b3:6d:
4b:70:1e:64:8c:66:a6:39:cb:7b:cf:da:98:66:53:
dc:76:5a:7e:eb:96:3a:dd:55:e3:e2:b3:5f:98:65:
bc:47:9d:f4:c2:46:2e:e9:1a:e6:4f:55:b2:4b:28:
3b:47:75:aa:35:af:5f:74:72:1f:18:be:69:58:f4:
92:79:29:ab:62:91:2f:ae:78:d5:96:51:90:2f:14:
6e:b5:29:79:b9:62:36:ea:d6:2f:c7:e9:25:50:d6:
74:e2:2f:58:a0:7c:ca:e5:ce:d3:fc:3a:03:4b:33:
ea:a6:87:8a:b5:8e:4e:e0:5a:f7:0b:e8:8f:86:bf:
74:45:85:a8:c7:04:bb:e1:8c:38:bb:18:e8:44:a9:
4d:b9:c0:00:3c:e7:83:23:04:d9:d6:ad:e9:8c:ff:
76:ea:7c:dd:15:f1:c8:a8:58:d3:7c:bd:cf:88:6e:
84:36:cc:b1:ae:6b:24:24:50:33:62:31:12:81:9b:
49:c4:8b:e4:e8:77:f5:b6:25:99:35:b6:df:65:7e:
78:c9:4d:9f:77:2f:dc:01:2b:e7:7f:88:9b:95:70:
d4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:12:EE:79:4E:66:E1:C6:7F:08:76:75:A5:5C:51:5A:64:DF:EF:3F
X509v3 Authority Key Identifier:
keyid:9E:4F:AE:6D:2C:25:DD:5F:2F:B1:6B:4F:BE:A2:84:E6:65:8C:12:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nk-ubSwl3V8vsWtPvqKE5mWMEro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ac3260-7069-44f2-9ea9-394ff928f570/1/ehLueU5m4cZ_CHZ1pVxRWmTf7z8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ac3260-7069-44f2-9ea9-394ff928f570/1/nk-ubSwl3V8vsWtPvqKE5mWMEro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.22.0/24
Signature Algorithm: sha256WithRSAEncryption
56:23:80:8b:86:51:ef:77:de:54:4c:c5:1a:68:5f:10:3c:f5:
72:94:13:36:d5:01:0d:21:56:2b:1e:e9:02:52:94:e6:93:2d:
7a:35:76:78:2a:f5:af:d7:ea:df:98:03:45:36:08:1b:01:45:
c0:72:ee:11:7a:72:55:48:f3:53:6e:b6:a6:2c:4f:3c:28:87:
7c:d2:9f:65:c8:e9:2b:95:9c:ec:99:c6:23:6f:59:23:12:44:
57:30:d8:d4:f2:c3:b1:d8:30:85:95:f2:ca:ef:7d:78:8d:03:
b5:69:48:0c:dd:60:55:7e:ed:62:46:ee:fc:fc:36:75:4f:12:
69:d9:61:d1:81:f6:f3:3c:6b:ec:37:db:8c:d7:8b:9b:8a:ef:
0b:ff:d3:d4:ab:63:9d:45:8b:06:f2:22:5f:b3:2d:43:10:50:
a9:e2:ee:f0:88:24:4b:85:46:76:20:9c:56:2c:5f:76:78:ef:
eb:49:8b:e8:46:11:db:02:6b:87:25:f0:75:0e:db:f5:45:90:
58:f6:28:0d:c9:ea:07:e7:99:a9:a9:12:43:50:ac:eb:0c:88:
28:1e:21:cd:8c:ce:de:45:91:4b:1e:51:ec:c9:fa:27:25:d6:
74:2f:c7:98:55:dd:8d:8c:07:c4:1e:81:44:69:00:0e:07:43:
45:4b:8b:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:16 2024 by rpki-client on console-fra.rpki-client.org