Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/TaeP361afp2XcqEhnwSjNd7_DiI.roa
File: TaeP361afp2XcqEhnwSjNd7_DiI.roa (raw, json)
Hash identifier: HDbJgcgvcLBEdbR9JaQevV3eUwQAIsHjKsOyfuzz61c=
Subject key identifier: 4D:A7:8F:DF:AD:5A:7E:9D:97:72:A1:21:9F:04:A3:35:DE:FF:0E:22
Certificate issuer: /CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Certificate serial: 01841564EBF726FB225CDFF05B0A92D3C7D9
Authority key identifier: F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/TaeP361afp2XcqEhnwSjNd7_DiI.roa
Signing time: Wed 26 Oct 2022 17:44:06 +0000
ROA not before: Wed 26 Oct 2022 17:44:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212384
IP address blocks: 193.30.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:15:64:eb:f7:26:fb:22:5c:df:f0:5b:0a:92:d3:c7:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Validity
Not Before: Oct 26 17:44:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4da78fdfad5a7e9d9772a1219f04a335deff0e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e1:b1:77:71:c3:90:1b:53:4c:73:b9:38:e0:
c1:3f:08:e7:3d:de:b3:61:7b:e6:3a:fb:4d:d3:ac:
85:1a:56:90:23:59:fc:51:cf:8d:ea:0e:33:b3:0a:
ca:32:2d:cf:f2:33:f6:23:d0:6d:fb:1a:97:42:e1:
81:e5:ab:e9:9c:d7:7b:d9:a3:c7:a7:67:3b:f4:d7:
17:43:76:4a:47:1f:a1:95:09:a6:60:cd:d9:c8:ae:
1c:4b:07:6e:79:71:5b:a9:e9:65:04:e1:58:76:04:
e3:f1:33:ee:46:b5:c3:f4:23:13:4b:39:7a:e0:fc:
72:6e:03:fe:f0:39:bc:0b:be:25:19:2c:57:55:80:
a1:2c:2a:bb:5b:85:bf:f2:2d:fc:9e:1f:ef:16:e0:
db:6a:31:dc:73:d1:ec:c4:80:d4:26:f3:e3:d7:ed:
ae:ee:d5:2d:ea:7d:a5:ac:61:4f:f2:c1:13:be:c4:
54:ce:47:6d:d1:15:bf:85:d5:6b:68:c9:b4:3c:fc:
85:d5:9b:bb:48:f7:ee:c8:c2:91:da:bd:a4:f6:88:
94:ea:d8:e7:a5:44:db:3a:da:aa:23:40:0e:9a:c0:
ff:dc:ae:36:a6:e5:b9:82:3b:22:f8:00:2b:34:79:
07:ab:07:e8:22:11:65:c1:75:83:f1:79:92:fe:2b:
8b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A7:8F:DF:AD:5A:7E:9D:97:72:A1:21:9F:04:A3:35:DE:FF:0E:22
X509v3 Authority Key Identifier:
keyid:F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/TaeP361afp2XcqEhnwSjNd7_DiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/9lHcmHXjXsWAxXH9BBb01fXUFYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.102.0/24
Signature Algorithm: sha256WithRSAEncryption
02:e3:cf:35:bc:52:66:17:1a:77:aa:c0:4f:b1:6e:9e:fa:36:
91:fc:b8:8f:90:b1:9a:93:c4:03:c9:79:ca:1a:e3:44:5b:5b:
97:29:03:e0:59:f9:e7:27:09:c6:73:f9:c8:3e:6d:ef:19:88:
dd:97:e2:2c:01:f5:e9:c1:b9:90:0c:3b:5f:32:1b:cd:f5:9a:
95:a8:66:18:9d:bd:13:d9:d1:41:70:ac:fc:30:47:aa:12:f5:
70:62:7e:07:ec:82:b6:f4:96:94:b7:e2:bd:24:39:66:7b:59:
ff:f0:b0:19:59:22:3d:c9:12:d7:de:b3:0c:fd:a2:39:cb:4f:
b7:c1:89:82:fb:ba:f7:3f:0b:a9:e4:fe:97:00:3e:a1:21:82:
8c:c1:b7:1e:45:a0:ce:ab:6f:3c:5e:2b:a3:eb:b3:a2:4b:3f:
83:0f:c9:93:10:f5:a7:ff:a3:a4:50:44:28:05:12:7d:33:20:
00:ce:e6:5f:07:cf:8d:fe:91:e6:68:72:5a:25:14:e1:8f:96:
13:69:97:56:60:61:b3:5d:7f:a1:c3:94:b5:a9:b1:06:e5:eb:
9a:25:c3:6a:67:b5:d4:79:e6:8b:27:2a:cc:f2:9e:6c:cc:f0:
d3:be:2c:b4:7d:3e:88:59:3a:67:35:90:b5:ed:ff:8e:b9:9f:
32:5b:cc:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:40 2023 by rpki-client on console.sobornost.net