Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/XBFEpwjbM64gxoIRTR86i9d6dSA.roa
File: XBFEpwjbM64gxoIRTR86i9d6dSA.roa (raw, json)
Hash identifier: IdtV1AtK4VWaYWMnekqmE32pHarAVKeYQXMX/MKqoU0=
Subject key identifier: 5C:11:44:A7:08:DB:33:AE:20:C6:82:11:4D:1F:3A:8B:D7:7A:75:20
Certificate issuer: /CN=93b1eabbe5ee0c049680e2abc9553439ec643c0b
Certificate serial: 012E16EC
Authority key identifier: 93:B1:EA:BB:E5:EE:0C:04:96:80:E2:AB:C9:55:34:39:EC:64:3C:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/XBFEpwjbM64gxoIRTR86i9d6dSA.roa
Signing time: Sat 01 Jan 2022 05:54:42 +0000
ROA not before: Sat 01 Jan 2022 05:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50182
IP address blocks: 194.247.190.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19797740 (0x12e16ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93b1eabbe5ee0c049680e2abc9553439ec643c0b
Validity
Not Before: Jan 1 05:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c1144a708db33ae20c682114d1f3a8bd77a7520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:68:44:7e:26:e9:71:a1:e7:21:07:ed:c8:32:
28:e6:65:ab:7c:7e:21:2c:14:dc:ba:9a:05:f2:52:
41:c4:95:cd:b1:c9:10:c5:5a:ce:54:d1:1e:06:52:
cd:e6:c8:99:fc:3b:3a:f1:f9:a4:64:53:b5:76:7e:
12:a7:a6:5f:62:c0:a9:45:29:33:87:df:9b:8f:f0:
58:0e:82:40:37:40:db:cb:e3:af:f3:4a:a4:36:d0:
69:5a:ba:92:6c:c5:d4:36:de:cc:0a:db:80:06:81:
83:ca:86:35:f6:52:ad:0b:b1:de:b6:54:b4:56:c4:
ab:17:a8:d5:3f:a9:84:cd:70:37:2b:8e:c4:b1:c8:
7a:db:ff:cb:b7:8d:e7:82:37:9e:73:13:55:a4:e0:
f7:c3:0d:fa:d3:ae:9e:e9:41:30:43:ff:c1:00:8d:
32:d8:cb:e3:97:6a:0d:1b:f4:74:1e:15:ef:b4:2a:
07:bc:46:e7:1d:6f:e0:f1:4f:b6:85:e3:80:b5:0d:
e3:c1:0e:00:e9:62:be:41:b3:2d:84:cf:70:49:f3:
68:8d:6c:a9:f6:22:a8:11:2f:9d:cd:ad:1d:44:ca:
26:b2:2b:9d:38:ac:62:a6:9e:5f:94:7e:db:3e:01:
4a:4f:a9:99:49:24:dc:9b:8b:d0:4f:8e:fa:1c:de:
42:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:11:44:A7:08:DB:33:AE:20:C6:82:11:4D:1F:3A:8B:D7:7A:75:20
X509v3 Authority Key Identifier:
keyid:93:B1:EA:BB:E5:EE:0C:04:96:80:E2:AB:C9:55:34:39:EC:64:3C:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/XBFEpwjbM64gxoIRTR86i9d6dSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.247.190.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:2b:fb:65:8f:39:22:e7:80:3f:db:c3:21:f1:7f:bc:fa:fc:
25:12:c2:7a:e1:4a:4a:2c:c3:2a:20:95:6e:98:7e:49:5f:3f:
df:cf:1f:9d:f9:08:ec:0f:2a:51:43:bb:88:8a:da:ba:dd:aa:
29:40:4e:ac:a7:a4:b8:63:30:d5:d4:38:fa:e0:3f:3e:ee:5c:
ed:16:89:f5:32:06:c6:b0:c7:23:bd:15:82:50:e1:44:4b:97:
fb:84:6e:9c:ee:33:3d:ff:fe:0f:e0:b3:73:e0:6f:47:ae:c2:
e8:06:ad:18:f1:f4:fa:de:78:1d:26:da:a1:a8:49:c3:3b:38:
96:97:43:0e:47:7b:6f:f9:db:bd:55:b5:f1:f7:7f:ba:3a:40:
50:15:9c:ce:8a:ec:c0:bc:5c:b9:52:f1:d3:3e:7e:7a:15:07:
4a:62:94:20:85:e7:ef:bc:6a:45:81:eb:39:fa:f2:7a:03:c5:
58:3c:53:f9:64:10:cf:f3:0d:75:fc:cb:74:5b:b0:8f:f7:8f:
68:4c:37:6e:c1:9f:13:ab:76:58:ef:d0:95:97:b6:3b:5c:99:
e6:0a:3f:7c:84:37:a0:6d:b4:14:ec:4b:d4:cf:5a:c4:6f:8d:
4a:a8:46:a4:e9:de:7c:3b:d1:17:74:34:ea:3f:e4:85:9f:b3:
19:24:0b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:54 2023 by rpki-client on console.sobornost.net