Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/2WYLxHLTb9b56IeJ2cYQ1EAe0nM.roa
File: 2WYLxHLTb9b56IeJ2cYQ1EAe0nM.roa (raw, json)
Hash identifier: AzLqnQqbZpmDVUzmPVKJ+4JUZ4okiW5yrMAdaJJZdKg=
Subject key identifier: D9:66:0B:C4:72:D3:6F:D6:F9:E8:87:89:D9:C6:10:D4:40:1E:D2:73
Certificate issuer: /CN=3044e60bb97132ea849a53fc554bbbc63948b016
Certificate serial: 01C286D9
Authority key identifier: 30:44:E6:0B:B9:71:32:EA:84:9A:53:FC:55:4B:BB:C6:39:48:B0:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/METmC7lxMuqEmlP8VUu7xjlIsBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/2WYLxHLTb9b56IeJ2cYQ1EAe0nM.roa
Signing time: Sat 01 Jan 2022 04:02:43 +0000
ROA not before: Sat 01 Jan 2022 04:02:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207543
IP address blocks: 193.228.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29525721 (0x1c286d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3044e60bb97132ea849a53fc554bbbc63948b016
Validity
Not Before: Jan 1 04:02:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9660bc472d36fd6f9e88789d9c610d4401ed273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0e:c1:e9:b3:f9:81:bc:f0:b8:6a:43:6c:72:
c3:52:1a:1e:da:ec:fc:4f:c2:62:f0:58:2a:bb:b8:
4d:fb:41:8f:ff:31:36:9d:97:1f:b2:2a:5d:ca:fa:
8a:4b:e5:4e:48:f8:b8:cc:8c:93:21:f8:e3:f9:ce:
62:27:4d:fb:a3:a8:18:26:1e:d5:9d:f5:84:c2:cc:
47:33:4f:46:53:87:8b:28:5f:b6:27:a9:39:f7:e8:
37:64:c7:0b:89:b8:b8:3a:41:bd:a2:35:4a:1b:8e:
a5:7a:83:5b:a5:f5:cd:2d:ab:c5:c1:38:60:a2:75:
fd:22:f4:72:73:a8:45:cf:1e:41:79:45:49:56:9a:
f7:5e:23:d8:da:71:a7:51:09:76:9f:26:11:2d:ef:
19:14:2e:55:71:d0:1a:2a:3d:3f:dd:d0:c5:4a:32:
07:63:25:04:73:4d:0e:35:e1:8e:33:48:99:1f:c0:
22:1d:36:4b:46:74:57:3e:cf:b8:d6:be:fd:d0:e4:
28:22:2a:4b:27:b0:d2:0c:0e:64:c3:40:aa:2f:43:
68:a8:7d:47:21:d2:a5:81:98:7f:be:fe:e1:01:2a:
a1:fd:46:af:04:c9:6e:7f:bf:2e:a9:9b:90:23:28:
96:07:d3:b0:c6:b5:1a:7a:95:78:53:e5:89:56:19:
eb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:66:0B:C4:72:D3:6F:D6:F9:E8:87:89:D9:C6:10:D4:40:1E:D2:73
X509v3 Authority Key Identifier:
keyid:30:44:E6:0B:B9:71:32:EA:84:9A:53:FC:55:4B:BB:C6:39:48:B0:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/METmC7lxMuqEmlP8VUu7xjlIsBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/2WYLxHLTb9b56IeJ2cYQ1EAe0nM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/METmC7lxMuqEmlP8VUu7xjlIsBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.11.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:e0:4d:19:f8:82:5e:3d:5b:67:d6:6b:2e:e3:0c:b6:78:08:
8e:95:5d:7e:a5:d1:0a:75:64:bb:21:c4:3a:c2:96:30:a1:0a:
63:6d:11:39:f4:10:b3:04:82:e8:04:ae:ee:6e:39:b5:55:1e:
16:25:6e:dc:27:7c:c1:76:1d:73:6a:1a:47:18:65:65:d9:0d:
1a:48:f1:68:d9:dc:08:5e:4f:14:34:4e:57:e7:38:5a:7f:cf:
fd:3e:be:fd:21:f7:b9:2a:52:18:dd:ac:79:2d:d8:74:81:fe:
69:89:01:fb:fc:ef:9e:63:25:e0:09:90:d4:33:33:d0:47:52:
d5:cc:76:51:e1:11:4d:b7:95:3b:b7:b8:5f:16:7f:c0:28:de:
05:86:71:d1:98:ef:40:4a:b6:17:76:bc:36:90:77:b5:6a:e7:
50:5a:23:ab:04:0b:81:88:e0:9b:b5:a2:8e:56:71:51:09:3e:
ef:0a:d5:ce:bc:4d:fe:82:da:85:fb:4f:06:88:ef:3a:41:e1:
1e:e7:01:b1:1e:81:99:42:9b:a5:d7:01:8e:2e:7a:ea:29:d1:
b6:66:de:9b:17:ae:7b:e2:03:7d:84:20:f6:25:9a:e4:58:37:
db:8f:d1:39:43:85:a3:83:69:81:de:f8:4c:a9:fd:a2:28:74:
1b:70:8c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:12 2023 by rpki-client on console.sobornost.net