Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/i6s6VtaprvglLKuYboTl3UKjM84.roa
File: i6s6VtaprvglLKuYboTl3UKjM84.roa (raw, json)
Hash identifier: Dwvpm+DZBziZrj9z/XppiEGkNojbjXRj8EX79xUmvXg=
Subject key identifier: 8B:AB:3A:56:D6:A9:AE:F8:25:2C:AB:98:6E:84:E5:DD:42:A3:33:CE
Certificate issuer: /CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Certificate serial: 0F978254
Authority key identifier: 38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/i6s6VtaprvglLKuYboTl3UKjM84.roa
Signing time: Sat 01 Jan 2022 06:56:26 +0000
ROA not before: Sat 01 Jan 2022 06:56:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5408
IP address blocks: 193.218.96.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 261587540 (0xf978254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f9c54f19193e06548163f895c3a46b9f8bfbb5
Validity
Not Before: Jan 1 06:56:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bab3a56d6a9aef8252cab986e84e5dd42a333ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:84:dd:a5:8d:dc:e5:e5:ff:4e:48:45:b4:89:
ed:3c:0f:8a:05:12:36:3d:15:ce:00:ae:d5:5c:80:
b4:cb:ee:e2:49:fa:36:03:17:7c:80:7d:da:95:5c:
37:8b:c3:01:d1:e5:5b:6d:fa:92:94:b2:1a:0b:40:
08:15:b2:ae:c8:4b:dc:86:d1:91:2a:92:89:59:48:
19:7f:ed:66:1b:79:26:32:2d:ef:f1:38:e0:3a:b6:
8b:97:9c:6d:dd:76:24:5c:e0:89:31:cc:36:ec:cf:
29:ca:79:3a:84:96:8b:87:13:c8:75:4e:2f:c6:d3:
6c:59:42:c6:2f:51:5b:36:0e:8a:bf:21:5b:3d:5a:
c7:d3:7c:46:b3:49:00:a9:3f:96:ab:7b:6d:89:92:
5b:f9:97:01:ac:b5:0b:34:bc:1b:ab:60:67:e6:a7:
68:52:5c:7f:96:c5:34:50:ca:8a:61:85:ae:76:9c:
79:7b:59:15:03:2a:a6:cb:90:84:6f:73:20:d0:4c:
57:91:44:13:19:34:9f:73:80:89:34:38:28:b2:2d:
94:8a:76:ee:ff:4f:04:d1:55:e1:52:1c:f4:83:0c:
26:41:95:82:44:77:1f:8f:ae:7f:1c:21:55:2c:a4:
28:38:2e:53:b2:43:85:f6:13:56:a9:1d:54:9b:4b:
1d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AB:3A:56:D6:A9:AE:F8:25:2C:AB:98:6E:84:E5:DD:42:A3:33:CE
X509v3 Authority Key Identifier:
keyid:38:F9:C5:4F:19:19:3E:06:54:81:63:F8:95:C3:A4:6B:9F:8B:FB:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPnFTxkZPgZUgWP4lcOka5-L-7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/i6s6VtaprvglLKuYboTl3UKjM84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f0b6ba-8675-491c-8593-724949b460e9/1/OPnFTxkZPgZUgWP4lcOka5-L-7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.96.0/23
Signature Algorithm: sha256WithRSAEncryption
52:ae:2d:ea:2d:cf:af:23:c5:4a:70:97:00:24:39:d6:78:78:
0c:22:df:8d:78:77:9d:fa:17:3d:99:93:c7:c6:45:ee:a0:68:
68:dd:a3:e0:dc:12:3a:7b:63:dc:5c:de:ba:47:05:39:a7:a8:
08:4c:f2:e5:f5:1f:03:83:3a:48:d1:6f:99:f6:0c:74:bb:a1:
f4:32:97:55:6c:93:ec:79:00:91:bc:59:d3:6e:8f:81:33:cc:
5d:ca:3e:67:40:54:61:d7:66:f9:04:ae:27:3a:70:d5:c9:69:
5d:53:16:76:c6:b3:7f:ac:bf:0a:8b:09:d2:82:a6:85:35:fe:
5b:11:76:b7:47:5e:ae:96:d9:50:90:91:7a:4d:e0:a0:8e:20:
ca:53:b2:bc:16:aa:8d:e3:cb:0c:d6:61:24:6e:77:f2:b6:f5:
02:5f:af:aa:d8:54:33:79:66:04:10:84:bf:30:77:38:ae:61:
95:b6:49:cd:39:fb:2d:55:e1:56:91:5a:d7:cb:a7:b6:76:03:
d6:5c:6c:87:83:6e:92:b9:e3:a8:43:aa:bd:17:2b:2b:2b:56:
d7:02:83:ea:40:c7:20:6c:df:a1:63:d8:37:ee:3d:9d:2c:c8:
c0:e9:ab:6a:86:d6:82:1d:52:08:52:ba:70:ed:92:10:ce:d9:
be:83:eb:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net