Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/6239a0-f61b-4d44-99fd-71b9091edab0/1/g7PX7OVtS7p56tY_ebAwCPyRYNI.roa
File: g7PX7OVtS7p56tY_ebAwCPyRYNI.roa (raw, json)
Hash identifier: o66HfXr1CapEpPIDHM48bjsvR6O12AVRd6qjvVQF8o4=
Subject key identifier: 83:B3:D7:EC:E5:6D:4B:BA:79:EA:D6:3F:79:B0:30:08:FC:91:60:D2
Certificate issuer: /CN=8d4437f05cde6b0041149f61c473c8ed18db4b44
Certificate serial: 051EAE09
Authority key identifier: 8D:44:37:F0:5C:DE:6B:00:41:14:9F:61:C4:73:C8:ED:18:DB:4B:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jUQ38FzeawBBFJ9hxHPI7RjbS0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/6239a0-f61b-4d44-99fd-71b9091edab0/1/g7PX7OVtS7p56tY_ebAwCPyRYNI.roa
Signing time: Sat 01 Jan 2022 15:56:26 +0000
ROA not before: Sat 01 Jan 2022 15:56:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201116
IP address blocks: 193.34.236.0/23 maxlen: 23
193.34.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85896713 (0x51eae09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d4437f05cde6b0041149f61c473c8ed18db4b44
Validity
Not Before: Jan 1 15:56:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83b3d7ece56d4bba79ead63f79b03008fc9160d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:88:0e:d3:d9:fa:34:74:d4:84:c2:9a:2d:d2:
1c:80:7d:71:6a:a3:a6:6f:f0:64:fe:88:46:fc:35:
f0:40:76:da:f2:fd:04:ac:94:51:82:c3:cd:20:7c:
7b:c4:6d:1f:11:fe:e7:26:97:3d:f9:02:cb:76:20:
13:63:5d:cc:70:b0:47:bc:9f:9e:51:c1:e2:9d:23:
82:06:2c:9a:aa:0f:93:c6:c3:36:4b:c0:ca:f5:a8:
82:c2:4b:76:91:99:72:ef:03:f5:3e:67:4f:4d:79:
05:17:3e:36:91:39:a4:01:6d:bf:b9:47:b8:33:d0:
20:f4:a7:ff:d0:30:2c:39:38:99:b9:e4:d8:1e:53:
0b:18:95:81:cb:b0:ca:5e:b5:3e:de:9b:0e:16:61:
6a:c1:5c:ee:e3:6f:9b:0d:b7:5e:e5:2c:31:02:f9:
4f:0e:81:4b:6f:39:b9:bb:54:0a:42:c1:fe:a3:51:
78:63:b4:16:ce:d4:59:ce:b9:19:89:fa:64:03:c6:
9f:c1:42:65:d8:45:4e:35:e1:8a:69:fc:e4:6c:a2:
c7:d4:9d:55:03:49:5c:9d:43:b1:1e:39:b8:25:b2:
42:c6:13:ca:d6:e6:22:2a:07:f1:f0:fa:54:b2:83:
50:40:94:95:57:95:27:15:ad:b0:af:da:e2:8f:c8:
66:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B3:D7:EC:E5:6D:4B:BA:79:EA:D6:3F:79:B0:30:08:FC:91:60:D2
X509v3 Authority Key Identifier:
keyid:8D:44:37:F0:5C:DE:6B:00:41:14:9F:61:C4:73:C8:ED:18:DB:4B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jUQ38FzeawBBFJ9hxHPI7RjbS0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6239a0-f61b-4d44-99fd-71b9091edab0/1/g7PX7OVtS7p56tY_ebAwCPyRYNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6239a0-f61b-4d44-99fd-71b9091edab0/1/jUQ38FzeawBBFJ9hxHPI7RjbS0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.236.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:00:c4:a0:00:94:a3:f3:3e:07:bc:bb:0c:f6:a7:44:5c:86:
a2:8f:14:ff:10:95:69:85:cd:d0:05:00:d7:22:92:90:e5:3e:
fe:72:61:83:93:86:94:1b:3a:03:37:47:af:3c:35:50:9d:5d:
67:a7:d2:0b:32:bd:e9:03:fb:a8:6e:a9:f5:2c:b4:88:15:91:
d1:73:e8:ca:f5:f4:a3:c9:f6:16:59:af:ea:5a:6b:7b:98:54:
c5:3e:98:d0:94:6b:5a:c9:13:5c:ed:d1:36:28:97:fe:04:d3:
02:c3:2a:73:1b:70:b0:ea:11:3d:ec:c3:92:cb:27:59:0a:69:
d5:b6:f5:a3:85:8f:a1:c2:f3:91:f7:ba:75:19:ce:55:a4:73:
e9:c2:66:82:57:bd:20:6e:4a:6d:82:d2:73:19:ae:fb:de:29:
9f:5f:16:4c:f5:f7:a3:30:2e:7a:c2:46:45:c2:f4:32:71:0c:
16:dd:63:39:47:be:97:e8:21:94:cd:7f:3b:94:78:e9:3b:75:
a1:0a:f7:b3:48:cf:28:12:3a:70:98:6f:1b:49:d4:43:ec:78:
db:34:2d:d2:2c:71:51:e3:a9:93:7f:a3:8c:41:22:0a:9f:de:
9b:08:bc:02:4c:c3:d5:6f:13:70:fd:bb:00:3f:b6:ea:a5:1d:
7d:0e:38:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:57 2024 by rpki-client on console-fra.rpki-client.org