Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/0BoolCRGG3ml2BoQS9QHFjpRzfQ.roa
File: 0BoolCRGG3ml2BoQS9QHFjpRzfQ.roa (raw, json)
Hash identifier: sk+EO8q37LJskBV4IXk35EPpafC6t6g4UAa2oC2gJAM=
Subject key identifier: D0:1A:28:94:24:46:1B:79:A5:D8:1A:10:4B:D4:07:16:3A:51:CD:F4
Certificate issuer: /CN=659c356633388e9bd897d000a3f38bc1e546ef4a
Certificate serial: 019737
Authority key identifier: 65:9C:35:66:33:38:8E:9B:D8:97:D0:00:A3:F3:8B:C1:E5:46:EF:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZZw1ZjM4jpvYl9AAo_OLweVG70o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/0BoolCRGG3ml2BoQS9QHFjpRzfQ.roa
Signing time: Wed 26 Jan 2022 18:39:25 +0000
ROA not before: Wed 26 Jan 2022 18:39:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 193.38.176.0/24 maxlen: 24
193.38.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104247 (0x19737)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=659c356633388e9bd897d000a3f38bc1e546ef4a
Validity
Not Before: Jan 26 18:39:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d01a289424461b79a5d81a104bd407163a51cdf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:86:10:ea:d4:51:7c:ce:79:96:f2:7c:85:48:
e6:59:03:1a:df:ae:bb:5a:ac:5c:56:19:98:63:c9:
0f:b9:7f:a8:36:38:89:49:dd:07:34:5a:9e:a7:a6:
3d:9b:ee:9b:93:4d:f0:94:f8:14:c2:5f:5f:10:d6:
5d:65:b8:2f:9c:5c:98:6b:dc:55:fe:3a:f8:0f:45:
6c:6f:75:38:d5:e6:6f:bc:71:78:2d:dd:ae:12:b2:
8e:2d:6c:23:2f:46:68:13:0b:d4:1c:0b:e3:b2:c9:
59:35:2f:1e:7e:a8:bd:ce:47:ba:36:5e:d1:0d:7a:
74:f4:e0:15:3f:1a:91:73:15:a0:08:9f:2b:0c:8a:
62:48:49:f3:ff:b3:c0:4e:82:bc:a8:f8:15:3f:8f:
ed:dd:90:5c:77:52:b7:1a:f5:83:17:b7:7e:14:c5:
c9:40:84:ab:cd:32:24:ec:a1:40:71:73:a8:f8:67:
58:95:84:e4:8e:ef:04:fb:0c:7e:49:43:a4:90:b2:
c4:5f:31:a6:44:9e:5d:f9:3e:11:b2:4e:b4:fb:6b:
5f:9a:25:d4:bc:e4:fe:58:e6:23:ff:72:32:d4:40:
62:d9:ea:2c:bf:cb:c0:98:f4:45:7f:29:c1:41:2f:
30:3a:c3:1a:65:3f:28:2d:64:17:75:c8:ed:9f:44:
4a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:1A:28:94:24:46:1B:79:A5:D8:1A:10:4B:D4:07:16:3A:51:CD:F4
X509v3 Authority Key Identifier:
keyid:65:9C:35:66:33:38:8E:9B:D8:97:D0:00:A3:F3:8B:C1:E5:46:EF:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZZw1ZjM4jpvYl9AAo_OLweVG70o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/0BoolCRGG3ml2BoQS9QHFjpRzfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/ZZw1ZjM4jpvYl9AAo_OLweVG70o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.176.0/23
Signature Algorithm: sha256WithRSAEncryption
24:e7:bc:22:a6:21:3c:b3:77:28:38:d0:33:2b:e5:89:53:b0:
d0:2d:80:23:78:fd:aa:13:5c:8d:dc:42:9f:66:42:3b:dd:0a:
41:9b:4b:3b:55:e9:8b:08:9e:79:b2:2e:ce:7a:b4:e2:b5:b8:
13:42:9b:98:2f:0b:2a:98:2d:73:fa:20:ec:ea:79:98:4f:9b:
b3:44:d4:26:c0:bb:4b:4f:35:6f:90:90:5d:c8:3c:d0:73:e4:
8b:4f:2d:55:39:63:3b:4b:f7:0d:69:0f:89:fb:24:5b:15:53:
94:04:a4:c0:4c:a0:0b:93:c5:74:0f:a9:fd:a9:9c:5e:fb:9e:
4f:20:08:9d:ec:46:d1:69:49:34:a9:67:56:c4:3b:34:8b:21:
12:36:75:78:f1:a5:09:e2:cd:9d:2d:1c:79:70:84:3a:d4:32:
c8:39:89:d6:a8:d7:58:da:c5:8b:51:64:c2:87:76:f7:c1:39:
30:61:ca:0f:af:4c:82:7d:fb:7f:5f:e1:17:48:98:db:f7:51:
d4:20:dc:e6:65:8c:c7:f6:a0:42:d0:04:5d:85:2d:13:48:9c:
74:63:f6:26:fd:46:50:d7:2c:9c:4f:11:81:a9:d3:f6:5d:b6:
7d:75:dd:99:a3:ca:12:dc:d9:2c:99:bc:eb:1d:bc:7c:a5:05:
72:11:66:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:41 2024 by rpki-client on console-ams.rpki-client.org