Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/Ex9QDI5pbIg1ivLSmUZpYNAZXcY.roa
File: Ex9QDI5pbIg1ivLSmUZpYNAZXcY.roa (raw, json)
Hash identifier: kfCxtDj9/zw/O9zfIKH1zJ59JstRci0E6VDMw4qzahw=
Subject key identifier: 13:1F:50:0C:8E:69:6C:88:35:8A:F2:D2:99:46:69:60:D0:19:5D:C6
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 018410647E7CCCCA9FA4408675E2C5B065A6
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/Ex9QDI5pbIg1ivLSmUZpYNAZXcY.roa
Signing time: Tue 25 Oct 2022 18:25:32 +0000
ROA not before: Tue 25 Oct 2022 18:25:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 193.111.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:10:64:7e:7c:cc:ca:9f:a4:40:86:75:e2:c5:b0:65:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Oct 25 18:25:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=131f500c8e696c88358af2d299466960d0195dc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fb:1b:f3:d4:b9:69:b7:38:16:c5:09:d9:e9:
bb:c0:31:78:22:e8:72:ac:76:c8:1d:7b:d2:4f:da:
0a:a5:77:31:fc:99:26:95:a6:60:28:d0:48:96:79:
5e:c6:79:b9:41:f5:ef:0c:fb:82:17:47:55:70:98:
88:fc:45:31:28:ff:b9:e1:eb:2f:50:b8:8b:98:5b:
71:49:04:32:31:d9:85:be:48:52:c8:5e:8d:79:7b:
57:c5:57:6e:d2:3e:84:26:d1:30:25:31:72:3b:fd:
af:27:c4:39:23:da:14:48:7e:ba:49:f4:29:45:ac:
86:b6:74:79:b7:cc:e0:7f:f3:b5:65:50:71:76:31:
6e:27:f9:84:73:9e:b7:0b:6c:7b:f9:b3:07:bc:53:
f1:15:dc:95:df:2c:f7:26:37:30:bd:e9:10:a2:a3:
de:f9:ab:e3:68:b8:46:7e:88:7e:fd:e5:c4:48:db:
41:ba:22:ed:a8:e3:c9:0b:da:ad:d5:2f:9d:0b:51:
1d:43:f7:f2:f2:54:29:a9:b1:73:f9:fe:d6:a2:33:
6a:0a:3f:d5:18:ee:c2:77:a2:34:a3:ad:c7:1a:a2:
35:f7:6a:53:3e:9c:ad:2a:27:13:87:af:8c:db:c0:
50:89:4f:f8:5e:83:1f:4a:c9:45:5a:09:e9:20:37:
94:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:1F:50:0C:8E:69:6C:88:35:8A:F2:D2:99:46:69:60:D0:19:5D:C6
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/Ex9QDI5pbIg1ivLSmUZpYNAZXcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.77.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:33:9c:83:09:63:6b:b8:54:c1:01:56:3d:c4:76:23:f1:c3:
1f:3e:d4:95:26:a8:d6:ca:fd:46:bb:7b:11:10:dc:5d:6e:0c:
62:25:6e:17:61:63:4b:56:a6:80:7e:51:b4:28:40:32:cf:fc:
f2:b7:bb:63:af:6d:50:12:a5:d0:97:68:36:0c:62:d8:67:d6:
c4:b5:55:83:22:dc:0b:59:7e:61:17:be:64:c5:00:10:11:0d:
ce:2d:f0:1a:8a:a6:63:a3:5a:e2:ae:7d:9b:4a:cc:9c:09:15:
92:2e:3f:ae:ae:1b:f9:0e:44:fd:54:97:77:92:04:42:8e:b6:
02:83:41:dc:1a:a1:86:9d:1b:74:c5:2e:ee:ac:92:97:cd:6a:
70:10:e6:67:d5:1d:3c:a3:17:72:7e:a7:ed:0e:63:0a:38:8e:
11:29:bc:ea:57:d7:41:fb:c3:a9:43:6a:af:f2:4a:8d:99:55:
09:7a:08:83:b6:55:56:9a:12:bd:57:b1:dd:8c:e0:83:d5:55:
df:97:69:57:c2:d0:a2:44:20:83:f1:01:2f:52:36:ab:22:5c:
37:a1:fe:a1:ae:49:dd:d8:33:42:3a:ca:03:e6:fd:17:c0:79:
58:af:18:df:25:c1:48:c5:17:35:89:88:0b:b4:88:0d:34:7e:
74:da:82:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:49 2024 by rpki-client on console-ams.rpki-client.org