Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/29440b-c59a-4608-bc63-a4ca3363d701/1/8BY7nDzCvOGKqDp2WJDBGxIM1v4.roa
File: 8BY7nDzCvOGKqDp2WJDBGxIM1v4.roa (raw, json)
Hash identifier: xkSZDOA8sUkKjUbwhL8SVOKg/51A5zwS86wD10BoKSQ=
Subject key identifier: F0:16:3B:9C:3C:C2:BC:E1:8A:A8:3A:76:58:90:C1:1B:12:0C:D6:FE
Certificate issuer: /CN=5afdbf9883c18c4ce165d8b8503c6201745d6887
Certificate serial: 01CB7637
Authority key identifier: 5A:FD:BF:98:83:C1:8C:4C:E1:65:D8:B8:50:3C:62:01:74:5D:68:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wv2_mIPBjEzhZdi4UDxiAXRdaIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/29440b-c59a-4608-bc63-a4ca3363d701/1/8BY7nDzCvOGKqDp2WJDBGxIM1v4.roa
Signing time: Sat 01 Jan 2022 00:58:35 +0000
ROA not before: Sat 01 Jan 2022 00:58:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211268
IP address blocks: 193.32.59.0/24 maxlen: 24
193.56.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30111287 (0x1cb7637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5afdbf9883c18c4ce165d8b8503c6201745d6887
Validity
Not Before: Jan 1 00:58:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0163b9c3cc2bce18aa83a765890c11b120cd6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6a:60:4f:97:9b:96:1e:6d:dc:81:89:0f:1e:
74:34:37:7c:4a:60:35:b9:32:57:4c:bc:1f:0f:cc:
d2:f1:d6:56:f4:3f:fb:82:84:71:a7:d0:d7:cf:10:
e4:fa:94:f2:71:ef:d9:6b:de:fc:e6:e2:fa:69:47:
0c:e5:9e:fe:e7:55:93:d5:69:d7:65:3e:48:86:45:
da:45:f6:d1:71:f7:e3:f0:fc:c4:8a:97:41:99:ae:
79:99:38:31:06:2a:04:db:d1:10:23:30:8d:f7:f4:
e4:af:da:b2:1d:3d:74:43:62:8b:32:d1:02:f6:2d:
03:1f:57:a3:74:04:f4:74:e5:07:70:d8:a6:af:d5:
11:31:4d:85:16:0c:db:c6:7d:20:c6:1f:16:c9:89:
9c:a3:0c:76:23:f5:21:86:f3:e3:38:04:0b:1a:1a:
a0:96:47:9c:50:c4:71:6e:3f:61:23:93:47:2a:bb:
d7:aa:e9:6f:4b:1b:1a:c9:c9:83:56:0f:05:61:1f:
e4:be:11:f5:ee:6a:c2:59:37:24:32:7c:ea:7e:19:
6a:d4:b5:76:e2:33:1c:a5:4e:8e:58:a7:43:90:f9:
80:2c:ac:46:1c:2e:95:51:28:0a:9f:27:47:33:b0:
b8:0f:4a:27:85:b2:38:99:1d:4a:4f:37:72:54:b2:
4a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:16:3B:9C:3C:C2:BC:E1:8A:A8:3A:76:58:90:C1:1B:12:0C:D6:FE
X509v3 Authority Key Identifier:
keyid:5A:FD:BF:98:83:C1:8C:4C:E1:65:D8:B8:50:3C:62:01:74:5D:68:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wv2_mIPBjEzhZdi4UDxiAXRdaIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/29440b-c59a-4608-bc63-a4ca3363d701/1/8BY7nDzCvOGKqDp2WJDBGxIM1v4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/29440b-c59a-4608-bc63-a4ca3363d701/1/Wv2_mIPBjEzhZdi4UDxiAXRdaIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.59.0/24
193.56.132.0/24
Signature Algorithm: sha256WithRSAEncryption
71:c3:25:a3:a9:25:5d:81:b3:1f:4a:0f:f0:76:6b:e9:ce:20:
01:42:ca:62:f3:7d:79:d6:c9:b7:65:13:dc:98:ff:43:a6:36:
4f:28:0d:14:5e:82:04:51:f5:3d:43:59:81:43:5c:ee:ee:ca:
27:ac:48:d8:45:9e:ca:58:4b:ae:50:fb:16:dc:8c:2a:12:6f:
3d:4c:69:26:0d:d5:8d:44:72:8b:fa:ef:35:41:16:6a:48:e8:
99:29:e9:4f:04:c1:b3:b0:b2:12:3a:d6:8e:d1:29:48:91:90:
4e:90:09:d4:39:88:93:dc:82:60:2f:0d:04:3b:64:d8:45:47:
c9:71:84:b5:1b:f1:04:9d:92:a1:93:a3:47:d5:6e:26:69:9c:
0a:a2:bb:33:51:a8:26:47:49:a4:eb:81:39:ad:10:6e:30:b8:
7f:12:13:e2:f7:44:b1:ab:cb:f4:bd:a3:ae:83:28:21:1a:81:
f5:cb:33:5e:6d:c3:ff:72:67:e9:d3:d5:3e:0a:94:12:05:ad:
de:b7:7e:e4:3c:f0:7b:9c:be:65:15:0a:71:37:12:68:41:2e:
6d:6b:88:c9:d6:ff:a5:07:05:54:4c:a1:81:b4:0a:05:51:6c:
1a:da:b0:6b:1e:d2:db:1f:1d:aa:43:66:fb:4a:d7:2b:6b:a5:
47:b9:43:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:42 2024 by rpki-client on console-ams.rpki-client.org