Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/c20ad5-fdfc-4458-85b1-bfacbb1a177d/1/iDOqenUbns7FPYqv6y-C-bjDeEk.roa
File: iDOqenUbns7FPYqv6y-C-bjDeEk.roa (raw, json)
Hash identifier: tXom3vCQJDBbSW3ECCMU33gUbkStfsTa4gLHNyWuvO8=
Subject key identifier: 88:33:AA:7A:75:1B:9E:CE:C5:3D:8A:AF:EB:2F:82:F9:B8:C3:78:49
Certificate issuer: /CN=f6f1c56daf705f12e95d42f477f8e0a3d86f3996
Certificate serial: 0911A391
Authority key identifier: F6:F1:C5:6D:AF:70:5F:12:E9:5D:42:F4:77:F8:E0:A3:D8:6F:39:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9vHFba9wXxLpXUL0d_jgo9hvOZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/c20ad5-fdfc-4458-85b1-bfacbb1a177d/1/iDOqenUbns7FPYqv6y-C-bjDeEk.roa
Signing time: Sat 01 Jan 2022 15:01:46 +0000
ROA not before: Sat 01 Jan 2022 15:01:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198682
IP address blocks: 193.39.164.0/24 maxlen: 24
193.39.164.0/22 maxlen: 24
2a0b:11c0::/48 maxlen: 48
2a0b:11c0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152150929 (0x911a391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6f1c56daf705f12e95d42f477f8e0a3d86f3996
Validity
Not Before: Jan 1 15:01:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8833aa7a751b9ecec53d8aafeb2f82f9b8c37849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:61:c8:a5:5b:28:96:2b:0d:ee:41:c5:a5:b3:
13:aa:aa:a7:0a:d3:a0:df:8c:21:d9:d5:0d:24:45:
67:7e:2b:03:db:e7:a1:3d:89:a8:6c:71:e2:f7:de:
3d:8d:b3:51:43:04:e1:99:2a:98:aa:a2:b9:fd:1a:
e2:b2:21:06:de:9a:d1:4b:e1:c6:83:32:e6:a5:bd:
f0:b1:ac:89:fd:75:27:1d:ca:3a:9f:dc:4e:b5:5b:
bd:69:25:d0:b0:5f:c4:48:7d:ad:e0:fe:3d:af:42:
68:04:17:9e:06:bb:d4:fc:51:a2:c0:92:15:a2:3c:
18:4c:ec:6d:25:82:cc:f4:b2:ab:79:da:f0:bd:a7:
76:28:62:a0:5b:9a:30:28:66:25:0f:b6:35:f0:d1:
ba:64:5a:4e:f7:f0:d2:4d:e4:7d:32:41:39:7b:6c:
04:f8:3c:eb:bc:07:b3:4a:26:dd:8b:a0:e8:e3:e6:
d9:c8:c0:06:b3:6d:bc:ed:c4:56:50:de:7b:f3:63:
77:fe:13:d1:76:3f:2e:30:28:33:b1:72:30:30:96:
51:52:ca:a6:3c:98:81:09:14:75:51:c9:03:d5:59:
d5:41:ad:97:23:19:f2:6d:54:c0:c9:63:b1:17:51:
bf:f0:bc:0e:a7:3f:7b:72:70:10:98:b4:40:5c:de:
48:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:33:AA:7A:75:1B:9E:CE:C5:3D:8A:AF:EB:2F:82:F9:B8:C3:78:49
X509v3 Authority Key Identifier:
keyid:F6:F1:C5:6D:AF:70:5F:12:E9:5D:42:F4:77:F8:E0:A3:D8:6F:39:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9vHFba9wXxLpXUL0d_jgo9hvOZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/c20ad5-fdfc-4458-85b1-bfacbb1a177d/1/iDOqenUbns7FPYqv6y-C-bjDeEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/c20ad5-fdfc-4458-85b1-bfacbb1a177d/1/9vHFba9wXxLpXUL0d_jgo9hvOZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.164.0/22
IPv6:
2a0b:11c0::/47
Signature Algorithm: sha256WithRSAEncryption
8b:b3:56:b4:a7:5c:62:54:e7:59:db:c4:05:6d:59:55:cf:2f:
fe:d7:23:6d:fa:0c:04:b1:36:e8:20:d5:95:5c:3e:53:25:b7:
11:ce:9a:aa:73:a4:5a:48:4c:5e:c3:88:fe:37:68:2b:e2:96:
0c:a1:1f:69:ee:5e:be:c5:8e:31:13:71:6d:17:4c:c2:67:0b:
23:f8:2b:6e:c7:e7:ed:4f:28:45:d2:d9:1d:bc:13:d7:de:32:
16:77:c5:d9:5e:a6:de:a7:c8:3f:ed:a1:bf:80:9f:4a:03:98:
5a:1a:4b:2f:c1:9b:af:aa:0f:af:16:70:fd:74:90:a7:7f:e0:
c1:d1:56:26:2f:00:11:6b:ee:e8:91:c3:82:b6:d6:98:b8:a4:
0f:a4:36:36:7d:3f:92:f4:04:e8:ad:24:c9:a4:1a:02:71:83:
44:45:0c:5b:17:26:ec:c7:e4:45:c1:ef:d0:72:91:d2:d7:fa:
dd:53:04:68:46:8c:4b:c2:56:7a:87:ae:66:39:41:c8:c9:70:
82:23:ca:28:2f:49:a4:10:71:13:41:c6:70:a7:16:6d:39:6f:
e7:ed:cb:59:a5:92:ea:f3:c0:0a:e5:bd:9f:85:bf:ea:3c:1d:
98:35:77:30:85:b6:ce:d2:4b:c4:31:52:72:9b:60:7e:8d:ff:
ce:f3:d2:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:41 2024 by rpki-client on console-fra.rpki-client.org