Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/e8hENISme07MZQSi2LSjCBrVjjQ.roa
File: e8hENISme07MZQSi2LSjCBrVjjQ.roa (raw, json)
Hash identifier: LaqWbt0xeCm9tLVKUNQhdBSnjVPLPrCk+sB/XNuvFzA=
Subject key identifier: 7B:C8:44:34:84:A6:7B:4E:CC:65:04:A2:D8:B4:A3:08:1A:D5:8E:34
Certificate issuer: /CN=a640c751ebfb4807d84622e806cb3d0b9dd81069
Certificate serial: 12C9F478
Authority key identifier: A6:40:C7:51:EB:FB:48:07:D8:46:22:E8:06:CB:3D:0B:9D:D8:10:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkDHUev7SAfYRiLoBss9C53YEGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/e8hENISme07MZQSi2LSjCBrVjjQ.roa
Signing time: Tue 25 Jan 2022 12:58:02 +0000
ROA not before: Tue 25 Jan 2022 12:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21436
IP address blocks: 193.108.165.0/24 maxlen: 24
2001:67c:17b0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 315225208 (0x12c9f478)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a640c751ebfb4807d84622e806cb3d0b9dd81069
Validity
Not Before: Jan 25 12:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bc8443484a67b4ecc6504a2d8b4a3081ad58e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:25:f8:01:f9:88:1e:dd:c8:e4:c7:85:c8:2e:
d5:db:aa:70:12:5c:86:ba:09:b1:8c:5d:10:c8:3c:
3a:ad:73:5c:80:ff:47:08:7d:1a:4b:67:62:cd:96:
9f:71:c6:48:fc:ec:11:6f:e1:1a:23:1b:39:a0:a6:
1e:71:ba:5b:24:08:06:11:9d:3d:bb:29:ca:b5:d6:
de:af:25:6b:6e:cb:ab:f1:1d:8f:48:1a:ef:d1:95:
03:c8:8b:90:be:a8:d3:d6:d8:b7:27:cb:92:6d:7e:
36:47:27:49:04:52:47:b3:e8:f5:2b:3f:85:0d:75:
a3:d2:ea:a2:72:24:46:1d:f0:63:56:29:d1:85:42:
40:97:66:d0:e6:3b:90:5f:28:73:d3:b8:38:b9:c5:
5d:16:b1:82:f0:ea:65:88:ab:a1:0a:b2:71:71:8c:
80:f8:f8:81:15:ac:fc:af:4f:7f:52:5b:97:3f:da:
3d:87:75:4e:3c:92:55:f0:98:d4:49:62:d6:8d:63:
e5:9c:f2:5e:cf:a9:ea:40:bb:04:b1:9e:ed:fa:01:
aa:a2:9e:46:fc:92:5c:df:ac:15:ab:b4:52:25:37:
83:f3:eb:29:33:d0:8c:69:3d:98:95:e6:cc:dd:7e:
20:9f:d9:a2:6e:f8:36:94:b4:c1:70:a7:2b:00:36:
05:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C8:44:34:84:A6:7B:4E:CC:65:04:A2:D8:B4:A3:08:1A:D5:8E:34
X509v3 Authority Key Identifier:
keyid:A6:40:C7:51:EB:FB:48:07:D8:46:22:E8:06:CB:3D:0B:9D:D8:10:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkDHUev7SAfYRiLoBss9C53YEGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/e8hENISme07MZQSi2LSjCBrVjjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/pkDHUev7SAfYRiLoBss9C53YEGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.165.0/24
IPv6:
2001:67c:17b0::/48
Signature Algorithm: sha256WithRSAEncryption
ba:c7:fe:9f:4f:d3:17:1e:be:8e:41:40:af:9f:bd:43:e2:c6:
de:2b:7f:d5:dc:84:58:57:95:23:d1:3c:00:53:48:18:dc:a0:
7b:b0:29:c0:87:62:e1:b7:37:00:63:da:b5:50:74:54:51:46:
2a:8c:cb:1d:d7:5b:2d:bb:b8:ac:10:e0:a1:de:5d:6d:64:41:
f0:39:48:aa:2c:cf:2b:a1:13:7d:f6:c4:1a:70:f2:61:e8:98:
9b:d0:98:25:b1:19:a4:6e:d8:87:8d:4c:cd:9b:5e:86:db:71:
27:e3:c2:1e:c1:d2:eb:2f:34:0f:19:be:5c:49:79:f4:5c:1e:
cf:2b:6a:35:13:7a:da:1f:38:d3:8b:8c:c9:25:0c:1c:6c:93:
3f:0b:9f:ec:0b:f1:30:a4:e1:bd:b8:b0:44:b8:1f:39:8a:77:
e3:c7:95:13:b9:53:71:c2:3a:e2:66:3d:ec:e5:eb:77:ec:40:
5a:f4:67:2b:50:70:25:b1:d0:61:90:1c:84:d3:9f:41:c0:66:
aa:38:5d:54:c5:c5:24:2c:1d:0a:11:84:0f:16:d6:1a:27:73:
8a:2c:5b:aa:e5:d9:8d:af:5e:8a:cd:bf:50:e3:1f:4d:fb:8d:
42:a2:ad:8f:b8:b7:68:8f:f9:fb:22:27:a8:7a:00:37:83:e9:
53:ab:5e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:03 2024 by rpki-client on console-ams.rpki-client.org