Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/oh9UmOjYrHK6Ly80dICjbhO-ckY.roa
File: oh9UmOjYrHK6Ly80dICjbhO-ckY.roa (raw, json)
Hash identifier: LaOxeMED3SUEf+IuMK61pNnSP0OD3LKTgIXcrD/oUSc=
Subject key identifier: A2:1F:54:98:E8:D8:AC:72:BA:2F:2F:34:74:80:A3:6E:13:BE:72:46
Certificate issuer: /CN=f4e9d53310243187083fdc9609735465b1089043
Certificate serial: 13E63B6C
Authority key identifier: F4:E9:D5:33:10:24:31:87:08:3F:DC:96:09:73:54:65:B1:08:90:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OnVMxAkMYcIP9yWCXNUZbEIkEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/oh9UmOjYrHK6Ly80dICjbhO-ckY.roa
Signing time: Wed 06 Apr 2022 10:22:16 +0000
ROA not before: Wed 06 Apr 2022 10:22:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30769
IP address blocks: 193.19.88.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 333855596 (0x13e63b6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e9d53310243187083fdc9609735465b1089043
Validity
Not Before: Apr 6 10:22:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a21f5498e8d8ac72ba2f2f347480a36e13be7246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:32:c8:7b:88:e5:ab:ab:c4:ec:ad:68:bb:58:
bd:c0:f4:59:1e:73:78:df:33:41:a8:ab:10:54:06:
01:23:12:68:4c:03:bd:04:eb:be:71:fa:9c:76:46:
f0:e2:e3:83:1d:07:3d:b4:e9:fa:3b:90:ce:33:33:
1c:72:fe:0d:8b:f8:22:0d:6a:4c:67:a0:d9:41:cb:
7a:49:3c:d5:24:5d:5c:c3:70:52:86:e6:12:69:e9:
fb:10:b3:88:b6:43:c8:2e:9b:d8:69:29:36:a0:e5:
02:73:36:ad:d6:f5:34:6d:e9:50:9d:f6:56:8e:53:
2b:0d:8d:f8:50:a9:f9:85:c8:cf:70:0c:66:70:e1:
f9:9a:57:6f:2e:04:0a:c2:1b:a9:42:86:68:62:ce:
90:63:14:a7:cb:b3:59:1c:97:4e:64:45:1c:c0:50:
29:9c:fd:8c:d4:ae:4f:e0:92:f3:70:c7:00:6d:69:
66:df:18:b6:d8:ce:a0:b5:16:45:f9:de:b2:b5:77:
c8:99:87:11:21:39:f2:f3:53:93:af:ba:89:5c:b7:
47:13:73:b0:db:89:6d:20:af:fc:56:10:a6:71:c0:
ea:62:de:ca:32:21:9c:43:3a:dd:b5:8c:b0:75:14:
5d:30:45:ea:73:f7:e5:05:20:80:6d:31:fe:76:fa:
00:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:1F:54:98:E8:D8:AC:72:BA:2F:2F:34:74:80:A3:6E:13:BE:72:46
X509v3 Authority Key Identifier:
keyid:F4:E9:D5:33:10:24:31:87:08:3F:DC:96:09:73:54:65:B1:08:90:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OnVMxAkMYcIP9yWCXNUZbEIkEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/oh9UmOjYrHK6Ly80dICjbhO-ckY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/9OnVMxAkMYcIP9yWCXNUZbEIkEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.88.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:7c:cc:06:45:47:c7:da:62:4c:23:c4:da:b2:42:93:4d:95:
3f:ac:75:1c:e9:56:79:cf:bd:22:fe:22:bf:ea:f3:ac:23:8e:
a8:da:21:5e:aa:27:ec:23:b9:b3:e1:49:ea:a2:68:8c:80:41:
88:1f:93:12:54:98:95:dc:d7:5d:61:9b:aa:84:7b:d9:e1:67:
59:ab:9e:84:87:86:c4:4a:85:a0:b2:70:7b:25:2a:f3:b9:6c:
81:fc:7c:f6:8a:aa:66:92:7f:31:1a:96:d3:26:28:f9:1f:2f:
8b:a5:aa:fd:39:a6:d7:c7:62:a7:ec:2a:9d:3a:be:0e:37:51:
2a:46:c1:7d:f2:10:03:e9:d0:c4:d7:e8:16:45:d3:40:02:f8:
11:58:05:e9:81:67:87:e2:b4:6b:17:74:25:34:2e:ec:70:41:
13:64:90:84:8f:b3:72:e5:b9:7d:ea:9e:1a:35:b8:f7:fc:ba:
e1:f5:29:2f:92:74:d7:dc:4b:ff:dd:bd:6d:3d:42:4c:cf:30:
f6:78:c1:09:a5:e6:c6:87:0f:44:74:9a:2e:70:3e:04:ba:19:
62:40:1c:58:c4:ce:22:23:1b:f6:d7:2b:4a:03:67:85:15:52:
f0:81:f1:81:29:8b:9b:ce:83:91:70:21:65:57:7d:89:e0:68:
c0:0a:30:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:13 2024 by rpki-client on console-fra.rpki-client.org