Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d3b542-6f21-4dc8-9e6f-4492d9f2f438/1/IBsNd3oTaYda1fzm37aWdeYbXnE.roa
File: IBsNd3oTaYda1fzm37aWdeYbXnE.roa (raw, json)
Hash identifier: OhLEbHxRH6kOxBY5wZR9ja0tWnvNdrn4aSv8X1lUcM4=
Subject key identifier: 20:1B:0D:77:7A:13:69:87:5A:D5:FC:E6:DF:B6:96:75:E6:1B:5E:71
Certificate issuer: /CN=06a4d77dc2e19e6f9603274c0923a61a8addb496
Certificate serial: 018484D2E6680C86A7B7B42269350E9AC1DB
Authority key identifier: 06:A4:D7:7D:C2:E1:9E:6F:96:03:27:4C:09:23:A6:1A:8A:DD:B4:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BqTXfcLhnm-WAydMCSOmGordtJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d3b542-6f21-4dc8-9e6f-4492d9f2f438/1/IBsNd3oTaYda1fzm37aWdeYbXnE.roa
Signing time: Thu 17 Nov 2022 09:02:04 +0000
ROA not before: Thu 17 Nov 2022 09:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1342
IP address blocks: 193.163.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:84:d2:e6:68:0c:86:a7:b7:b4:22:69:35:0e:9a:c1:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06a4d77dc2e19e6f9603274c0923a61a8addb496
Validity
Not Before: Nov 17 09:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=201b0d777a1369875ad5fce6dfb69675e61b5e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:46:7c:2f:1f:22:0e:ae:8c:cc:6e:2c:3d:13:
51:b8:0b:2b:a4:a1:a0:6b:07:b1:0c:b2:33:66:b4:
ac:a5:d3:75:52:4c:d9:1a:5d:be:2b:16:53:ad:ee:
90:b6:f8:7a:5a:06:e8:77:f3:95:27:4d:83:3c:8e:
5e:6e:1a:90:fc:04:5b:6a:52:f8:1a:61:eb:a3:ef:
dc:54:21:ad:6c:ac:09:23:4e:2b:d5:56:77:cb:d8:
02:58:80:da:17:38:99:c3:8d:69:c4:fb:2d:41:c6:
c2:d1:dd:ae:52:65:90:dc:4d:d8:d3:29:41:80:54:
50:27:9c:56:ae:55:a3:7a:ef:6d:c3:9a:f4:76:b4:
20:c6:42:2a:c1:b5:02:67:b6:50:cc:a9:6d:eb:42:
e8:7a:a9:57:9f:91:58:f1:d5:ff:96:8a:d8:b3:59:
b8:37:1c:8e:c3:06:f2:02:cc:92:ce:de:4d:d5:0b:
8e:2b:07:5c:29:9e:4d:84:4c:0b:a1:27:e0:01:6e:
69:4a:8c:c1:ea:bf:fe:74:cf:ba:ae:f0:7a:55:1f:
05:03:4b:a5:f5:1e:35:2d:76:92:a9:92:2a:2d:73:
7b:2b:80:4d:2c:e8:52:5f:e7:89:02:a0:4e:bf:13:
6b:a2:5d:c4:65:9f:37:3d:34:60:42:2e:f1:49:35:
80:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1B:0D:77:7A:13:69:87:5A:D5:FC:E6:DF:B6:96:75:E6:1B:5E:71
X509v3 Authority Key Identifier:
keyid:06:A4:D7:7D:C2:E1:9E:6F:96:03:27:4C:09:23:A6:1A:8A:DD:B4:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BqTXfcLhnm-WAydMCSOmGordtJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d3b542-6f21-4dc8-9e6f-4492d9f2f438/1/IBsNd3oTaYda1fzm37aWdeYbXnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d3b542-6f21-4dc8-9e6f-4492d9f2f438/1/BqTXfcLhnm-WAydMCSOmGordtJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.4.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:8a:1a:8f:4d:99:19:a8:23:e3:9e:70:12:df:13:43:2d:a0:
03:fe:cb:41:a9:fb:77:a3:1c:72:dc:ad:b9:2b:9d:d4:ee:4b:
91:0f:1d:71:b3:c6:79:9e:db:d6:0c:a9:10:8a:a6:5e:30:7c:
a8:48:f6:e7:8f:63:ce:91:e9:26:b5:28:bd:3c:ad:eb:3f:bd:
55:4d:a7:c9:80:3f:16:5c:69:d6:4d:de:dd:f7:b4:f5:07:be:
72:17:94:29:31:ab:2d:b2:de:2d:0b:7d:95:fd:b8:66:7f:a3:
aa:2b:c4:e0:e1:ca:a9:1a:4f:3a:39:5e:3f:d5:d9:fd:a9:e6:
c6:13:62:f3:44:b7:05:68:74:9a:45:f3:ed:7f:78:d5:68:d6:
33:7a:6d:51:20:03:1d:3b:15:9a:02:ba:64:90:7d:b7:a6:27:
ef:11:1d:39:42:32:b9:7d:33:b3:9b:ca:fe:9e:a2:3f:0d:6b:
b0:41:73:6b:df:95:80:31:72:3a:b6:01:d5:96:51:f3:19:d5:
33:0d:d3:76:14:0a:4f:29:bf:46:b7:ca:99:3d:00:36:25:7c:
9b:81:37:8b:2f:9c:c6:f9:73:df:ae:5e:3f:33:b5:d3:07:80:
8d:02:f1:10:41:23:e4:65:71:1c:ab:54:bb:0b:8e:9d:4e:1d:
5d:49:d4:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:36 2024 by rpki-client on console-fra.rpki-client.org