Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/0qZDBEiDOkNOARxhsTjiVNuzGlE.roa
File: 0qZDBEiDOkNOARxhsTjiVNuzGlE.roa (raw, json)
Hash identifier: b+VL0/hqPHrGY2h3GO4r73OP5Ux6j/kUb/jfGNfVRUE=
Subject key identifier: D2:A6:43:04:48:83:3A:43:4E:01:1C:61:B1:38:E2:54:DB:B3:1A:51
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0F7D2B6D
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/0qZDBEiDOkNOARxhsTjiVNuzGlE.roa
Signing time: Sat 01 Jan 2022 08:05:00 +0000
ROA not before: Sat 01 Jan 2022 08:05:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44597
IP address blocks: 193.232.225.0/24 maxlen: 24
2a0c:a9c7:225::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259861357 (0xf7d2b6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 1 08:05:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2a6430448833a434e011c61b138e254dbb31a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6e:b2:b9:ec:41:52:5b:21:39:a7:af:1f:ef:
9b:5e:f8:e9:bd:d2:7b:a7:1a:1b:32:16:eb:e2:5f:
40:49:cb:bb:29:a2:56:5e:c1:bd:2b:09:fc:d0:c2:
70:04:f2:2c:04:89:3d:02:48:95:da:54:2e:ad:73:
06:27:3b:8f:1b:09:a2:92:73:5d:64:0b:16:5b:5a:
e4:50:85:88:b4:8f:af:73:f7:e4:bb:c6:0f:f6:82:
10:61:d0:ce:6e:fc:ac:0e:8b:ec:91:35:29:a7:ea:
f6:8e:f8:09:76:02:d5:20:c2:f8:df:df:01:f4:d3:
99:b4:2d:60:e9:7c:8c:13:ce:3c:b7:b2:13:fc:a5:
c6:07:33:61:21:0e:54:61:7e:8a:89:87:22:f7:4c:
5c:76:ca:a1:b0:71:54:df:a7:25:21:81:6e:05:87:
38:f4:93:42:d5:72:af:b5:69:74:7a:c3:ca:10:2f:
44:94:19:1f:e7:09:b8:7e:02:1a:d5:d8:ae:38:21:
2f:7a:a0:9a:2c:fa:16:9c:b7:ac:7d:0a:fb:76:04:
26:ff:6d:bc:20:36:df:dc:3e:a5:1a:3a:77:90:4d:
21:73:fa:a2:7b:e2:1f:fd:5b:51:c0:9e:95:fc:5b:
8a:b8:31:70:ea:f3:75:31:f7:e8:2a:d7:5c:b4:83:
50:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A6:43:04:48:83:3A:43:4E:01:1C:61:B1:38:E2:54:DB:B3:1A:51
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/0qZDBEiDOkNOARxhsTjiVNuzGlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.225.0/24
IPv6:
2a0c:a9c7:225::/48
Signature Algorithm: sha256WithRSAEncryption
a8:34:b9:18:b4:1c:94:45:0f:bb:18:bf:19:06:65:0e:a8:cf:
9e:0c:50:00:66:ba:bb:f6:31:67:15:f2:a8:a3:fe:13:9e:6d:
9c:b6:64:66:48:b8:2d:f9:58:9c:7d:70:cc:03:a7:e6:f6:21:
a5:8c:b5:e5:73:e2:da:66:18:a9:c8:3b:a7:89:88:b2:b9:18:
70:07:81:11:70:28:a1:f7:4e:36:ab:7c:5e:e3:e0:ff:00:37:
37:61:18:fe:e7:68:8b:d3:a1:c1:d1:02:7b:9e:4e:f5:b8:b5:
9f:e4:0d:8f:f3:66:d5:68:57:1b:db:fc:82:3c:3c:e9:e5:de:
75:f0:49:f1:26:a3:8d:79:a3:e6:bb:8c:bd:a9:45:53:f8:3a:
af:04:2f:09:a9:89:3c:f9:dc:2d:79:b2:19:c5:27:a6:d4:46:
33:23:a8:d5:d1:6f:17:90:58:8f:bf:8e:2d:18:50:2e:e2:de:
4b:e0:e7:94:25:44:a8:7e:87:5e:57:70:98:97:17:6a:4c:83:
6f:a3:4a:bd:9e:a4:10:9f:e8:72:da:0d:97:23:0e:b4:66:a3:
c6:15:ad:6c:a8:29:92:58:32:87:64:ef:d5:5d:f2:47:f3:da:
01:bf:60:26:4c:b2:ed:19:1a:c4:d2:f5:d4:3e:a7:a1:fe:67:
fa:93:ba:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org