Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/44ee8d-2ae8-4844-a935-d24c2ce23ab7/1/2jPNnqNlE7XokryEO3UHPs-IXjg.roa
File: 2jPNnqNlE7XokryEO3UHPs-IXjg.roa (raw, json)
Hash identifier: yUhkKhXx6RejlMHX4HsRCPjHNnOqy0ULw7l85/nzf3s=
Subject key identifier: DA:33:CD:9E:A3:65:13:B5:E8:92:BC:84:3B:75:07:3E:CF:88:5E:38
Certificate issuer: /CN=8fc1d6be3ba789c5daeb597a135de5ecccab8f95
Certificate serial: 050161E4
Authority key identifier: 8F:C1:D6:BE:3B:A7:89:C5:DA:EB:59:7A:13:5D:E5:EC:CC:AB:8F:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j8HWvjunicXa61l6E13l7Myrj5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/44ee8d-2ae8-4844-a935-d24c2ce23ab7/1/2jPNnqNlE7XokryEO3UHPs-IXjg.roa
Signing time: Sat 01 Jan 2022 14:06:01 +0000
ROA not before: Sat 01 Jan 2022 14:06:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35266
IP address blocks: 193.46.61.0/24 maxlen: 24
193.104.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83976676 (0x50161e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fc1d6be3ba789c5daeb597a135de5ecccab8f95
Validity
Not Before: Jan 1 14:06:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da33cd9ea36513b5e892bc843b75073ecf885e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d3:d5:75:89:2c:9d:30:db:bc:c9:25:fd:04:
9b:9f:ab:d8:39:62:9d:9a:d2:88:38:b6:a9:35:37:
04:b3:81:a5:07:62:51:16:44:02:7e:9e:7b:2d:1d:
c5:e6:29:bd:a9:b9:56:78:14:d4:b3:5e:98:8b:54:
48:68:81:f7:58:6b:25:a0:6f:55:4e:87:d2:a3:b9:
ff:ac:62:32:cf:34:c5:04:c7:50:a7:7b:a0:97:32:
c4:e5:62:66:6a:6e:c2:15:b7:19:bb:88:ee:70:23:
7d:05:33:f7:a6:f7:7b:aa:4a:ff:09:f9:52:92:31:
37:b8:1c:33:37:34:87:61:b9:bd:b5:b3:bb:34:fb:
4d:b8:85:b8:ba:53:2f:c4:8e:6a:01:fa:0a:06:b2:
5a:d1:d2:66:d6:5f:1d:26:4a:6f:1b:7d:20:07:2a:
6b:e4:1e:24:86:b1:b8:66:5a:40:2e:4c:7a:79:41:
60:93:cf:b6:e2:7f:11:6a:a6:5f:d9:56:bb:ea:96:
c6:a2:53:93:a0:31:f8:70:f9:0e:98:c7:58:73:09:
03:14:16:0c:12:21:dc:5d:7f:6b:98:4e:51:51:5c:
f3:1e:e5:ac:05:64:9d:0e:7c:5a:1f:d9:06:89:ca:
41:9b:07:e5:b4:28:3a:5c:cb:96:08:63:d7:27:04:
0d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:33:CD:9E:A3:65:13:B5:E8:92:BC:84:3B:75:07:3E:CF:88:5E:38
X509v3 Authority Key Identifier:
keyid:8F:C1:D6:BE:3B:A7:89:C5:DA:EB:59:7A:13:5D:E5:EC:CC:AB:8F:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j8HWvjunicXa61l6E13l7Myrj5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/44ee8d-2ae8-4844-a935-d24c2ce23ab7/1/2jPNnqNlE7XokryEO3UHPs-IXjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/44ee8d-2ae8-4844-a935-d24c2ce23ab7/1/j8HWvjunicXa61l6E13l7Myrj5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.61.0/24
193.104.108.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:7d:76:54:4e:78:7c:72:92:b6:c2:c2:e4:36:8d:03:4c:29:
6c:66:e5:17:d5:95:2f:8a:84:96:41:89:ca:6a:33:c7:8c:de:
ca:ca:7a:4f:ae:af:f3:aa:80:25:25:ef:43:72:d7:54:96:a6:
32:dc:f0:a2:43:07:45:33:2b:11:bd:3b:3a:e5:84:17:73:2d:
0a:51:73:b6:10:d9:8e:2c:3e:0f:69:37:63:e9:d5:4c:ca:9e:
39:0e:48:f3:ab:06:fb:95:06:54:d5:eb:1e:82:67:9f:a7:ef:
c2:e2:ab:60:3e:22:70:50:12:9d:4b:19:87:10:06:e5:80:56:
df:ad:2b:0e:20:b1:c5:ad:1b:76:e6:d9:41:e8:df:89:d4:85:
99:ab:06:25:2a:12:28:ba:bb:5e:35:8d:d2:67:a2:af:52:c8:
c1:60:9a:44:82:25:97:ff:39:48:74:5c:04:51:c9:af:c1:63:
73:25:37:61:1f:e4:6b:30:ab:a3:98:70:5d:7b:8f:55:9a:86:
f3:0f:55:f6:ad:a0:5c:ef:1c:e5:7b:86:78:f5:6a:07:32:38:
29:11:c4:35:e7:6d:37:da:05:2c:69:86:19:07:37:cd:5b:d2:
a7:fe:a2:11:be:47:75:62:1e:ce:e5:65:82:70:36:0f:49:bd:
b7:0b:ba:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:36 2024 by rpki-client on console-fra.rpki-client.org