Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/dBxnF5dph6doqMzgfWMTqpM6k1I.roa
File: dBxnF5dph6doqMzgfWMTqpM6k1I.roa (raw, json)
Hash identifier: IzolF1HFyWsqhTwPI8yY3SBX3+2R92F7+XEH0nD1zQk=
Subject key identifier: 74:1C:67:17:97:69:87:A7:68:A8:CC:E0:7D:63:13:AA:93:3A:93:52
Certificate issuer: /CN=bc65b4ba4d7869d5cb8f9574f0f4feee70ebc6c5
Certificate serial: 0730CE41
Authority key identifier: BC:65:B4:BA:4D:78:69:D5:CB:8F:95:74:F0:F4:FE:EE:70:EB:C6:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGW0uk14adXLj5V08PT-7nDrxsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/dBxnF5dph6doqMzgfWMTqpM6k1I.roa
Signing time: Sat 01 Jan 2022 02:55:12 +0000
ROA not before: Sat 01 Jan 2022 02:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209242
IP address blocks: 193.188.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120639041 (0x730ce41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc65b4ba4d7869d5cb8f9574f0f4feee70ebc6c5
Validity
Not Before: Jan 1 02:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=741c6717976987a768a8cce07d6313aa933a9352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fe:0e:ef:4b:52:dd:ec:7e:c7:3d:2c:06:81:
68:4d:ae:41:13:13:82:cc:5d:db:7f:fd:ca:85:3d:
7b:62:c4:a7:4c:f3:13:b8:2d:c7:06:1f:38:b6:fd:
59:c0:72:28:a1:e2:de:03:15:64:87:28:a8:5c:b3:
2b:cc:75:16:be:dd:39:50:e9:9b:58:b6:a1:a9:c2:
c1:a4:e3:e9:8d:8a:4b:eb:31:3b:fa:c4:18:ba:0f:
f1:2c:2e:6e:8f:92:0e:4b:c5:d6:1f:ab:18:6b:e8:
ac:2f:00:4c:2c:55:7c:9b:bc:d4:91:4a:48:ed:b7:
91:30:e9:14:1b:e0:6d:1d:43:bd:da:5c:03:3a:5b:
e3:60:92:e6:42:b5:e9:c5:3d:8a:e0:67:79:39:f4:
bf:c2:88:05:46:33:cb:21:4f:13:cf:aa:f9:8d:c0:
6c:06:d7:b4:b0:54:aa:0c:29:72:f4:01:e5:24:c2:
62:ff:9b:e5:f9:bd:8a:a2:0e:24:c1:09:63:16:9a:
d6:b8:b7:f7:53:1b:e4:d7:2e:36:b7:ab:12:88:7f:
bc:5c:e5:69:8f:c7:6f:75:89:33:b8:f1:02:66:20:
1d:d5:77:78:b2:ce:ae:4f:b5:be:21:62:5d:89:2c:
29:c4:a0:60:55:6d:37:8d:40:83:3d:9b:38:f5:1d:
df:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:1C:67:17:97:69:87:A7:68:A8:CC:E0:7D:63:13:AA:93:3A:93:52
X509v3 Authority Key Identifier:
keyid:BC:65:B4:BA:4D:78:69:D5:CB:8F:95:74:F0:F4:FE:EE:70:EB:C6:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGW0uk14adXLj5V08PT-7nDrxsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/dBxnF5dph6doqMzgfWMTqpM6k1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/442101-780b-47ac-857d-f9e7cb03c527/1/vGW0uk14adXLj5V08PT-7nDrxsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.188.14.0/24
Signature Algorithm: sha256WithRSAEncryption
16:1b:2b:d7:0d:a5:73:bc:90:f9:7d:3d:a8:3b:af:da:7e:2f:
1a:91:73:07:19:a9:45:e6:85:98:f9:93:85:c4:49:21:1e:23:
9d:f9:9a:f1:e1:98:5b:00:49:d3:5f:ca:fa:c5:83:af:17:29:
e9:1b:3d:63:3a:26:4e:8e:b9:ee:f7:63:2e:5d:90:aa:4f:02:
aa:a3:d3:21:53:f3:dc:fd:27:21:2c:b4:71:5a:51:a0:48:2a:
f7:83:0f:db:f2:6c:fa:de:a9:31:15:fa:bd:e2:bc:2c:69:5b:
10:fb:f8:13:04:cd:ee:2d:8e:6c:1c:0b:2c:4a:91:97:00:2a:
c4:ae:7a:10:46:a2:d9:8d:24:21:fc:75:d1:ba:b0:9c:f1:cf:
a9:cc:34:65:12:7e:14:15:37:a6:a3:07:2f:9c:39:c8:69:16:
fa:86:27:49:aa:da:90:91:4a:19:49:c5:70:b8:8a:b2:62:88:
96:97:02:9d:12:48:08:6b:c0:46:ef:25:9f:a4:b3:c9:fe:ed:
1b:8f:23:6d:d4:5d:db:33:f0:48:fc:d3:f9:5b:be:15:e6:59:
66:bf:f4:12:de:5c:8c:8b:1a:9d:64:d2:ec:56:71:ab:8b:d9:
17:22:2e:c4:20:c6:d3:70:5e:ea:46:9d:bf:49:64:6c:29:73:
e8:2d:bd:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:03 2024 by rpki-client on console-fra.rpki-client.org