Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/886f03-dc91-4a74-b034-b06228fcf2c1/1/hIkSrvIymswAsyw9d4AD3UMjzRM.roa
File: hIkSrvIymswAsyw9d4AD3UMjzRM.roa (raw, json)
Hash identifier: Idm/1gIQCxSw38FzuV1HAXZ51Dqfi/y5WWhJ4vU1NWA=
Subject key identifier: 84:89:12:AE:F2:32:9A:CC:00:B3:2C:3D:77:80:03:DD:43:23:CD:13
Certificate issuer: /CN=2526c138afa42a7d65cc7761ac4f1868366fa7e3
Certificate serial: 0368DB38
Authority key identifier: 25:26:C1:38:AF:A4:2A:7D:65:CC:77:61:AC:4F:18:68:36:6F:A7:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JSbBOK-kKn1lzHdhrE8YaDZvp-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/886f03-dc91-4a74-b034-b06228fcf2c1/1/hIkSrvIymswAsyw9d4AD3UMjzRM.roa
Signing time: Sat 01 Jan 2022 11:59:24 +0000
ROA not before: Sat 01 Jan 2022 11:59:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 193.111.24.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57203512 (0x368db38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2526c138afa42a7d65cc7761ac4f1868366fa7e3
Validity
Not Before: Jan 1 11:59:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=848912aef2329acc00b32c3d778003dd4323cd13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:53:38:96:30:31:da:4b:39:25:48:e6:46:aa:
be:01:13:58:a1:f3:f0:e6:5d:b0:08:fd:4a:66:ae:
7d:c8:71:6c:6d:45:8a:b3:11:be:f8:c1:ff:7f:6b:
5a:14:db:4a:bc:d5:4f:5d:32:34:7d:7b:d5:40:28:
f0:a6:bf:89:81:bc:f8:a3:fe:a9:b2:b2:03:88:1c:
cc:89:ab:b4:08:bc:21:70:9c:cc:5f:97:3b:2d:7a:
77:12:4e:9a:2b:e6:66:11:c3:8d:7e:46:9b:1b:b4:
84:4a:00:bb:80:43:43:7c:82:af:d3:65:39:23:4e:
bc:e3:4a:3d:a1:34:98:9c:b0:44:f4:0e:24:7e:76:
e3:3b:a5:5c:17:95:0d:52:f8:09:1b:2e:31:a4:7a:
0f:97:5e:6a:c4:62:89:5c:50:36:c4:e0:0c:09:1b:
66:e8:48:d6:a7:8f:72:be:24:c9:ad:f3:79:2e:26:
e8:7f:32:f7:ff:1a:be:b7:78:a4:87:e7:11:2f:43:
0e:32:34:e3:f2:9a:fa:c7:27:f6:74:f0:8d:39:5c:
9a:f9:60:13:2a:63:2f:92:c8:0f:61:2b:0f:17:dc:
48:e4:03:2a:ed:f6:81:90:fb:2b:87:8b:64:04:60:
2f:f2:5e:86:95:06:55:b1:78:ec:f3:30:e0:32:52:
4e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:89:12:AE:F2:32:9A:CC:00:B3:2C:3D:77:80:03:DD:43:23:CD:13
X509v3 Authority Key Identifier:
keyid:25:26:C1:38:AF:A4:2A:7D:65:CC:77:61:AC:4F:18:68:36:6F:A7:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JSbBOK-kKn1lzHdhrE8YaDZvp-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/886f03-dc91-4a74-b034-b06228fcf2c1/1/hIkSrvIymswAsyw9d4AD3UMjzRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/886f03-dc91-4a74-b034-b06228fcf2c1/1/JSbBOK-kKn1lzHdhrE8YaDZvp-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.24.0/23
Signature Algorithm: sha256WithRSAEncryption
56:40:b6:0b:03:17:b1:02:c2:36:82:8b:62:cb:6f:c8:92:ef:
ea:99:94:15:5c:21:7b:1e:b0:dd:f2:ed:61:d5:8b:1f:81:92:
33:b5:9f:e4:1f:5c:6f:a2:d0:ae:b0:af:e3:ae:60:67:1d:82:
2f:39:28:47:c3:21:ec:7d:25:73:0f:95:02:89:27:1e:f7:87:
94:90:0e:9c:90:62:4d:ee:00:3e:99:51:cf:8d:ff:43:34:0a:
a2:5e:8d:d6:4a:3a:8c:9a:77:cd:12:12:1a:1c:99:0b:b3:73:
ee:8c:b5:d8:e3:5c:ee:6c:a7:6a:f5:b5:fe:8f:4d:9e:ef:7b:
b5:56:da:4c:37:f6:49:2e:00:75:80:8e:ae:51:d9:48:14:7a:
40:e8:81:d5:77:30:8c:3e:d5:f4:fd:cc:9e:45:58:2b:92:95:
2d:10:2f:76:13:bb:bc:62:e1:c7:b9:44:0a:32:b4:90:d6:c1:
8c:49:00:0f:11:91:4a:59:20:78:d7:d7:e4:6a:28:de:77:9a:
74:7d:b0:21:7d:b9:87:b1:d3:ff:33:33:bc:d2:8e:2f:07:c9:
a2:d4:bb:2e:8d:61:f8:bc:fa:9a:c0:6b:2c:76:12:9a:22:99:
a2:e0:7b:d4:f6:70:34:49:6a:da:97:d6:39:31:f2:af:74:10:
89:ff:39:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:42 2024 by rpki-client on console-fra.rpki-client.org