Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/eda15a-0423-46bd-b32a-52147aae0eb4/1/DWn8HhFhl5X0unw2WDVOLKPgWLc.roa
File: DWn8HhFhl5X0unw2WDVOLKPgWLc.roa (raw, json)
Hash identifier: 00qQmEPh3GQhvDdPoti3CUI07hzdO9QIBl/JDf9SquA=
Subject key identifier: 0D:69:FC:1E:11:61:97:95:F4:BA:7C:36:58:35:4E:2C:A3:E0:58:B7
Certificate issuer: /CN=9c83133a7e0593bb398eadb92758cbc92c9d65a5
Certificate serial: 01852A3700E6C5818BBAF57462630BABC481
Authority key identifier: 9C:83:13:3A:7E:05:93:BB:39:8E:AD:B9:27:58:CB:C9:2C:9D:65:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nIMTOn4Fk7s5jq25J1jLySydZaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/eda15a-0423-46bd-b32a-52147aae0eb4/1/DWn8HhFhl5X0unw2WDVOLKPgWLc.roa
Signing time: Mon 19 Dec 2022 11:48:45 +0000
ROA not before: Mon 19 Dec 2022 11:48:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51262
IP address blocks: 193.17.26.0/24 maxlen: 24
2a0f:7940::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:37:00:e6:c5:81:8b:ba:f5:74:62:63:0b:ab:c4:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c83133a7e0593bb398eadb92758cbc92c9d65a5
Validity
Not Before: Dec 19 11:48:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d69fc1e11619795f4ba7c3658354e2ca3e058b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:24:c1:3b:ef:d3:76:d7:1d:2e:eb:93:90:30:
b0:a1:8e:41:10:ac:b0:8f:aa:d7:ef:f2:e5:33:72:
bd:01:0c:82:2d:cd:00:88:28:68:0a:a5:c6:bd:db:
4a:2c:98:db:24:e8:e9:30:26:06:a4:b5:18:30:a6:
2d:b7:91:fa:dc:bd:1c:89:ef:2b:c0:67:af:0b:ac:
8a:2b:5c:61:68:33:ba:fd:47:16:97:0a:8a:4f:72:
e0:40:65:29:ae:51:f3:95:37:8f:29:24:46:6e:0f:
9e:df:bf:05:64:86:92:fc:63:45:70:c7:72:dd:0a:
a2:a7:4d:73:e1:16:4d:7e:28:00:68:1e:8c:bd:68:
c7:91:45:c9:e8:2b:6a:ef:e0:f2:6e:08:1b:3d:dd:
ea:53:01:3a:ea:b8:28:d4:4c:1b:c4:19:64:20:0a:
f6:71:0b:6f:0b:d1:42:85:b5:d6:6f:d2:9a:d5:a8:
29:30:7c:37:2d:db:99:77:33:79:e9:97:72:c5:6c:
da:5b:4c:a4:05:4d:9c:44:e0:da:06:fa:39:22:d2:
89:2b:34:56:31:ac:15:d8:f8:49:e6:27:90:cb:a6:
29:12:a1:ee:a6:9d:7d:18:43:0f:5b:4c:02:6e:32:
11:2a:94:4f:ee:5a:2c:7e:9e:89:a9:53:9d:ca:2d:
1b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:69:FC:1E:11:61:97:95:F4:BA:7C:36:58:35:4E:2C:A3:E0:58:B7
X509v3 Authority Key Identifier:
keyid:9C:83:13:3A:7E:05:93:BB:39:8E:AD:B9:27:58:CB:C9:2C:9D:65:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nIMTOn4Fk7s5jq25J1jLySydZaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/eda15a-0423-46bd-b32a-52147aae0eb4/1/DWn8HhFhl5X0unw2WDVOLKPgWLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/eda15a-0423-46bd-b32a-52147aae0eb4/1/nIMTOn4Fk7s5jq25J1jLySydZaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.26.0/24
IPv6:
2a0f:7940::/29
Signature Algorithm: sha256WithRSAEncryption
01:8b:73:3d:9f:d5:da:91:ea:11:c7:9f:0c:1f:75:c2:18:c1:
ec:58:c0:1d:13:d3:6d:be:fd:80:6a:03:f2:fd:b2:25:19:3d:
c9:20:cc:e6:77:46:b2:f2:75:16:57:89:cb:4f:68:2b:5a:de:
42:2f:37:31:cf:a7:a1:9d:da:85:38:6c:42:e3:8c:ee:a3:64:
12:10:e7:4f:da:b6:86:a2:a4:1c:bf:cd:d5:8c:d1:a5:d6:51:
15:ec:64:2b:32:78:4a:81:e3:db:47:8b:e3:c2:17:ae:e3:b0:
9f:ea:02:bb:99:dd:94:7d:b6:e2:05:45:15:c4:52:ed:f7:7b:
a3:e1:ee:ed:94:b1:43:99:6d:be:4c:35:bb:0b:bb:aa:75:af:
bf:33:e9:7e:d0:af:9e:6a:09:23:b4:24:d1:22:ac:9a:ce:f7:
ba:b3:6e:00:9b:6a:42:ac:3f:15:ab:92:04:0f:22:47:88:13:
b2:bc:d5:93:3c:3d:5b:a4:56:c5:41:fa:55:93:11:62:79:78:
df:77:97:be:70:03:b4:f7:db:05:cb:04:0e:0e:bf:69:14:90:
76:ca:1c:f8:6a:d4:d1:bd:5d:8f:64:3a:fd:76:79:8d:bd:ab:
65:1e:bc:ee:3d:34:d8:05:7a:e0:b4:ad:fe:1c:aa:a7:e3:87:
fb:7e:ba:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:16 2024 by rpki-client on console-fra.rpki-client.org