Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/74940a-d9fa-4552-be5c-a7ade434d451/1/oP5_EEd2nCLvPnie2MSj4ZQunb4.roa
File: oP5_EEd2nCLvPnie2MSj4ZQunb4.roa (raw, json)
Hash identifier: g6YxQrISIIXb8R131zNpA1v/O0h7NTny1gReHmppmRU=
Subject key identifier: A0:FE:7F:10:47:76:9C:22:EF:3E:78:9E:D8:C4:A3:E1:94:2E:9D:BE
Certificate issuer: /CN=beb12ce6a91030e27d5abad146df27bc2880652b
Certificate serial: 069BEC27
Authority key identifier: BE:B1:2C:E6:A9:10:30:E2:7D:5A:BA:D1:46:DF:27:BC:28:80:65:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrEs5qkQMOJ9WrrRRt8nvCiAZSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/74940a-d9fa-4552-be5c-a7ade434d451/1/oP5_EEd2nCLvPnie2MSj4ZQunb4.roa
Signing time: Sat 01 Jan 2022 09:55:45 +0000
ROA not before: Sat 01 Jan 2022 09:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42705
IP address blocks: 193.186.198.0/24 maxlen: 24
193.186.196.0/22 maxlen: 22
193.186.196.0/24 maxlen: 24
193.186.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110881831 (0x69bec27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beb12ce6a91030e27d5abad146df27bc2880652b
Validity
Not Before: Jan 1 09:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0fe7f1047769c22ef3e789ed8c4a3e1942e9dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8f:4d:cc:35:dd:cb:30:5c:a4:cc:19:d5:bd:
6c:37:bd:30:ba:da:80:c3:6f:cd:d0:41:c3:14:99:
c9:6a:aa:f0:75:ec:b8:1c:ef:e9:44:d7:4d:f0:ae:
32:10:21:a3:53:f6:ee:c1:71:19:27:dd:5a:fb:ed:
14:36:6d:b1:3a:54:70:0f:2a:13:2f:41:61:63:34:
19:a3:9a:89:84:3f:34:0a:c2:d3:c7:9f:f9:6b:de:
aa:6f:55:b8:d6:4b:6e:73:0a:89:de:d5:ee:5a:1d:
bd:da:b6:9e:12:d9:d4:f0:23:3a:03:ae:9e:68:46:
4b:39:90:37:16:aa:4d:91:80:81:54:af:96:ca:26:
14:8a:88:93:fc:46:4c:1d:ec:fa:78:cb:a3:aa:ba:
fc:4b:d2:53:66:91:f8:48:9c:01:03:2e:24:5e:a8:
20:2a:35:52:eb:5c:ef:06:d6:84:63:50:c3:23:e2:
aa:0c:fb:a3:e0:80:5e:15:89:88:62:b3:21:66:6f:
10:8f:d9:7b:e7:64:48:fa:4a:4f:95:bc:1d:8f:63:
f7:30:76:f0:b4:76:6b:12:a2:38:75:42:1b:71:07:
c7:27:2b:ce:01:b4:87:2c:3e:14:22:c7:65:57:e3:
5e:1b:da:bb:2c:fe:bc:4e:a7:e5:d6:7b:db:fd:fa:
4e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:FE:7F:10:47:76:9C:22:EF:3E:78:9E:D8:C4:A3:E1:94:2E:9D:BE
X509v3 Authority Key Identifier:
keyid:BE:B1:2C:E6:A9:10:30:E2:7D:5A:BA:D1:46:DF:27:BC:28:80:65:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrEs5qkQMOJ9WrrRRt8nvCiAZSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/74940a-d9fa-4552-be5c-a7ade434d451/1/oP5_EEd2nCLvPnie2MSj4ZQunb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/74940a-d9fa-4552-be5c-a7ade434d451/1/vrEs5qkQMOJ9WrrRRt8nvCiAZSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.196.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:24:78:7c:5e:ef:0d:24:7f:df:97:8a:88:d9:af:7a:18:7b:
1b:8e:19:eb:b4:23:aa:89:c4:d9:0d:33:40:d6:5a:70:e9:6b:
27:d9:01:d4:91:cb:70:bc:ee:63:ac:11:a4:90:f1:c5:29:97:
ee:c1:bb:e9:6f:88:18:9c:9d:37:47:30:e6:ee:38:ed:70:36:
64:40:4f:4c:2a:a2:97:dc:07:5d:ef:ba:f0:8f:e1:5c:b1:bf:
10:a3:73:89:72:9b:c0:a1:18:2a:8a:a8:e7:5b:4c:55:f3:23:
d9:f7:e9:c3:17:7f:69:ed:f9:e6:fb:98:c0:15:66:03:5d:02:
9c:9f:60:71:a6:a9:1f:40:85:3e:12:eb:42:cc:a2:c7:a2:15:
99:e8:56:f3:a2:7c:9d:48:e0:1a:e1:c5:c5:e8:6d:e1:a2:65:
ee:c3:f8:c1:8b:23:f5:0d:6a:15:db:15:73:eb:1f:a4:ec:63:
5a:2c:bf:75:ee:ae:e7:7e:64:37:85:7c:fb:44:eb:95:cf:43:
d3:96:83:0e:d0:70:0d:99:98:63:2f:42:42:a9:42:fe:38:13:
b4:20:86:6f:6b:0d:8e:de:10:8f:cf:01:64:30:0a:07:ba:e4:
80:31:e0:39:46:e3:28:98:05:ea:38:30:05:d5:fd:3c:8b:04:
2c:53:85:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:33 2024 by rpki-client on console-fra.rpki-client.org