Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/orhq9nSQXPsYMN12rJMuSQTiR9w.roa
File: orhq9nSQXPsYMN12rJMuSQTiR9w.roa (raw, json)
Hash identifier: PzCHNcOW3CDdKrPl6iIZM8K8tfQWGJH5hhidwh1LY+U=
Subject key identifier: A2:B8:6A:F6:74:90:5C:FB:18:30:DD:76:AC:93:2E:49:04:E2:47:DC
Certificate issuer: /CN=f2693085b5f75c0f10de08e22cbe4b062451b150
Certificate serial: 1C68
Authority key identifier: F2:69:30:85:B5:F7:5C:0F:10:DE:08:E2:2C:BE:4B:06:24:51:B1:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mkwhbX3XA8Q3gjiLL5LBiRRsVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/orhq9nSQXPsYMN12rJMuSQTiR9w.roa
Signing time: Fri 11 Mar 2022 14:35:08 +0000
ROA not before: Fri 11 Mar 2022 14:35:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 193.200.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7272 (0x1c68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2693085b5f75c0f10de08e22cbe4b062451b150
Validity
Not Before: Mar 11 14:35:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2b86af674905cfb1830dd76ac932e4904e247dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:56:c7:2a:9f:78:10:7d:bf:ac:1b:83:ea:9d:
9b:e4:c3:15:32:14:c9:d6:f3:99:9e:c4:40:06:94:
53:4b:a7:3f:c0:6f:a0:50:5c:f1:00:1a:d0:f2:6a:
87:25:75:ee:4d:ec:ba:44:3b:2e:98:6b:f6:a9:f1:
dd:1b:b0:aa:51:ed:c0:95:e2:65:09:f8:7d:cb:4f:
d4:6d:d1:8f:1a:37:35:90:dd:db:d0:eb:ff:48:1b:
5a:04:5a:3c:7a:51:03:ff:c5:c4:28:a8:75:5c:62:
0e:20:02:bd:05:06:e2:51:73:a3:4f:c9:af:17:b7:
14:25:a2:e2:96:6c:89:52:a4:5f:35:63:33:6b:fb:
21:98:6f:54:c8:d2:9b:4e:4d:5c:d4:64:b4:13:a6:
d8:a3:4d:39:12:64:2d:18:51:e9:7e:cc:26:bd:f1:
b3:7d:f1:14:27:2e:98:7c:f8:4d:e6:63:26:50:ed:
c1:a0:ed:ac:bb:1e:e5:53:3c:c1:2e:a9:4d:cc:00:
08:a5:22:bd:a7:4c:f4:e0:8b:1d:44:ad:32:bb:b1:
f8:8c:5d:88:43:98:a0:56:4c:f0:69:6b:1f:20:70:
c4:47:15:88:1d:2c:0f:ee:76:d5:81:db:e6:84:21:
76:f4:aa:0e:c9:94:b6:9b:b4:f8:a1:ca:d5:53:74:
63:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B8:6A:F6:74:90:5C:FB:18:30:DD:76:AC:93:2E:49:04:E2:47:DC
X509v3 Authority Key Identifier:
keyid:F2:69:30:85:B5:F7:5C:0F:10:DE:08:E2:2C:BE:4B:06:24:51:B1:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mkwhbX3XA8Q3gjiLL5LBiRRsVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/orhq9nSQXPsYMN12rJMuSQTiR9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/173327-9742-435b-86c0-55e85ea09dde/1/8mkwhbX3XA8Q3gjiLL5LBiRRsVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.60.0/24
Signature Algorithm: sha256WithRSAEncryption
02:bd:23:d4:35:20:12:5b:46:17:b4:b0:15:6b:f5:c5:6d:77:
fe:86:bb:2d:ca:25:87:ed:10:12:0c:f0:d5:96:6d:99:3c:b1:
c0:ad:6d:fd:a9:3d:0e:72:62:a3:15:f2:2c:7c:1d:f5:0e:97:
98:9c:96:07:52:21:4d:1e:5d:69:09:0a:4c:8d:d2:74:08:16:
58:3d:d8:1b:b2:ef:4e:74:5f:bd:bb:02:77:ba:8d:cf:0b:62:
a5:f7:4d:ee:bc:6e:4a:60:7a:86:86:01:e9:01:8d:5b:8c:38:
d7:59:08:1d:95:97:45:a3:f3:8b:3f:e5:41:a3:58:1b:e0:e5:
29:07:d3:44:73:42:5d:a8:aa:68:c4:10:5d:1a:69:76:96:18:
e0:57:11:aa:f1:21:4b:41:1a:c2:45:2d:8b:9c:05:41:33:26:
e7:67:55:7d:8d:9b:5a:b6:ce:36:d8:e8:46:d5:79:ef:6c:b2:
c1:f8:10:51:40:db:09:ff:72:6c:d6:4e:16:5e:13:38:8b:82:
74:c3:4a:7e:ad:9b:a0:7e:df:6c:17:14:42:4c:20:f7:88:7b:
c3:b0:1b:ed:e8:a4:ea:2d:4c:be:2f:d8:90:e9:12:14:67:bb:
a9:26:59:ca:62:5d:dd:7f:a7:b5:1c:d9:61:e3:f1:70:06:6a:
6a:0d:d8:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:50 2024 by rpki-client on console-fra.rpki-client.org