Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/218760-62fe-45e9-9a4d-c0e33bbf5238/1/t9sv9F5D4lN4QAM7lkGktw6Kcho.roa
File: t9sv9F5D4lN4QAM7lkGktw6Kcho.roa (raw, json)
Hash identifier: DvMt9Z/+CNHrU8sAKnHeYteNXL0+76rkDJuQn412Vks=
Subject key identifier: B7:DB:2F:F4:5E:43:E2:53:78:40:03:3B:96:41:A4:B7:0E:8A:72:1A
Certificate issuer: /CN=7a8192e9f740e8d238059e28a0a037083081b7d2
Certificate serial: 07696A6F
Authority key identifier: 7A:81:92:E9:F7:40:E8:D2:38:05:9E:28:A0:A0:37:08:30:81:B7:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eoGS6fdA6NI4BZ4ooKA3CDCBt9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/218760-62fe-45e9-9a4d-c0e33bbf5238/1/t9sv9F5D4lN4QAM7lkGktw6Kcho.roa
Signing time: Sat 01 Jan 2022 05:53:14 +0000
ROA not before: Sat 01 Jan 2022 05:53:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208856
IP address blocks: 193.32.112.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124349039 (0x7696a6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a8192e9f740e8d238059e28a0a037083081b7d2
Validity
Not Before: Jan 1 05:53:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7db2ff45e43e2537840033b9641a4b70e8a721a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:97:28:72:50:d6:0e:88:d6:3d:bb:e6:97:b6:
81:ff:5d:e2:8b:f5:d0:a9:b5:aa:28:97:9a:74:d0:
98:5e:7b:42:48:f0:5a:28:bd:23:a4:2a:bb:bf:d2:
f8:2e:32:87:0b:77:8e:ed:84:d4:36:ee:37:22:08:
27:9e:13:fa:82:81:c6:89:de:61:2d:a4:0d:79:46:
b4:81:a9:a7:6a:c4:b1:06:c9:e4:50:11:f0:85:aa:
9f:4c:ba:0b:b1:fa:ba:11:15:61:bb:b6:58:9a:36:
88:6d:25:32:03:5b:1b:dd:c0:86:d4:2a:91:44:d7:
53:ef:f8:f9:a0:eb:ac:56:f3:4b:57:d5:ef:aa:3f:
da:09:89:3f:de:bf:eb:5f:4e:6c:eb:95:30:ee:35:
8d:20:96:d8:b0:ee:dc:8d:94:18:3a:7b:5d:2b:c2:
bf:1a:7c:84:84:b4:14:22:32:96:45:50:5a:b6:49:
fa:3e:76:b9:3d:2e:42:71:3b:57:33:2d:c7:25:a8:
cd:5a:29:92:16:03:52:6b:f0:e4:2d:9e:f5:15:21:
1a:1a:7d:54:64:27:6b:a6:49:e0:3a:22:90:53:b2:
95:f5:5f:1f:94:b8:ec:e9:90:0a:af:ab:9c:fd:23:
f2:2b:a7:a7:1f:ab:00:9e:40:ed:04:4f:17:e9:fa:
70:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:DB:2F:F4:5E:43:E2:53:78:40:03:3B:96:41:A4:B7:0E:8A:72:1A
X509v3 Authority Key Identifier:
keyid:7A:81:92:E9:F7:40:E8:D2:38:05:9E:28:A0:A0:37:08:30:81:B7:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eoGS6fdA6NI4BZ4ooKA3CDCBt9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/218760-62fe-45e9-9a4d-c0e33bbf5238/1/t9sv9F5D4lN4QAM7lkGktw6Kcho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/218760-62fe-45e9-9a4d-c0e33bbf5238/1/eoGS6fdA6NI4BZ4ooKA3CDCBt9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.112.0/22
Signature Algorithm: sha256WithRSAEncryption
91:2d:63:8e:c4:70:cd:07:22:22:f4:8e:a3:12:1d:c0:30:2e:
a3:be:44:df:15:4c:33:68:28:e9:41:20:44:a6:aa:3f:46:ca:
a1:ba:bc:a7:07:38:b3:c3:4e:ec:aa:46:71:b1:8d:1b:32:c7:
a2:a5:a0:51:97:6a:09:89:5c:43:51:aa:bf:b3:36:ec:4b:32:
90:a1:d9:41:d2:b7:fa:aa:bf:c1:c7:69:a3:20:c1:e0:3e:49:
53:c4:8b:52:08:78:ba:b4:64:59:9f:71:5f:fa:af:8b:84:8d:
41:8d:5d:9a:15:ba:30:d6:b0:38:6c:00:4a:75:45:9c:11:a3:
80:be:9f:46:e5:3f:22:e2:08:a5:c9:58:ee:4e:24:4a:c3:fe:
f1:c6:1e:87:3d:e9:1b:90:54:ce:b2:2c:5b:1b:de:82:30:1c:
06:66:48:54:53:ee:13:5d:55:0d:37:4a:8f:2c:bf:48:f4:72:
b4:c7:ff:c7:2d:44:fa:56:6f:a6:b9:2e:29:b1:87:ae:bc:6c:
21:b9:63:1e:ca:64:19:26:5f:60:be:f6:ba:93:3f:ac:28:54:
61:06:42:f0:43:5a:6e:b9:bd:f9:c7:c2:a8:28:b4:5b:7a:50:
f9:81:39:49:ed:06:f2:b6:e5:1a:45:e5:d8:e8:65:65:f1:1c:
bf:2b:68:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:04 2024 by rpki-client on console-ams.rpki-client.org