Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/8r5aMx-_ACriS2SnrJEXIfZaiYA.roa
File: 8r5aMx-_ACriS2SnrJEXIfZaiYA.roa (raw, json)
Hash identifier: l1qbJpUpXKfxEpmYGwkmV19XghqD86JeWPjb+0OcPUw=
Subject key identifier: F2:BE:5A:33:1F:BF:00:2A:E2:4B:64:A7:AC:91:17:21:F6:5A:89:80
Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf
Certificate serial: 03DD8409
Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/8r5aMx-_ACriS2SnrJEXIfZaiYA.roa
Signing time: Sat 01 Jan 2022 08:06:06 +0000
ROA not before: Sat 01 Jan 2022 08:06:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60278
IP address blocks: 193.178.220.0/23 maxlen: 23
193.178.230.0/23 maxlen: 23
2a04:4940::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64848905 (0x3dd8409)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf
Validity
Not Before: Jan 1 08:06:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2be5a331fbf002ae24b64a7ac911721f65a8980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e9:63:50:4c:4d:65:03:e1:6f:a5:12:da:05:
9b:0b:b6:c6:f1:96:ef:4a:0f:a4:43:82:a9:13:82:
20:49:33:c3:65:3e:0e:7a:f9:f6:7e:41:75:b1:a7:
85:89:40:5b:a2:8f:9a:0b:82:7e:7e:b1:da:7f:2c:
62:6f:b0:77:9c:52:81:3d:2d:5e:a0:23:32:87:be:
c8:38:b4:98:bb:85:2e:f6:dd:2e:f9:83:cb:bc:5f:
87:42:27:50:2e:56:b2:78:db:9a:d4:be:cf:54:bd:
54:5d:34:5d:45:8b:d5:6a:fd:d1:06:81:39:b0:16:
12:8d:b6:a5:23:eb:85:2b:d0:2e:9a:2d:f7:f5:af:
49:30:64:5a:38:41:1d:3c:df:7c:44:f7:81:86:46:
ce:17:53:41:b4:69:af:b1:04:55:7e:14:83:d3:20:
e4:0e:53:b8:23:a7:3d:57:36:f5:6a:aa:fa:e9:9d:
e7:25:94:4c:19:fc:d3:33:16:a5:ea:8b:22:23:fc:
a4:de:78:df:ea:22:72:1f:0f:56:64:2d:ae:b4:30:
5c:9d:b3:8e:48:54:6e:d0:c7:2d:5e:0d:e9:ec:aa:
c7:4b:90:97:7b:ef:b5:56:88:85:95:32:70:9c:aa:
73:2e:ef:b4:ae:90:ad:d5:34:e7:b9:df:d2:8d:c4:
5e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:BE:5A:33:1F:BF:00:2A:E2:4B:64:A7:AC:91:17:21:F6:5A:89:80
X509v3 Authority Key Identifier:
keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/8r5aMx-_ACriS2SnrJEXIfZaiYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.220.0/23
193.178.230.0/23
IPv6:
2a04:4940::/29
Signature Algorithm: sha256WithRSAEncryption
5e:89:3d:2d:35:b0:b9:6a:38:db:de:31:83:5f:2b:7b:14:a4:
8f:6b:45:1d:28:a0:cb:89:ac:57:ee:82:a6:78:98:15:62:a2:
06:16:43:ef:50:c9:a7:49:dc:a7:3f:0a:40:36:d7:11:45:5a:
11:97:12:17:8d:01:6d:f2:99:c5:b3:eb:4c:72:8f:c1:69:80:
89:ed:49:13:88:a1:a9:56:aa:a6:90:48:6a:b4:4d:65:a3:d7:
f0:10:7c:ad:c1:53:d2:db:22:72:03:fd:b6:51:9f:1d:f0:f5:
d1:f1:03:b2:6c:9a:12:02:c0:d0:13:85:4a:a7:87:fa:06:f2:
a7:98:ed:00:12:f2:16:29:ee:10:66:d6:38:32:f2:f7:55:0f:
be:75:cd:df:b8:93:9e:9b:33:e5:3d:e1:63:0f:67:16:c4:12:
75:ae:43:e4:15:46:0d:c1:5c:bd:a6:aa:58:55:8f:17:63:7a:
89:33:54:5b:ad:56:40:38:be:b7:31:a2:53:85:4d:39:34:f2:
4d:26:95:6f:7b:31:97:82:3b:4f:e3:8f:ff:b2:6f:2c:2b:49:
cd:74:9c:b0:88:d9:31:be:76:92:0c:3e:6b:ba:5e:92:97:f9:
91:4b:ff:24:b9:f2:e8:6d:f3:b1:3f:da:53:9b:1a:65:1f:03:
33:9e:b5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:18 2023 by rpki-client on console-fra.rpki-client.org