Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/I6Y4zHH8VDbsXwFcDkqppVK19TY.roa
File: I6Y4zHH8VDbsXwFcDkqppVK19TY.roa (raw, json)
Hash identifier: UHLwOn9fPG/croTcKoAO5UMfUucTFA/3nLeGxQJVjGU=
Subject key identifier: 23:A6:38:CC:71:FC:54:36:EC:5F:01:5C:0E:4A:A9:A5:52:B5:F5:36
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01847527F91059AD7DF0EC88470946265571
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/I6Y4zHH8VDbsXwFcDkqppVK19TY.roa
Signing time: Mon 14 Nov 2022 08:01:04 +0000
ROA not before: Mon 14 Nov 2022 08:01:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136923
IP address blocks: 194.180.37.0/24 maxlen: 24
193.42.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:75:27:f9:10:59:ad:7d:f0:ec:88:47:09:46:26:55:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 14 08:01:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23a638cc71fc5436ec5f015c0e4aa9a552b5f536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a3:85:da:b1:d8:55:7b:db:e2:19:42:23:1e:
b1:53:01:cd:ec:de:25:0e:7d:38:e9:68:77:6e:d8:
90:8f:db:ef:15:3f:42:2e:c9:a5:9e:ec:72:7f:ce:
03:55:5f:a4:02:c4:83:4b:f7:c9:1d:64:60:8a:dc:
96:a7:6c:aa:45:17:81:8a:82:61:72:d9:77:74:42:
f6:6c:ec:a3:d5:0e:fd:89:f9:ad:2a:e9:94:3a:2f:
cc:cd:95:69:53:f3:75:37:b1:9e:8f:99:1d:c6:94:
20:45:8c:c5:76:3b:54:cc:58:44:65:94:78:74:d0:
a8:d1:b3:2b:fa:f0:fe:0b:6e:d2:6d:c3:52:b6:2c:
53:7d:e9:5b:51:74:c9:21:1a:f1:fa:b5:eb:da:07:
a4:83:80:b8:b2:24:e6:c6:fb:a0:1a:23:49:a7:b5:
09:e3:39:a8:c1:9c:85:20:51:fc:de:41:69:ef:92:
78:a6:69:04:f8:7c:a7:7f:93:0b:82:83:0c:13:02:
4a:53:26:37:f6:61:f3:e8:69:45:2f:e4:1e:06:20:
5e:66:47:10:a0:92:8d:bd:d7:d6:48:20:67:fd:01:
45:82:c2:d2:d0:2d:93:2f:02:e2:d0:32:a6:dd:dd:
c4:1f:89:f3:17:f5:34:f9:35:6d:9e:32:38:06:a0:
e9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:A6:38:CC:71:FC:54:36:EC:5F:01:5C:0E:4A:A9:A5:52:B5:F5:36
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/I6Y4zHH8VDbsXwFcDkqppVK19TY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.35.0/24
194.180.37.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f6:03:82:45:59:51:ac:94:aa:95:49:66:1c:b7:00:29:a8:
fc:36:19:dc:22:45:9d:47:89:00:9d:cd:46:0c:fa:02:5a:06:
e0:3b:0f:b1:bb:00:f0:76:40:1a:b8:81:9b:e6:c9:dd:b0:bc:
cf:76:5c:cd:57:8d:3d:71:6f:c0:bd:74:22:44:64:a3:03:d0:
9d:5d:a3:e8:fa:8d:1c:5d:0f:8e:6c:47:f2:ae:9c:ac:62:41:
86:aa:7c:b4:0f:2a:b2:34:5d:ed:61:09:86:bb:6e:ec:eb:c6:
c4:c7:9a:4a:f5:ae:c6:4d:77:5b:1a:6b:8e:a4:3a:36:30:fe:
f8:64:9f:14:7f:4b:5b:43:f9:c3:ce:35:47:8f:05:b7:00:00:
71:29:a2:c0:43:6a:dd:78:0b:9c:ce:02:44:3c:5b:57:ee:f9:
0a:06:82:05:af:4f:f6:c0:33:51:f0:f6:86:37:fd:67:d5:ef:
69:b5:10:c6:83:9c:2d:6c:1e:d2:0a:b5:62:58:f0:32:94:c3:
0d:12:06:3c:b5:2a:51:14:36:05:11:c4:5f:ce:a9:9d:0c:b1:
e1:77:b1:76:f6:93:93:8d:91:1a:7f:5a:08:a1:e0:4b:a3:9c:
4a:75:c9:65:76:a2:62:48:af:d8:0a:cd:10:a6:02:81:ac:b9:
32:47:a2:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:03 2024 by rpki-client on console-fra.rpki-client.org