Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/d16e96-0313-4c9b-9c09-a95fe3102645/1/PbChaYEtFYMShYnPEcIop1KD-Eg.roa
File: PbChaYEtFYMShYnPEcIop1KD-Eg.roa (raw, json)
Hash identifier: 9iz4qfP9V7uIPMoZmTVs39QeQ53W5N759cUafJlyJbU=
Subject key identifier: 3D:B0:A1:69:81:2D:15:83:12:85:89:CF:11:C2:28:A7:52:83:F8:48
Certificate issuer: /CN=af93102511e660263f8ef6e4c1f9ab32393839b2
Certificate serial: 0184BDF6D37B161789DA38EDEF14AD699935
Authority key identifier: AF:93:10:25:11:E6:60:26:3F:8E:F6:E4:C1:F9:AB:32:39:38:39:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5MQJRHmYCY_jvbkwfmrMjk4ObI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/d16e96-0313-4c9b-9c09-a95fe3102645/1/PbChaYEtFYMShYnPEcIop1KD-Eg.roa
Signing time: Mon 28 Nov 2022 11:19:40 +0000
ROA not before: Mon 28 Nov 2022 11:19:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62121
IP address blocks: 193.200.90.0/23 maxlen: 23
2001:67c:564::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bd:f6:d3:7b:16:17:89:da:38:ed:ef:14:ad:69:99:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af93102511e660263f8ef6e4c1f9ab32393839b2
Validity
Not Before: Nov 28 11:19:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3db0a169812d1583128589cf11c228a75283f848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a6:4e:3a:05:ce:96:00:58:66:3d:17:12:e7:
ad:98:b9:e8:d0:46:eb:7b:18:07:69:ff:e9:59:af:
de:05:83:f8:73:58:0b:de:d6:78:46:6a:05:1a:dd:
2e:5c:17:50:8c:41:2c:67:a1:f9:fe:aa:3b:b3:9d:
02:b5:1e:18:a9:a5:e8:bb:71:49:58:ab:ca:18:5d:
18:8f:1d:f1:43:63:b5:22:04:e7:ea:62:75:84:1a:
3e:8b:91:d0:6b:e4:00:2c:8e:13:1c:b3:e1:01:cf:
80:b4:f9:4d:57:ac:0f:89:7c:03:b1:5e:81:5d:7e:
9b:e6:f5:1d:07:df:e9:a3:81:93:ff:1c:23:c7:35:
ab:3f:d3:ba:69:8f:b4:cd:b3:ed:c9:f1:24:76:34:
ef:dd:3e:62:5c:ee:06:cd:e1:cb:25:e0:a0:8b:92:
57:bd:67:42:b2:85:16:5e:da:8e:1d:12:c3:b5:3d:
18:c6:6f:4c:bc:22:2f:c5:f7:cf:58:4f:ba:b3:ac:
3a:cd:cb:b2:26:db:a3:d6:a3:39:30:c9:43:05:73:
c2:4a:fc:5a:93:42:bd:4e:6d:0a:9f:bc:fd:7a:e3:
82:c4:5a:17:cd:7c:47:40:8e:1f:08:d4:9f:f0:18:
0d:1e:60:7a:8c:c8:69:71:05:df:d0:33:c7:8f:35:
03:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B0:A1:69:81:2D:15:83:12:85:89:CF:11:C2:28:A7:52:83:F8:48
X509v3 Authority Key Identifier:
keyid:AF:93:10:25:11:E6:60:26:3F:8E:F6:E4:C1:F9:AB:32:39:38:39:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5MQJRHmYCY_jvbkwfmrMjk4ObI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d16e96-0313-4c9b-9c09-a95fe3102645/1/PbChaYEtFYMShYnPEcIop1KD-Eg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d16e96-0313-4c9b-9c09-a95fe3102645/1/r5MQJRHmYCY_jvbkwfmrMjk4ObI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.90.0/23
IPv6:
2001:67c:564::/48
Signature Algorithm: sha256WithRSAEncryption
2b:c9:54:bf:4a:79:b2:36:86:b0:39:36:ca:57:ae:19:be:e2:
51:51:4d:25:de:5e:94:85:1f:5f:e0:2d:5a:be:2e:a7:f5:83:
99:92:ea:28:fd:03:62:26:4c:73:c7:f4:2c:85:a5:b6:9c:7d:
20:68:40:ca:f4:ca:bb:ff:e8:40:79:54:c9:c7:bb:76:b6:5f:
50:e2:fb:4b:a3:23:4d:e1:7f:ee:51:1e:2f:ba:fa:ab:42:e5:
b6:05:17:c2:7f:16:60:3d:f0:52:66:ac:d5:a8:86:35:55:53:
32:63:c6:89:a6:b8:06:fe:f6:ce:67:4f:9a:85:da:95:25:2b:
ad:d7:b1:4e:24:2f:03:66:5a:05:93:2b:9e:a1:ab:f3:3a:6b:
8e:50:fb:7d:29:19:48:7a:89:58:2e:a8:52:45:d6:2b:bd:d7:
9a:f9:b8:5a:1c:2b:ab:04:bd:ff:c7:75:32:f6:2f:1a:d6:56:
60:ee:a8:b0:e3:20:53:3b:9c:a5:7d:f4:15:17:dc:08:36:36:
5c:3c:5b:87:6a:62:99:51:b7:94:71:db:73:9c:f0:00:0a:c8:
b2:d2:ed:85:44:83:ac:07:9b:e9:68:bf:ea:ce:e1:66:a2:1e:
18:7a:b2:95:9f:b4:bf:7d:91:2f:43:fa:3d:4e:d1:bf:8d:2b:
0a:71:47:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:56 2023 by rpki-client on console-fra.rpki-client.org