Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/14ead9-cbb1-4639-81a7-d8b8202d7786/1/9UZkJ0N5qYqVfUZecnVBR1mQayU.roa
File: 9UZkJ0N5qYqVfUZecnVBR1mQayU.roa (raw, json)
Hash identifier: OJygxF14mZi6HdrIjkzuNDSgyZw19pqWVn9pQT6gb44=
Subject key identifier: F5:46:64:27:43:79:A9:8A:95:7D:46:5E:72:75:41:47:59:90:6B:25
Certificate issuer: /CN=9f1bd9732e6cdd6e7494d79187fca855b5199909
Certificate serial: 040BF9FC
Authority key identifier: 9F:1B:D9:73:2E:6C:DD:6E:74:94:D7:91:87:FC:A8:55:B5:19:99:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nxvZcy5s3W50lNeRh_yoVbUZmQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/14ead9-cbb1-4639-81a7-d8b8202d7786/1/9UZkJ0N5qYqVfUZecnVBR1mQayU.roa
Signing time: Sat 01 Jan 2022 11:54:56 +0000
ROA not before: Sat 01 Jan 2022 11:54:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 193.33.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67893756 (0x40bf9fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f1bd9732e6cdd6e7494d79187fca855b5199909
Validity
Not Before: Jan 1 11:54:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f54664274379a98a957d465e7275414759906b25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:08:eb:2f:d3:73:38:c3:9d:3b:d9:42:97:cc:
4a:04:33:72:75:2c:95:a0:a3:af:f0:83:61:a3:12:
85:c6:8c:f7:e5:03:59:e3:8b:99:70:ff:44:ac:e3:
04:68:1b:ca:17:d8:18:36:c3:4a:e5:f6:a0:a6:88:
55:1f:9a:3a:0a:19:fc:4e:80:ae:22:e7:b9:77:d4:
af:84:3b:a1:e6:a6:44:9d:7c:4c:ae:08:f6:70:6d:
d2:24:55:fb:20:c1:76:65:53:83:1f:d4:d9:05:e2:
18:a7:0e:98:eb:b2:6a:81:55:fa:07:91:09:ca:35:
6a:09:fb:51:2e:ed:0f:39:18:52:70:7b:94:a8:fe:
06:4f:b4:ca:c0:60:33:f4:05:fc:a0:3e:5d:7d:f2:
45:c3:6a:7f:8e:e8:1f:ac:90:78:aa:af:06:f5:a9:
50:00:79:45:5b:25:2d:d5:95:b8:8c:3d:87:98:5f:
23:67:8f:ec:e7:c8:a2:97:c2:73:6f:65:01:03:90:
07:a1:ac:66:26:5b:32:e8:9f:4e:00:f7:36:70:1d:
78:a3:0d:40:dd:24:1b:32:10:01:05:1e:eb:b8:66:
47:9d:b5:fa:8f:4a:e1:bb:32:d6:72:37:1c:de:e5:
fe:aa:d6:3e:e9:31:6a:17:8f:7e:68:41:f8:da:5c:
6b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:46:64:27:43:79:A9:8A:95:7D:46:5E:72:75:41:47:59:90:6B:25
X509v3 Authority Key Identifier:
keyid:9F:1B:D9:73:2E:6C:DD:6E:74:94:D7:91:87:FC:A8:55:B5:19:99:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nxvZcy5s3W50lNeRh_yoVbUZmQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/14ead9-cbb1-4639-81a7-d8b8202d7786/1/9UZkJ0N5qYqVfUZecnVBR1mQayU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/14ead9-cbb1-4639-81a7-d8b8202d7786/1/nxvZcy5s3W50lNeRh_yoVbUZmQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.137.0/24
Signature Algorithm: sha256WithRSAEncryption
71:8a:0b:d5:4e:e3:9c:0b:c2:10:9e:d8:6d:98:6f:68:9d:fe:
ca:de:1a:1a:58:37:7a:1b:19:b5:89:2b:5d:10:e8:c3:29:61:
e4:43:0f:bf:eb:b0:88:85:71:e2:8f:b2:7b:0f:0b:1d:2c:00:
7d:41:20:d9:51:b3:7c:ce:04:62:87:66:80:c2:80:cb:5b:e5:
e3:89:c8:7b:8a:eb:94:5e:62:94:1b:c9:cc:01:b4:ee:42:5a:
bb:b9:75:9b:65:b8:1e:01:ac:db:36:c9:8c:b9:ce:71:d2:13:
3e:8a:f4:a4:7b:47:f2:c6:b1:82:bf:21:1e:34:7a:72:cd:e9:
78:ad:ff:32:11:b3:2d:b8:97:3f:68:5b:92:b6:86:5c:8f:ce:
1b:55:ca:40:44:7f:d0:2a:1b:36:34:c2:50:35:6f:1f:3b:74:
99:0d:da:62:f7:76:d8:d1:7a:04:f3:1d:66:2c:7d:08:a8:38:
0a:d8:0c:bc:1b:e2:05:50:f4:b8:08:6d:22:2e:f0:67:b1:0e:
c9:af:38:e4:f7:36:ec:c6:63:6d:f0:20:88:5b:2a:8b:f5:a5:
2f:f6:89:19:0f:a3:86:bb:54:6d:24:29:b8:22:69:ff:48:36:
20:06:72:ad:dc:54:4b:b8:e6:5a:b1:d7:c4:d3:18:06:28:e9:
eb:6b:03:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:17 2024 by rpki-client on console-ams.rpki-client.org