Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/5yxPiEYzEKzhkTWlMXQfGTgVF1A.roa
File: 5yxPiEYzEKzhkTWlMXQfGTgVF1A.roa (raw, json)
Hash identifier: vgLsabKGOGoWP8IbfsIHunWqw5OrHU/2U1RO4iHRvUU=
Subject key identifier: E7:2C:4F:88:46:33:10:AC:E1:91:35:A5:31:74:1F:19:38:15:17:50
Certificate issuer: /CN=8aa47d08fc85213df4fda2cf9561b8e68bc273dc
Certificate serial: 018480046C53EACB82FF611732A9D2429A4A
Authority key identifier: 8A:A4:7D:08:FC:85:21:3D:F4:FD:A2:CF:95:61:B8:E6:8B:C2:73:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqR9CPyFIT30_aLPlWG45ovCc9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/5yxPiEYzEKzhkTWlMXQfGTgVF1A.roa
Signing time: Wed 16 Nov 2022 10:38:04 +0000
ROA not before: Wed 16 Nov 2022 10:38:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 193.8.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:80:04:6c:53:ea:cb:82:ff:61:17:32:a9:d2:42:9a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aa47d08fc85213df4fda2cf9561b8e68bc273dc
Validity
Not Before: Nov 16 10:38:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e72c4f88463310ace19135a531741f1938151750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fb:05:d9:9b:de:d1:bd:6e:ba:e2:1d:be:62:
a7:3d:16:5b:12:8c:58:ef:43:ad:8a:62:88:94:2f:
72:f4:56:f9:40:83:6a:ec:13:0c:a9:1f:1b:81:48:
6f:34:21:f0:de:bb:fb:78:f3:32:4d:75:80:17:35:
58:35:13:a8:da:80:43:c8:50:30:32:19:89:3e:60:
6e:57:d1:76:ed:58:7a:db:d8:c5:e5:84:37:41:05:
21:ba:16:42:95:c7:b8:3e:05:2e:89:92:91:66:8d:
6a:91:31:1d:36:c9:73:0c:7c:1b:0d:8c:56:3c:79:
c2:04:ef:3b:71:39:0c:6e:df:80:fa:1c:a2:f6:7f:
48:b3:b8:c7:51:e3:c5:cc:00:29:71:2c:d9:a4:96:
a8:5b:f3:fb:ec:47:ab:b1:3b:99:84:b0:80:e3:92:
b8:86:14:df:c8:e3:9e:c2:0a:d1:f1:c7:b5:d1:12:
9b:85:59:b2:26:46:9a:d2:38:76:c2:c8:25:8d:b2:
5c:8f:10:51:fe:7f:e8:e4:8e:0d:b7:da:59:b1:0a:
cd:77:7e:be:2a:15:31:8b:5f:eb:b5:0b:86:b5:54:
32:0f:c8:df:55:48:d0:05:a8:b0:1d:1b:5b:c0:fc:
b9:d6:83:68:45:dd:cf:d1:c5:a2:ee:ba:6e:32:6d:
d8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2C:4F:88:46:33:10:AC:E1:91:35:A5:31:74:1F:19:38:15:17:50
X509v3 Authority Key Identifier:
keyid:8A:A4:7D:08:FC:85:21:3D:F4:FD:A2:CF:95:61:B8:E6:8B:C2:73:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqR9CPyFIT30_aLPlWG45ovCc9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/5yxPiEYzEKzhkTWlMXQfGTgVF1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a1f0a0-439d-4266-a3db-e6b1e986f95f/1/iqR9CPyFIT30_aLPlWG45ovCc9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.230.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:11:d1:2e:0c:db:d5:92:8e:d4:f8:e7:24:88:46:cb:c1:a2:
fa:a5:f2:4d:8b:7f:47:c8:13:d4:ac:96:a5:c0:64:73:cd:dc:
ea:1f:ca:7e:f8:34:33:60:b1:3f:8a:21:55:ee:49:d5:95:6f:
58:91:15:5c:5c:ff:69:d2:6e:9e:a0:cc:4d:37:28:d2:3b:b3:
e7:6c:0a:2f:38:c4:02:51:4e:c4:84:2a:6e:b6:cd:e4:58:d5:
36:7f:19:98:e4:7b:ef:29:32:58:b6:23:ba:e3:2b:ea:00:b2:
8f:1a:e8:e4:14:be:5c:b0:04:3b:63:b8:a8:26:eb:36:2a:40:
5a:4f:a7:4d:c6:69:42:ee:f9:ad:6d:ab:4b:9c:20:8c:1f:ae:
e5:3c:c9:24:e4:33:a1:24:71:02:fa:2c:3b:ef:85:0d:d1:6a:
e3:63:52:c7:30:1d:e4:42:a8:f0:81:4f:a6:e7:89:29:b7:07:
ba:22:99:9b:eb:ad:e6:de:d3:34:8b:85:6a:72:cb:6e:fb:49:
2d:b9:5c:20:db:23:e2:bd:fe:f2:92:c5:dd:54:d0:eb:bc:c3:
ab:88:d3:fc:54:9c:2c:21:68:a6:d4:96:76:04:a6:46:15:c5:
a2:c3:ec:d1:03:31:c3:df:78:f2:72:49:bb:9f:c2:86:51:40:
a5:9c:b4:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:23 2024 by rpki-client on console-ams.rpki-client.org