Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1mY1sKBg6hYAf0EJWxrW_eOVb-Q.roa
File: 1mY1sKBg6hYAf0EJWxrW_eOVb-Q.roa (raw, json)
Hash identifier: UdYcacYXRubgdcnjM5+PYLgwmMy9S/ZQ5ff1YtNXQa0=
Subject key identifier: D6:66:35:B0:A0:60:EA:16:00:7F:41:09:5B:1A:D6:FD:E3:95:6F:E4
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0553192A
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1mY1sKBg6hYAf0EJWxrW_eOVb-Q.roa
Signing time: Mon 18 Apr 2022 10:14:45 +0000
ROA not before: Mon 18 Apr 2022 10:14:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 193.233.228.0/22 maxlen: 22
193.233.136.0/22 maxlen: 22
193.233.251.0/24 maxlen: 24
193.233.140.0/22 maxlen: 22
193.233.250.0/24 maxlen: 24
193.233.249.0/24 maxlen: 24
193.233.248.0/24 maxlen: 24
193.233.82.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89332010 (0x553192a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Apr 18 10:14:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d66635b0a060ea16007f41095b1ad6fde3956fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:16:d7:99:84:67:bb:15:a1:45:68:bd:10:6b:
c1:f7:2d:2f:23:d1:c2:d1:6a:35:43:05:c1:a1:79:
31:72:21:6b:d5:d4:5c:dd:4b:37:c1:5f:0d:a6:c6:
42:b0:33:bd:45:99:5f:32:db:af:46:26:ae:67:7a:
23:14:a5:b4:65:87:0a:db:7f:11:12:63:7f:59:e1:
f2:14:72:3d:81:a4:57:98:eb:53:b8:3d:de:8e:e5:
e6:22:8f:02:4a:72:90:f7:e3:e7:e0:78:10:b1:28:
24:7e:2a:26:ab:86:a2:e0:5f:58:90:4d:19:dc:74:
1d:fa:7f:9b:6e:78:33:b8:04:19:7a:ed:b9:ed:da:
3a:16:d9:e6:86:bd:22:db:57:76:58:b0:9a:55:53:
89:25:c0:1b:b4:d2:85:d8:28:01:57:81:71:7e:3e:
89:ba:62:bc:fb:91:62:5c:45:3c:0e:ba:5a:d2:f7:
ae:fb:57:b1:73:ba:a5:62:79:84:3f:89:6a:ee:9c:
d3:90:b4:fe:f8:cf:30:6a:15:41:c6:ab:8d:3a:6a:
86:29:eb:78:86:10:b9:cc:31:ec:78:e4:39:c9:ee:
9e:c4:7b:f6:2c:d9:c8:b9:1c:54:01:ad:79:be:2f:
3b:be:46:a2:b9:9e:12:8a:ad:a1:44:2d:47:9e:aa:
c9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:66:35:B0:A0:60:EA:16:00:7F:41:09:5B:1A:D6:FD:E3:95:6F:E4
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/1mY1sKBg6hYAf0EJWxrW_eOVb-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.82.0/23
193.233.136.0/21
193.233.228.0/22
193.233.248.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:80:4f:5b:87:bf:31:31:2e:58:38:8f:69:2c:64:2c:75:f8:
b9:10:f0:ae:ef:48:bf:cf:79:d8:57:9e:b6:83:9e:13:8a:44:
e0:37:bb:56:cf:5d:d8:a8:ca:3a:51:c6:43:03:f5:b9:d7:e8:
b3:2a:d9:67:ce:ce:91:09:5e:b6:55:fc:02:9a:b7:d7:21:42:
e6:91:5a:0f:a1:7b:62:66:dc:9c:90:1a:df:b8:1e:1a:3b:a5:
65:cc:6b:27:61:df:de:ef:50:21:3d:b8:f2:d5:7b:88:19:14:
74:a7:16:e2:fb:b2:a6:35:08:4f:cb:55:24:c6:85:26:11:ea:
3b:2c:b1:b0:33:b5:5f:1e:4e:57:40:c4:e3:2b:87:f4:8e:a9:
70:06:20:43:65:c4:27:f3:ca:d1:08:cc:e9:68:b9:b0:de:99:
96:96:8f:bb:15:c4:6e:64:4a:74:07:7b:23:ff:a4:11:f1:b0:
df:b2:db:fb:25:0f:ba:3f:ec:5f:c1:5e:42:b9:ea:a7:ac:93:
03:2f:74:49:a2:1d:5b:0e:2e:f4:58:f0:bf:50:04:a3:cf:a1:
7a:51:8f:4a:0a:50:0f:ff:5d:d2:dd:de:2f:28:dd:cf:95:4c:
0c:70:72:9c:83:80:c9:9c:bb:1c:30:50:d0:70:bf:0d:b9:0c:
82:08:56:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org