Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/3rJo80N3xbsg46pDhYllr-5LwrA.roa
File: 3rJo80N3xbsg46pDhYllr-5LwrA.roa (raw, json)
Hash identifier: 1MZ5pjpLRWfhNwixbbMOUAO4/jWo3YR/9DVaQU4XKL4=
Subject key identifier: DE:B2:68:F3:43:77:C5:BB:20:E3:AA:43:85:89:65:AF:EE:4B:C2:B0
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0470382A
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/3rJo80N3xbsg46pDhYllr-5LwrA.roa
Signing time: Wed 19 Jan 2022 12:13:12 +0000
ROA not before: Wed 19 Jan 2022 12:13:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 193.233.177.0/24 maxlen: 24
193.233.176.0/20 maxlen: 24
193.233.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74463274 (0x470382a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 19 12:13:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=deb268f34377c5bb20e3aa43858965afee4bc2b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e1:77:53:f9:10:29:68:e8:2a:0a:03:56:63:
eb:15:37:23:cd:9c:40:13:9a:cd:e7:fa:81:4f:81:
0a:4f:03:be:f1:0a:73:3e:03:4e:1f:a0:41:6c:c7:
ae:f5:e4:f5:d7:60:0f:f2:ba:28:5e:d1:a6:e5:cb:
47:51:7f:7c:0f:65:35:62:78:19:93:3d:d6:82:a6:
42:da:73:98:df:4e:e8:af:08:2b:a3:9c:0d:86:47:
28:62:cd:a2:a1:6a:ca:ec:51:87:ba:4f:be:5d:5c:
11:b3:9e:88:c9:e9:ed:e7:f2:0e:b6:99:bd:db:c0:
b3:c4:86:fc:12:05:fd:3d:b6:55:f9:92:79:a6:fe:
fe:f4:bf:ee:76:60:6f:db:7b:8c:c5:5c:d4:8e:22:
e1:72:08:f7:c6:01:45:f2:c4:b8:12:63:cb:52:12:
0a:c4:d3:4d:7d:fc:ab:9a:64:04:4d:99:ff:c0:e8:
f4:54:20:18:b3:c3:7a:76:ab:a2:f9:7c:e4:09:cd:
d8:98:08:fa:ce:4c:fa:6b:fa:c1:07:c8:fc:33:26:
d3:88:20:1b:40:6e:9a:50:5e:ab:a9:6b:3c:57:f2:
18:ac:7d:29:1c:dc:e7:90:68:d1:a2:76:3f:91:7c:
78:b2:78:c9:4b:84:72:78:75:e5:0d:cf:58:78:cf:
cf:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:B2:68:F3:43:77:C5:BB:20:E3:AA:43:85:89:65:AF:EE:4B:C2:B0
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/3rJo80N3xbsg46pDhYllr-5LwrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.176.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:19:ed:c7:3a:df:1a:7b:4a:a1:df:a4:d0:52:8a:5d:e1:53:
e3:29:c0:8c:68:80:de:f1:f4:c7:d2:2a:3b:1c:bd:39:be:7e:
fd:d6:34:0b:e9:f6:4c:d1:a6:52:c3:ea:5b:42:7e:a5:d8:bf:
5c:f1:32:97:30:88:89:bd:63:a7:02:38:9c:85:51:bc:6b:5b:
c7:5d:cf:98:48:2f:e5:84:12:c7:3d:c3:bd:01:b6:db:5f:6a:
15:82:af:dc:95:b6:69:ae:85:fc:67:3e:ea:7e:dc:36:76:54:
51:21:54:87:6d:cd:0a:39:fa:08:fe:01:a8:07:d9:4f:29:f6:
6f:d5:bd:37:73:19:d9:59:af:b2:4a:31:b8:01:6d:44:f0:67:
18:3a:cb:20:d1:d6:f1:80:25:2b:ff:9d:d1:ae:a7:ee:6a:22:
85:31:ac:73:71:e2:64:cf:d3:43:d6:04:69:73:50:61:84:3b:
38:c7:ad:71:18:1e:3c:3a:3c:68:12:e7:ac:2c:04:86:2d:ab:
0f:1e:7b:a0:0e:4d:58:19:d7:8c:d4:dc:65:fc:31:91:50:96:
33:73:a6:cc:1f:26:11:94:5e:ab:78:3f:bc:f1:bc:16:0b:ab:
5a:36:6b:a0:1c:59:1a:70:66:89:dd:e6:e8:57:db:1f:b2:2c:
22:b3:96:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:30 2023 by rpki-client on console-ams.rpki-client.org