Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8DmLrN6lZyFy4clCBva6JFRicAc.roa
File: 8DmLrN6lZyFy4clCBva6JFRicAc.roa (raw, json)
Hash identifier: XDnjDF3PYm9L/yNYhY0bk9MMsYbEB6MzraMIm1YqnWY=
Subject key identifier: F0:39:8B:AC:DE:A5:67:21:72:E1:C9:42:06:F6:BA:24:54:62:70:07
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 043D6032
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8DmLrN6lZyFy4clCBva6JFRicAc.roa
Signing time: Sat 01 Jan 2022 12:05:07 +0000
ROA not before: Sat 01 Jan 2022 12:05:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212624
IP address blocks: 193.233.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71131186 (0x43d6032)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:05:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0398bacdea5672172e1c94206f6ba2454627007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:28:ae:c3:79:b4:a0:35:60:7c:b8:87:49:6f:
9f:d5:9b:a1:05:aa:c1:72:f7:91:a8:9c:98:af:82:
22:77:7a:cc:5b:0e:86:e6:cb:f7:73:fb:3e:b8:c5:
4a:5b:f9:44:83:58:0e:d8:4c:1d:9d:36:4e:e3:ac:
df:55:e6:4e:f8:b9:c1:90:ac:ec:9c:b4:4c:8c:13:
e5:a5:44:0c:c8:00:c8:d3:63:7e:ef:a0:73:df:0b:
e9:a3:00:ee:0b:6c:25:91:56:34:b6:3e:dc:1f:33:
49:3a:8e:c6:d2:6d:a9:5f:d4:cc:e3:1c:52:aa:4b:
95:8a:1d:f6:80:7c:51:c2:01:6b:f3:08:de:1a:e5:
b6:5e:df:8b:77:ad:67:37:b9:fc:7d:ae:f7:23:5a:
b9:00:97:77:e4:1b:56:f4:ab:be:d3:ba:01:e5:ad:
68:ef:c7:67:a3:75:19:43:53:b2:a5:9d:52:4a:6a:
46:da:f1:fc:cc:b6:85:31:25:0d:1e:f8:2c:0e:e7:
8e:58:8c:40:5f:88:98:a1:e9:ca:70:f8:06:79:eb:
f9:c5:9a:21:2d:f7:1d:d5:8e:15:86:45:98:42:bd:
74:a4:9d:79:18:02:b0:15:4d:9c:4c:c4:af:22:db:
24:06:63:ff:41:26:91:c5:8a:4a:ae:a6:f9:44:0e:
11:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:39:8B:AC:DE:A5:67:21:72:E1:C9:42:06:F6:BA:24:54:62:70:07
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8DmLrN6lZyFy4clCBva6JFRicAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.200.0/24
Signature Algorithm: sha256WithRSAEncryption
08:65:a3:b4:53:c5:e5:73:2c:cd:07:eb:df:a4:0e:5e:57:b8:
7c:2a:b0:43:bb:d4:9b:32:77:4e:74:48:56:0b:00:f5:14:12:
68:fb:42:91:b1:10:e5:58:b6:79:e1:b0:fa:96:38:b6:d8:6e:
a8:30:df:6d:82:20:c6:24:60:a7:32:5f:a4:59:e1:f5:4d:1c:
1e:1a:2b:3c:f6:ed:34:8d:3f:32:e2:2d:e7:50:b9:9b:aa:41:
47:c6:cb:6a:cb:ae:ba:dc:72:2f:f1:1b:f3:45:5d:4e:57:70:
7c:ba:e2:c0:b1:14:14:0b:ae:e0:cf:26:3d:73:4d:66:43:b5:
c5:d8:d8:98:34:14:84:83:a4:7d:23:26:5a:eb:14:c6:e8:89:
63:b1:f1:75:1c:3e:41:49:a7:01:34:e5:08:f9:ab:d3:b0:cf:
c9:be:b6:2f:23:c1:e9:c0:53:4a:65:f2:97:e7:2f:20:ce:98:
a2:30:6b:6f:f9:d6:3d:00:03:b7:9d:33:f2:54:c6:2b:f8:3c:
60:cb:ee:e7:28:d6:f9:ed:68:63:7f:6c:06:6d:71:e0:f8:da:
1a:0f:d1:e5:60:f5:1e:ba:09:1a:10:69:19:1b:f0:c0:39:5f:
21:97:13:9b:dd:77:14:ab:a2:ad:40:c7:53:81:9c:f3:ac:cd:
82:19:de:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:37 2023 by rpki-client on console-fra.rpki-client.org