Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/98xU7GLGxU288_jcy3M9ED4hFZs.roa
File: 98xU7GLGxU288_jcy3M9ED4hFZs.roa (raw, json)
Hash identifier: vIg8gfuI1mqwHJ0nKQ8Byz3BTufM2BvIUV1FzO5YcTU=
Subject key identifier: F7:CC:54:EC:62:C6:C5:4D:BC:F3:F8:DC:CB:73:3D:10:3E:21:15:9B
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 041D1C93
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/98xU7GLGxU288_jcy3M9ED4hFZs.roa
Signing time: Sat 01 Jan 2022 12:04:49 +0000
ROA not before: Sat 01 Jan 2022 12:04:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.233.198.0/23 maxlen: 23
193.233.201.0/24 maxlen: 24
193.233.202.0/23 maxlen: 23
193.233.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69016723 (0x41d1c93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:04:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7cc54ec62c6c54dbcf3f8dccb733d103e21159b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b6:23:aa:5e:68:22:d0:ee:53:25:fc:17:a4:
99:ad:ff:90:be:10:43:3b:1d:9b:af:c9:6e:06:30:
2c:47:24:7e:55:d1:8f:7e:e0:3e:fa:f2:4d:27:35:
62:b2:30:70:47:49:a7:92:50:a2:b1:1b:1a:34:70:
da:1f:d2:cc:50:22:cb:6d:39:52:31:3c:9d:5f:aa:
47:d8:f6:fe:ad:28:b7:9e:97:68:64:fd:77:3c:f7:
b8:bf:41:57:f4:89:76:f5:10:c1:a3:56:4e:9e:ca:
6b:e6:ac:37:e1:64:c4:fc:44:fd:4b:da:40:b1:e1:
d2:c7:a8:41:f6:19:2f:51:b7:b8:59:ef:15:03:0a:
79:58:ee:ba:7b:d8:01:c1:31:9d:4e:2b:53:53:3d:
c4:6c:3f:b7:10:d6:02:0c:20:30:52:a9:41:0a:c8:
e4:92:e0:93:7f:59:e8:88:33:85:c9:87:b9:a9:cd:
98:f9:7f:31:cc:48:0e:d0:76:e1:95:d8:03:13:bd:
cf:54:d5:33:47:c1:54:fc:5e:56:88:18:2b:4e:1b:
d1:2a:0a:db:9e:10:ec:44:be:4b:98:cd:08:bb:22:
a2:82:b4:3d:70:53:78:c1:c5:75:12:be:99:8f:67:
48:a7:83:fe:0c:4b:fa:39:51:88:41:b4:f9:b3:98:
3d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:CC:54:EC:62:C6:C5:4D:BC:F3:F8:DC:CB:73:3D:10:3E:21:15:9B
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/98xU7GLGxU288_jcy3M9ED4hFZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.198.0/23
193.233.201.0-193.233.203.255
193.233.216.0/22
Signature Algorithm: sha256WithRSAEncryption
60:b2:03:73:3a:a7:ac:41:59:b0:b3:9e:26:15:b3:00:e6:02:
db:8e:f8:a3:d5:9b:43:3f:fb:7e:ea:3e:c6:4f:73:26:dc:04:
4e:93:c1:e9:30:1f:f2:a4:ba:f8:8a:10:99:34:3b:f6:3a:70:
7c:b8:3f:0b:12:9a:ab:51:74:d5:07:a2:eb:b9:19:c0:44:1f:
d0:98:77:34:2f:ee:bb:b7:2e:e1:e6:aa:80:10:94:f4:42:34:
16:5b:f0:9f:70:ac:ca:00:d7:af:1d:12:9c:e4:a2:3e:21:5e:
ea:77:fa:09:72:87:89:c1:43:84:c1:0c:b3:0f:00:1f:cb:c1:
a8:8f:28:f8:50:ec:10:00:30:88:a9:97:a0:c7:09:dd:af:97:
cf:f0:f8:ae:c0:f2:f0:5f:e8:16:cf:9b:0b:ef:e4:2a:d3:4f:
25:6b:7f:ad:2d:0e:bd:33:cb:1d:c8:a7:f3:d3:9b:0f:10:f3:
6b:85:b5:1b:1c:53:ee:3e:83:bb:83:76:5a:d3:3f:04:81:d7:
dd:7e:d8:5c:ee:28:4f:72:03:48:62:f2:c2:fb:d4:5c:b2:e8:
1c:94:d1:02:fe:00:e1:1c:79:5b:55:05:47:fe:6c:6b:49:0b:
59:60:46:87:96:02:71:b0:75:6a:91:e7:5f:7d:7a:80:9f:14:
93:26:e0:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org