Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/DsWTjxqnQJrY9cij99kuk-ld4YE.roa
File: DsWTjxqnQJrY9cij99kuk-ld4YE.roa (raw, json)
Hash identifier: XwEYzIZRySEhaXR/PG8K2swDy7lFDnaE5UYXjUozgNs=
Subject key identifier: 0E:C5:93:8F:1A:A7:40:9A:D8:F5:C8:A3:F7:D9:2E:93:E9:5D:E1:81
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 049BC7B6
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/DsWTjxqnQJrY9cij99kuk-ld4YE.roa
Signing time: Thu 03 Feb 2022 17:32:39 +0000
ROA not before: Thu 03 Feb 2022 17:32:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 193.233.100.0/22 maxlen: 24
193.233.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77318070 (0x49bc7b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Feb 3 17:32:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ec5938f1aa7409ad8f5c8a3f7d92e93e95de181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9b:17:a4:42:87:db:23:4f:91:48:81:d6:b1:
7e:16:ea:0b:b8:c0:21:dd:fa:b6:b8:f2:28:7f:df:
60:0e:04:45:e2:f6:21:fd:9b:c2:52:65:a2:95:cb:
75:e8:c3:b4:e9:08:10:0f:e0:60:5c:5c:52:6d:39:
c8:b7:20:34:5b:d7:4d:df:40:2d:31:0f:85:c2:22:
4e:71:a9:c4:8c:eb:ec:03:38:37:d8:a2:49:c7:e0:
be:c1:79:61:c2:d4:9f:10:e9:65:7f:eb:f6:12:a8:
5c:b2:c9:36:a1:5c:5d:73:9b:de:94:01:b3:7a:9a:
f4:cd:26:e4:c3:3b:2d:d4:d3:49:aa:2e:82:28:af:
51:27:af:45:4f:bb:8b:a5:27:89:54:02:15:17:a6:
ce:79:ed:59:9b:19:5a:65:2b:93:c8:a8:6b:3e:81:
bf:a2:17:dc:78:9d:c2:f7:0a:c8:a5:b8:ad:55:e7:
33:ab:2e:d5:73:21:96:92:e5:dc:ad:9f:4b:71:a8:
4a:26:cd:d9:83:71:c8:92:83:7a:27:2b:0f:64:ab:
b5:f0:ab:90:ab:2e:f4:1d:ab:e8:94:8e:24:12:ab:
8e:dc:ba:aa:75:d1:78:8a:1d:6f:a6:91:fd:7e:e3:
1b:ec:f8:33:98:18:8d:cf:c8:f9:dc:1e:09:13:e7:
70:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C5:93:8F:1A:A7:40:9A:D8:F5:C8:A3:F7:D9:2E:93:E9:5D:E1:81
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/DsWTjxqnQJrY9cij99kuk-ld4YE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.100.0/22
193.233.108.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:c4:73:16:bb:d2:80:d1:ce:3d:90:b4:3b:89:47:19:75:94:
62:17:dd:2c:7e:fa:64:1e:4b:48:a6:a3:6c:e2:69:bb:cf:c7:
02:96:d4:8c:fc:e0:19:5f:b7:ec:a1:40:dc:13:5e:70:6e:48:
87:97:b0:70:60:79:ef:f9:12:27:7e:a2:95:fe:56:74:0a:a0:
14:ad:74:73:1c:e9:4f:25:ba:23:8c:7f:ca:db:e1:49:d9:f8:
c5:60:f1:48:7f:a2:6f:ce:2c:95:3d:8f:e9:bc:4c:be:c8:53:
33:0c:6f:05:a4:57:24:15:be:6f:2f:19:e9:c7:e5:85:15:15:
e5:e6:ee:bb:ab:f5:9c:c4:b6:45:95:52:0f:c4:da:3b:00:f4:
70:b5:ee:dc:1a:f5:b9:57:d5:1c:f4:e9:79:a6:a7:28:76:6f:
4f:6a:0a:c7:80:41:27:6e:5f:42:61:0d:2b:71:c7:ae:c9:5e:
18:aa:a0:ca:9d:15:46:80:aa:00:03:c4:85:4c:78:3a:ed:30:
aa:4d:f1:9a:ce:ee:05:19:e9:de:f7:80:9a:ac:d9:64:b0:50:
9b:b9:83:4f:3b:34:fd:60:e9:c1:4b:6b:63:eb:95:41:59:85:
b1:32:9b:33:bd:e1:06:52:7f:22:cd:0d:3b:9d:9e:42:72:c0:
ae:07:2a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:30 2023 by rpki-client on console-ams.rpki-client.org