Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/G_8U_tcV53-IgC-q4kIrYL80aZk.roa
File: G_8U_tcV53-IgC-q4kIrYL80aZk.roa (raw, json)
Hash identifier: RL6hYEwgOCdmFo6bzFIVV0hwLFc1GA/0ryK0bLKZ/oI=
Subject key identifier: 1B:FF:14:FE:D7:15:E7:7F:88:80:2F:AA:E2:42:2B:60:BF:34:69:99
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0184E8806A0E75F49C71D3F4ECCE58E51160
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/G_8U_tcV53-IgC-q4kIrYL80aZk.roa
Signing time: Tue 06 Dec 2022 17:34:00 +0000
ROA not before: Tue 06 Dec 2022 17:34:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 193.233.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e8:80:6a:0e:75:f4:9c:71:d3:f4:ec:ce:58:e5:11:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Dec 6 17:34:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bff14fed715e77f88802faae2422b60bf346999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:2d:59:39:e5:63:d7:91:07:26:fa:f8:05:a0:
ff:7c:52:b0:a0:82:67:0a:d4:13:25:b1:e0:e7:85:
a7:5f:6c:b2:84:cf:ea:a4:e2:1c:2b:cb:47:74:f7:
5a:a4:03:b2:d6:62:00:70:54:20:fe:42:17:26:76:
5d:39:8a:db:ee:ff:67:68:56:82:c4:50:53:5b:12:
7d:c9:b8:d0:80:81:2c:da:92:cf:55:38:72:a8:ea:
cb:7c:27:4b:86:e0:41:7f:37:11:a0:e8:b1:8f:da:
aa:98:09:ad:cb:fa:08:3d:d9:99:89:ba:ca:d1:d2:
02:dd:cd:8e:d9:78:fa:2d:69:7a:a2:36:32:55:ef:
85:14:29:48:d4:b3:b9:25:00:ad:4c:48:57:48:d2:
5d:99:06:fc:c7:1d:dc:47:dd:ed:9d:1a:26:25:9a:
1c:af:a9:42:f1:d2:c1:6e:79:10:58:19:6a:0a:fe:
4a:24:32:ba:34:be:80:0a:cb:ca:b4:c8:57:50:f5:
6f:33:42:35:cb:12:38:59:d2:bd:0f:b8:3d:7d:30:
15:86:50:af:be:94:6f:90:f9:64:6c:b0:c5:cb:f9:
dc:4c:c6:26:a9:78:7d:5c:2b:f3:d2:57:a9:b0:d0:
54:62:b6:8f:2e:43:a8:d1:9a:99:a1:73:16:22:4d:
fb:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:FF:14:FE:D7:15:E7:7F:88:80:2F:AA:E2:42:2B:60:BF:34:69:99
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/G_8U_tcV53-IgC-q4kIrYL80aZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.61.0/24
Signature Algorithm: sha256WithRSAEncryption
43:17:a5:46:80:20:cc:a2:cd:be:44:83:dc:8d:9c:f8:5c:4c:
f0:01:77:53:20:b0:49:c2:9d:79:97:94:91:ad:03:78:38:57:
0c:b7:73:34:bf:c9:d7:98:c4:57:b4:9d:92:5d:05:2c:e4:7e:
8c:81:4d:bc:16:b1:60:23:e6:9c:2f:f5:1a:18:a9:5e:d8:e6:
88:b0:a7:3b:19:48:e7:17:25:7f:73:3e:b7:48:47:17:3c:49:
5c:c8:6c:b8:ae:c3:0f:56:c9:be:18:1f:6c:63:9a:c4:b2:97:
28:d2:04:fb:3f:c8:98:00:a8:9f:21:55:e2:cd:c2:a5:98:db:
19:b2:4d:8c:f4:2f:90:17:58:cb:31:ac:a7:6d:b9:35:8b:c1:
73:09:c6:e2:15:a3:60:6a:28:b8:91:ad:b8:92:a5:76:aa:54:
fc:27:4b:10:fe:fb:b9:c1:2d:f8:33:23:73:60:69:16:71:e2:
37:a2:92:a0:db:69:98:df:12:58:e8:be:ca:e8:57:b4:19:a2:
48:63:7c:06:e5:c9:e2:2a:57:3e:04:56:86:f6:83:82:9c:14:
6a:d9:b8:7e:9e:ee:6a:be:2b:95:10:0e:d0:1b:10:8f:ac:59:
fb:0f:9b:80:6b:7e:94:7d:6f:67:e4:1c:a2:94:6a:91:7e:8e:
63:54:81:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org