Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/H6XiMxUBLFTqxY1yD9T9V0kj--I.roa
File: H6XiMxUBLFTqxY1yD9T9V0kj--I.roa (raw, json)
Hash identifier: 3dVb0jwvgbcQh7h6S32w9oY6AcptDWn2588i7cNMPcU=
Subject key identifier: 1F:A5:E2:33:15:01:2C:54:EA:C5:8D:72:0F:D4:FD:57:49:23:FB:E2
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 042853E4
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/H6XiMxUBLFTqxY1yD9T9V0kj--I.roa
Signing time: Sat 01 Jan 2022 12:04:55 +0000
ROA not before: Sat 01 Jan 2022 12:04:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42745
IP address blocks: 193.233.15.0/24 maxlen: 24
193.233.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69751780 (0x42853e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:04:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fa5e23315012c54eac58d720fd4fd574923fbe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:76:10:1d:0f:d9:65:c7:a0:8a:b1:20:a9:21:
18:c6:16:09:c0:ab:95:5b:60:0d:6d:95:5a:4e:08:
45:7e:90:0f:50:c3:bf:50:50:b2:82:f9:c2:4c:9f:
02:86:ee:c4:4d:72:75:37:18:ef:f5:7a:86:fb:f8:
c7:27:f9:3a:57:a6:2a:32:9b:66:85:47:e8:93:97:
c5:28:54:10:e7:fb:82:2c:42:39:32:b1:c2:54:06:
35:27:9a:e3:b1:ed:fc:f8:8e:e8:f5:4a:7d:ec:e2:
1f:79:30:5f:4e:53:13:35:d9:85:dd:bb:46:79:61:
bf:10:84:33:1c:58:74:b4:ce:9e:5a:9e:56:fa:ed:
2b:0b:dd:22:2f:54:e2:55:75:32:ff:9e:11:62:e4:
23:e3:a1:02:1d:b3:7b:c6:14:93:ef:7c:37:40:8c:
ea:28:96:11:e8:80:b3:28:6f:03:f5:76:ac:ef:b8:
3a:ae:6c:a1:7e:c3:6c:c5:9c:ad:46:2e:ed:5d:bf:
b8:98:6f:a7:71:de:98:b7:dd:56:73:4c:d9:11:6b:
f0:a9:ce:4c:f3:89:aa:e0:3d:45:f9:8b:87:23:ab:
e1:26:92:7a:12:a3:fe:54:d8:85:9b:b3:59:3e:10:
af:e1:60:d6:a1:14:0e:f7:eb:20:64:9b:1c:a2:87:
e8:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A5:E2:33:15:01:2C:54:EA:C5:8D:72:0F:D4:FD:57:49:23:FB:E2
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/H6XiMxUBLFTqxY1yD9T9V0kj--I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.15.0/24
193.233.63.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:b1:05:d7:f7:8d:29:d1:4c:e9:eb:a2:68:96:9a:eb:56:1f:
2c:ec:58:00:6b:9e:5d:c4:ae:1c:1d:05:76:c7:24:78:a7:3d:
e7:9d:36:55:44:61:14:0d:f3:ab:5c:52:04:42:08:98:5f:17:
2b:83:c2:20:25:ad:08:2c:51:58:46:d7:47:4f:ae:61:ea:e4:
14:46:b3:c9:5c:23:d6:e1:c5:72:c0:b2:8e:0b:48:73:14:0a:
25:aa:4f:fe:cd:6d:6e:99:5b:89:14:92:f8:a7:6c:f3:4e:3c:
1d:1e:97:3a:62:7d:74:60:9f:2f:3e:df:d6:6a:d4:46:21:ce:
2e:fe:07:08:d6:7c:64:d8:8b:4a:52:5d:c5:b7:c6:59:fa:f0:
98:c7:ab:dd:78:eb:c2:cf:3f:35:44:84:4a:ea:ec:5a:7d:63:
a6:d5:9d:6c:2e:ad:d1:d0:05:21:9d:86:b4:3d:c0:be:c8:6b:
2c:ad:f1:e1:68:aa:96:e6:5a:c9:b9:80:ac:63:d1:46:73:4f:
cd:6a:ee:97:28:b3:e1:e1:cd:3d:01:16:fd:45:62:62:5e:a7:
d4:9b:4d:fd:d9:c4:29:4f:54:76:45:32:6d:8c:ad:4f:fa:99:
05:c2:2f:01:bd:b4:11:f4:03:08:86:30:7b:3c:62:79:a5:da:
51:31:7d:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:30 2023 by rpki-client on console-ams.rpki-client.org