Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Jyx6r6eFF0CVLzZc-U5sItiHjtg.roa
File: Jyx6r6eFF0CVLzZc-U5sItiHjtg.roa (raw, json)
Hash identifier: sAdYHFKaS8CvmUTW3k7hHeSJvxCBAMe7UQ7+KnYZEi8=
Subject key identifier: 27:2C:7A:AF:A7:85:17:40:95:2F:36:5C:F9:4E:6C:22:D8:87:8E:D8
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 01821125DCDE7DBC90B641FBE2BD5B197399
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Jyx6r6eFF0CVLzZc-U5sItiHjtg.roa
Signing time: Mon 18 Jul 2022 11:51:10 +0000
ROA not before: Mon 18 Jul 2022 11:51:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 193.233.124.0/22 maxlen: 22
193.233.120.0/22 maxlen: 22
193.233.132.0/22 maxlen: 22
193.233.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:11:25:dc:de:7d:bc:90:b6:41:fb:e2:bd:5b:19:73:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jul 18 11:51:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=272c7aafa7851740952f365cf94e6c22d8878ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:34:35:7d:4c:7e:63:c0:9a:0e:f3:d9:01:b7:
a9:3b:c0:ae:c2:b0:f7:90:5c:b0:e9:bf:c3:1d:00:
26:3f:c5:7b:4e:d9:39:45:b1:72:d1:23:6b:5e:db:
9e:9e:be:61:e5:08:e6:c9:10:e5:74:e6:c6:d7:c4:
24:31:7f:63:d1:3f:15:bc:d7:bc:1e:45:e5:4e:28:
6e:fd:87:bd:3d:54:e4:af:a2:6d:84:20:78:06:da:
3f:e0:06:c4:03:db:0f:2a:28:52:76:e2:ed:6d:c5:
47:e2:af:ef:0e:c5:ae:29:5b:d5:d1:a9:09:a8:10:
ae:74:93:80:47:c1:95:5b:82:00:15:49:f6:43:a2:
a2:02:4c:61:34:6c:b6:30:37:fa:fc:24:05:1d:db:
2a:f0:e5:d3:9c:da:41:a3:18:a4:b4:96:a4:07:12:
de:2f:94:16:93:15:23:47:44:db:90:7f:c6:a4:b1:
f4:a1:e6:b8:a9:23:3e:39:d3:61:2e:dd:93:6e:77:
24:04:49:b4:59:ec:06:09:fa:8b:66:0a:44:07:ca:
7d:dc:fe:bc:72:ab:fe:f0:54:ec:b7:40:36:4a:cd:
53:88:2e:c8:5d:8c:24:94:c5:44:14:c6:19:00:35:
aa:8b:af:22:0d:0d:f3:12:c4:05:25:f5:1a:63:12:
f5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:2C:7A:AF:A7:85:17:40:95:2F:36:5C:F9:4E:6C:22:D8:87:8E:D8
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/Jyx6r6eFF0CVLzZc-U5sItiHjtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.120.0/21
193.233.132.0/22
193.233.236.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:43:e4:7d:8a:c7:56:d1:8b:6e:5e:c4:e5:b2:ae:91:f9:5c:
a0:5a:6f:35:4f:70:82:ab:33:f5:3f:8c:04:2b:5f:ab:af:0c:
72:31:20:54:96:e4:2f:a6:04:61:59:b7:5b:2e:3d:2e:8b:f1:
85:c1:f6:57:8e:28:2a:e6:24:cf:f7:d1:b0:d6:1b:54:db:cf:
f9:b4:8c:e3:f0:29:d5:7b:0d:bb:2e:5e:4a:0b:37:d3:07:c6:
2f:6e:5d:65:ad:28:f2:db:90:8c:7c:6d:45:25:ba:83:00:5b:
f7:a7:21:50:c6:3c:07:b8:c6:44:c3:12:8f:01:7b:e4:af:53:
53:88:d2:8c:c2:14:28:23:8e:72:a9:09:18:21:02:b9:68:ec:
8f:c1:4a:e1:a2:c1:06:ec:a2:d6:16:ab:70:4d:1e:d1:0b:bd:
7b:2b:4d:c9:c7:45:fc:db:b7:0d:57:48:17:e6:d0:a2:f7:6d:
88:7a:96:14:45:5e:e8:64:b4:88:b1:73:09:31:dc:28:ba:86:
40:47:62:6d:7f:af:f9:6c:0a:ef:2b:ce:bd:c4:d6:02:e4:2e:
2e:f6:d3:be:32:a3:c8:b3:8d:fe:af:1c:f1:33:27:6e:e9:10:
b8:0f:25:4b:cc:fc:78:66:38:1b:41:b9:e1:83:a9:5d:87:df:
e3:20:71:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:30 2023 by rpki-client on console-ams.rpki-client.org