Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/KA-U26tRYhbvtsOnNGohJb2Tyvc.roa
File: KA-U26tRYhbvtsOnNGohJb2Tyvc.roa (raw, json)
Hash identifier: j1NAJHy6a2Qevk1EY9XX5ShBfIDGsjOHYPftv/cFy5k=
Subject key identifier: 28:0F:94:DB:AB:51:62:16:EF:B6:C3:A7:34:6A:21:25:BD:93:CA:F7
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0431AAEA
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/KA-U26tRYhbvtsOnNGohJb2Tyvc.roa
Signing time: Sat 01 Jan 2022 12:05:01 +0000
ROA not before: Sat 01 Jan 2022 12:05:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202999
IP address blocks: 193.233.56.0/24 maxlen: 24
193.233.57.0/24 maxlen: 24
193.233.58.0/24 maxlen: 24
193.233.59.0/24 maxlen: 24
193.233.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70363882 (0x431aaea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:05:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=280f94dbab516216efb6c3a7346a2125bd93caf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cc:a7:f9:11:ca:d9:17:3c:78:0f:c7:f4:e8:
71:3c:fd:e7:f2:f4:c4:6c:e2:45:3f:e2:aa:bb:09:
e4:ef:3b:d2:17:83:3e:bc:cd:8a:53:0c:52:2e:4a:
85:01:b6:1a:72:6e:ab:22:aa:92:da:e3:f7:15:87:
c1:30:de:e8:0f:a9:66:4d:21:0f:c3:61:43:8d:fa:
91:b3:69:8f:cc:ef:b0:e7:7b:a7:03:a2:a2:da:b3:
d0:ad:6d:f9:b6:21:5b:d0:18:61:ff:e9:14:4b:fd:
72:64:9e:67:02:2d:fd:ad:75:a2:0f:46:b7:db:3e:
9c:72:31:38:28:4e:4c:66:a3:71:31:bf:d6:55:3e:
75:d7:f4:5a:5a:25:ae:2e:9d:e9:a5:19:e8:ab:ed:
61:89:ac:0d:01:6a:7a:3e:90:ff:95:0e:51:fa:67:
ac:ad:d1:61:3f:8c:53:5f:8f:ad:6a:d4:e5:08:0d:
ef:f3:aa:da:4f:17:ee:6c:57:96:55:c7:ef:87:1b:
2c:d1:fc:87:2e:fd:03:f6:ae:27:10:e5:a7:ae:70:
dc:15:61:14:bd:e8:16:ec:84:56:ca:d1:86:f6:fd:
05:e4:a8:06:e8:96:3b:6c:53:b6:4a:11:63:de:a4:
26:d4:33:51:1e:d2:1e:eb:7d:fb:e6:74:53:fc:84:
7a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0F:94:DB:AB:51:62:16:EF:B6:C3:A7:34:6A:21:25:BD:93:CA:F7
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/KA-U26tRYhbvtsOnNGohJb2Tyvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.9.0/24
193.233.56.0/22
Signature Algorithm: sha256WithRSAEncryption
12:f2:c2:73:ee:ac:7e:e7:04:e8:c7:b3:05:22:f9:e9:17:b5:
0e:1d:a4:20:e8:93:9f:94:bf:fb:d2:e2:c9:16:ef:dc:c4:7f:
ee:0a:97:2a:9f:32:00:63:02:d7:a9:ac:f9:b7:0a:27:fd:9c:
ae:67:89:92:42:55:73:73:49:44:f3:02:fe:18:2b:a5:b7:e5:
d8:71:98:30:34:18:8a:29:54:00:e3:5c:7a:ea:2b:a3:c4:17:
cd:f3:c7:15:da:3f:c8:45:74:dc:f9:e8:9c:66:aa:94:52:a5:
86:eb:28:a1:d1:ba:29:ca:44:2c:1d:a6:03:f4:cd:c1:3d:a5:
f8:34:3d:5d:f5:ac:87:d1:07:b4:fb:ca:67:d6:73:06:ac:a5:
9a:4e:a8:20:7c:ae:dc:10:eb:f9:c5:e5:d8:07:d0:d7:ea:ae:
45:ee:a5:9b:df:62:3f:d1:d0:75:a9:0a:6e:b4:51:54:7c:90:
92:c8:6c:2d:0a:40:2c:f2:20:6b:73:85:01:e5:36:db:c3:95:
0b:64:57:b7:33:c9:48:f4:48:2c:bd:51:72:eb:5e:90:6f:5e:
57:88:af:28:8b:9b:6d:5b:bb:0f:0d:87:7a:d9:0d:52:ac:5c:
fd:cb:46:f9:7a:b9:b6:6b:d9:ff:a8:ac:17:6c:de:28:c9:28:
7a:34:62:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org