Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/NyynLTcLSywqyMu7ZSplpbHl8_o.roa
File: NyynLTcLSywqyMu7ZSplpbHl8_o.roa (raw, json)
Hash identifier: mgYnyGifgzOdpiUJ1CB185gV7M9lhaN6tMRQV7KqJfA=
Subject key identifier: 37:2C:A7:2D:37:0B:4B:2C:2A:C8:CB:BB:65:2A:65:A5:B1:E5:F3:FA
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018544A01C9355657C781D948F86C8E180F4
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/NyynLTcLSywqyMu7ZSplpbHl8_o.roa
Signing time: Sat 24 Dec 2022 14:53:41 +0000
ROA not before: Sat 24 Dec 2022 14:53:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 193.233.161.0/24 maxlen: 24
193.233.202.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:44:a0:1c:93:55:65:7c:78:1d:94:8f:86:c8:e1:80:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Dec 24 14:53:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=372ca72d370b4b2c2ac8cbbb652a65a5b1e5f3fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b3:d3:e4:8d:64:dd:7c:b1:24:69:ea:a5:2e:
a4:84:c2:ef:15:e4:f9:c5:d4:31:aa:b3:3d:9f:f8:
61:ec:1a:61:c4:87:55:f7:b6:30:f3:39:47:19:9b:
41:e6:30:95:75:44:cb:d7:54:82:49:c3:df:ae:77:
23:ee:ae:71:af:0a:5a:7e:0e:4f:ef:d5:04:d4:37:
c7:59:b0:b0:53:99:02:76:e9:67:c9:b7:6a:34:1d:
7b:be:0f:99:eb:af:5e:c6:07:b3:51:7f:3c:81:2e:
b2:81:1c:3f:88:41:80:2b:bc:76:fc:11:94:c5:21:
78:b3:f3:8d:95:15:ad:30:03:5a:1c:b9:68:d7:1b:
17:a7:d0:29:96:2d:f3:0a:a0:90:0e:e5:08:97:ab:
15:74:af:e9:96:b3:bd:7d:b6:f2:98:9d:df:2a:dc:
f8:6d:c9:92:68:3e:53:90:6b:aa:49:75:84:3f:c7:
27:37:41:6f:b5:8e:de:e7:10:09:55:96:40:4d:0e:
0a:d4:2e:a3:fc:05:f7:fb:65:9a:42:45:7e:cc:93:
1b:6c:79:04:51:b2:74:71:2f:95:0f:01:a5:e4:e1:
26:10:cf:90:36:6c:21:33:a6:eb:fd:f9:68:3e:5f:
d4:2b:cf:c5:9b:04:a4:95:5b:68:2b:e2:db:4b:49:
c4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:2C:A7:2D:37:0B:4B:2C:2A:C8:CB:BB:65:2A:65:A5:B1:E5:F3:FA
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/NyynLTcLSywqyMu7ZSplpbHl8_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.161.0/24
193.233.202.0/23
Signature Algorithm: sha256WithRSAEncryption
56:89:b6:92:12:d0:de:e3:43:ea:f2:62:80:c8:12:b7:42:70:
8b:49:65:cc:8a:d4:0e:35:5d:b3:70:6c:55:4d:63:3e:47:67:
b2:0f:d1:4e:5c:07:93:9e:0e:11:93:a2:ec:10:cf:62:83:20:
ef:30:62:13:4a:a4:6e:4d:93:06:ea:c4:6f:8f:cc:48:fb:ef:
a1:64:f9:d3:56:7b:a8:09:b1:8b:c4:bd:3f:b7:e0:56:a4:4c:
7f:38:6d:40:9b:fd:20:4f:72:3b:e4:96:ba:84:0c:d8:96:e8:
6c:ba:e8:91:8f:b0:6c:00:10:2f:42:6e:e1:f1:20:85:90:b5:
fd:d9:d5:fd:25:62:0b:7d:f8:5e:76:65:9e:64:87:6f:58:9b:
cc:64:bc:2d:a5:c4:6e:e8:60:30:5b:d8:1e:e9:d2:fc:5f:0b:
10:32:5c:d8:42:df:8c:8f:1a:68:6e:1a:41:60:4b:71:b6:3a:
45:84:b1:9a:64:e3:cf:3b:93:21:38:1e:68:dc:7d:8e:df:7b:
94:ff:91:ab:83:8c:5c:3b:49:48:a3:52:8c:76:aa:da:5e:91:
24:35:75:a1:fa:c8:35:e3:6c:cf:1a:4b:12:00:cd:65:24:53:
d9:75:df:d6:23:cf:50:40:8d:53:e9:5f:4a:cc:98:f6:e5:ae:
76:2a:d8:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org