Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/PhhAk02n0HZKzgYOquh6s63YQT0.roa
File: PhhAk02n0HZKzgYOquh6s63YQT0.roa (raw, json)
Hash identifier: JAm8m0NegDF7x0KKCLhD+yuvarjxUvm/9WZuTVWnpaA=
Subject key identifier: 3E:18:40:93:4D:A7:D0:76:4A:CE:06:0E:AA:E8:7A:B3:AD:D8:41:3D
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0185406C5EE86A3170A761DB778BDE57EAF4
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/PhhAk02n0HZKzgYOquh6s63YQT0.roa
Signing time: Fri 23 Dec 2022 19:18:42 +0000
ROA not before: Fri 23 Dec 2022 19:18:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26548
IP address blocks: 193.233.208.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:40:6c:5e:e8:6a:31:70:a7:61:db:77:8b:de:57:ea:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Dec 23 19:18:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e1840934da7d0764ace060eaae87ab3add8413d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:94:91:da:0e:9f:34:ad:db:ef:91:cd:cc:54:
90:d8:11:70:87:c2:ac:5a:dd:9c:b2:e8:25:8e:c5:
61:76:01:9f:4f:c1:29:69:19:5c:aa:df:7b:fe:a5:
e9:67:ce:ed:91:50:e0:cc:0f:a8:e4:90:fc:69:4c:
6a:89:84:c4:76:be:06:1e:a1:6d:ae:3d:52:97:cf:
b9:83:c7:4b:50:3c:27:cd:42:ad:96:e6:90:c8:37:
4d:c5:4c:0b:fa:f2:67:17:c6:15:7f:7a:91:9a:48:
94:df:a8:6b:07:1b:97:b9:ac:6e:d6:f7:9b:8c:f6:
be:5f:27:4d:bc:83:83:3d:64:fd:45:99:7f:fa:0f:
af:9c:d3:74:3a:60:65:3c:cb:66:ed:b5:17:eb:4e:
42:01:06:6b:eb:ed:4c:83:16:d8:4c:31:64:8a:4c:
81:9c:5d:c0:82:24:63:ac:64:f7:08:fa:dd:cd:00:
47:b4:d2:4b:c4:3b:8b:b7:ef:96:c6:7a:03:ce:27:
b6:e0:f5:2f:66:d6:41:f5:1e:f9:aa:7c:c9:a5:68:
86:b2:75:8c:1e:9b:93:71:57:12:2d:60:4d:51:34:
78:8f:88:7f:bb:4e:97:77:4c:46:de:d1:6c:f4:5c:
79:2d:e3:a9:51:4b:48:89:e8:5a:ed:81:ef:78:15:
28:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:18:40:93:4D:A7:D0:76:4A:CE:06:0E:AA:E8:7A:B3:AD:D8:41:3D
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/PhhAk02n0HZKzgYOquh6s63YQT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.208.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:18:47:9b:cd:80:2a:98:0a:41:52:d0:37:4b:8f:55:3e:1e:
cf:a1:29:e2:2a:1f:bb:71:a0:bd:1d:1f:a9:47:da:dd:b1:d1:
7e:63:5b:be:1a:bd:ba:02:0b:3c:34:73:ec:a8:17:32:85:37:
5c:a1:d1:34:e8:ca:a0:7d:f5:9f:91:8b:0e:69:fa:a8:fe:80:
d4:6b:d7:ce:bb:7a:4d:26:21:f2:92:65:ea:fc:9d:e1:4c:a8:
4f:b7:41:c0:32:b2:c6:6c:f9:0b:8d:80:e1:66:e6:60:77:fc:
80:69:12:8e:48:95:fc:88:47:b6:99:0c:b1:bd:a3:6d:48:63:
62:1f:ce:68:f5:86:a9:eb:60:3a:1e:3d:e9:fc:33:1e:69:a9:
e0:c2:51:f6:3e:43:46:03:ce:1c:09:5a:db:a1:8c:27:d2:1d:
6f:7e:75:e0:dd:9e:44:1f:65:5b:67:88:b3:d6:3f:0d:a7:25:
69:3a:65:f1:21:f4:19:85:6e:60:d1:42:ce:2f:8b:fc:ce:ce:
0b:7b:79:e2:9d:2f:cf:83:21:a7:df:3a:b6:2a:9e:30:f5:f3:
11:c3:5b:f6:d9:ea:0c:56:d1:3e:e5:4c:26:df:9f:2c:d2:d9:
48:21:75:2b:f4:87:4e:c8:31:56:6c:b1:f9:e3:57:fc:6f:b3:
d6:d1:08:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org