Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/dCsT3D1cNJJTK-RXvieA1VKzhYg.roa
File: dCsT3D1cNJJTK-RXvieA1VKzhYg.roa (raw, json)
Hash identifier: FOF2sb3QUv+3Uw0slFoicF95XJjhVGaRW/KBZOAzyBI=
Subject key identifier: 74:2B:13:DC:3D:5C:34:92:53:2B:E4:57:BE:27:80:D5:52:B3:85:88
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0183B3CF2966572AAB430A6DE503E87E04FE
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/dCsT3D1cNJJTK-RXvieA1VKzhYg.roa
Signing time: Fri 07 Oct 2022 18:57:21 +0000
ROA not before: Fri 07 Oct 2022 18:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 193.233.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b3:cf:29:66:57:2a:ab:43:0a:6d:e5:03:e8:7e:04:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Oct 7 18:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=742b13dc3d5c3492532be457be2780d552b38588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:37:2f:e1:89:d1:69:85:93:c3:4a:87:04:37:
30:6c:45:b8:f6:b9:b9:ae:c3:66:9d:3e:21:86:73:
f8:3a:41:b9:d3:73:ac:8c:7c:23:e5:b4:e2:20:41:
d9:b2:af:43:07:96:0d:65:fe:98:41:03:45:9d:ef:
19:12:48:30:ad:d8:cf:ec:7e:c2:0b:0f:da:91:35:
41:1d:30:0e:ba:54:60:ca:49:db:32:a5:70:45:a7:
78:4a:83:84:15:8c:c5:7b:c8:1c:f6:fe:ab:42:40:
b4:d1:ab:df:d0:45:18:9f:b4:b5:96:c9:5d:a8:1c:
98:d1:bc:43:50:f4:56:df:c6:80:f9:5b:78:e4:a6:
c1:ad:f7:45:03:6d:a9:5e:10:d9:39:ad:fb:0e:c8:
8a:d0:be:dd:a3:02:90:d9:fb:88:9a:ef:a3:72:51:
55:c5:b0:1a:a4:27:c8:35:52:05:a2:98:4b:28:e7:
b8:39:a7:bb:12:34:fa:fb:f3:a3:fa:3f:ce:9c:c6:
15:89:34:33:cc:ec:f9:04:0a:f3:49:2d:78:bc:59:
dd:3a:b4:d3:6c:f0:70:40:6e:a8:74:98:b0:80:57:
ed:ca:bf:10:a0:3e:cd:79:a0:86:a1:92:14:a7:5c:
6b:54:9f:44:f8:ab:41:06:ac:e2:23:c6:c6:d6:29:
d1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2B:13:DC:3D:5C:34:92:53:2B:E4:57:BE:27:80:D5:52:B3:85:88
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/dCsT3D1cNJJTK-RXvieA1VKzhYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.100.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:1c:1c:87:2e:21:a9:1c:5f:99:35:b8:6b:64:8c:ca:92:ad:
ea:7a:cc:78:e6:20:44:71:75:b0:94:67:df:46:d1:a1:6b:af:
06:8b:e0:84:73:40:5b:ac:bc:9c:48:ad:9e:63:9a:3c:dd:fa:
d5:34:25:b7:24:71:89:bf:bb:e2:ec:7f:06:1a:7b:cb:73:74:
72:e1:2b:fc:b8:a3:e4:85:fe:b7:7f:7c:e5:3d:a5:3e:e2:6d:
4b:14:57:77:7f:96:b6:0c:20:b4:7b:cf:d4:6f:18:4b:0a:ff:
8b:7a:50:c0:fa:b6:49:6a:e9:52:3d:38:e9:18:19:cd:18:d1:
38:05:78:5e:7a:0a:db:bc:23:a7:18:40:31:c7:0b:61:d8:89:
6a:01:ec:64:32:d3:c5:b7:da:1a:8d:dd:c2:19:9f:3e:71:ff:
f2:fa:cd:61:60:f7:f5:24:c2:65:dc:42:5e:b5:5a:83:16:89:
d6:9b:7e:d1:58:c5:8b:02:07:14:51:1d:ea:83:c3:be:92:58:
b1:3b:49:15:5f:15:93:66:c3:2c:8a:bd:76:f1:ca:d0:dd:9e:
b8:0f:19:b3:34:f9:5a:41:c4:55:da:ea:bf:81:38:e2:fa:15:
4f:e9:2c:19:7a:0a:eb:af:d8:97:75:f6:b8:15:74:59:de:58:
2a:5e:20:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-ams.rpki-client.org