Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/dI_erF168-DpA9y6IY0LXOUCZTo.roa
File: dI_erF168-DpA9y6IY0LXOUCZTo.roa (raw, json)
Hash identifier: /jxyxDA7Qao57EUVJEph/K2OdnkYhx0ecX91YMt3xyE=
Subject key identifier: 74:8F:DE:AC:5D:7A:F3:E0:E9:03:DC:BA:21:8D:0B:5C:E5:02:65:3A
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 04C67C4A
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/dI_erF168-DpA9y6IY0LXOUCZTo.roa
Signing time: Thu 17 Feb 2022 13:43:40 +0000
ROA not before: Thu 17 Feb 2022 13:43:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210352
IP address blocks: 193.233.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80116810 (0x4c67c4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Feb 17 13:43:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=748fdeac5d7af3e0e903dcba218d0b5ce502653a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7a:b7:8a:62:a2:59:60:1e:92:f0:2d:c6:8d:
02:db:0f:e4:a8:32:20:da:45:59:9e:4f:9b:84:45:
f7:fa:13:c8:23:9b:fd:fd:63:f0:21:34:51:c3:5c:
45:61:64:4a:6f:de:a0:bb:08:34:fc:fe:2c:58:e0:
0f:b8:74:69:3d:ae:53:83:cf:d5:88:97:7a:e1:dd:
2d:9d:4d:de:96:f1:dc:37:d3:40:10:b5:94:e9:b2:
22:dd:3c:21:aa:93:0d:a7:6a:7b:30:33:01:1d:05:
74:39:2b:99:0c:f7:f3:36:df:85:71:e3:78:2d:9b:
20:ef:8e:2c:56:a8:65:39:5e:47:f9:1d:88:eb:52:
08:3b:0c:a4:e6:cc:84:5a:b8:cc:a0:09:92:d0:ad:
2b:57:93:c9:71:65:1c:e3:df:90:26:1c:c1:f5:3b:
34:c5:a7:20:7a:5b:3e:02:1d:6c:a8:ac:4a:f3:0e:
4e:93:83:93:1f:c2:14:11:8a:8c:7a:71:57:4e:ce:
d3:2e:31:4f:43:50:69:f9:cd:18:bb:29:1d:8a:87:
8f:c7:9e:19:da:1a:72:0c:89:31:2d:2f:e5:b8:c2:
d2:bf:73:dd:77:b9:6b:25:11:4d:98:0e:43:a6:57:
76:77:f8:b3:0e:9b:82:75:31:06:c7:34:99:f3:d7:
6f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8F:DE:AC:5D:7A:F3:E0:E9:03:DC:BA:21:8D:0B:5C:E5:02:65:3A
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/dI_erF168-DpA9y6IY0LXOUCZTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.49.0/24
Signature Algorithm: sha256WithRSAEncryption
91:d2:76:83:b9:40:a4:70:71:46:ac:7f:ec:d2:c0:a1:b1:3c:
69:8e:df:e8:cf:7a:5b:b0:3a:74:8e:15:6c:31:20:09:26:1c:
5e:4a:21:14:a0:5e:23:35:bb:ed:0a:89:0e:80:d5:61:60:19:
4a:a4:8a:81:2d:73:01:1e:e7:fd:e4:5d:e4:07:4e:cf:65:3c:
e0:51:f8:2d:b6:dd:b2:5f:d0:fe:19:43:77:ef:ea:bf:b9:bf:
00:df:b4:46:9e:81:f2:2a:ae:e7:51:14:12:8b:79:99:d7:78:
89:67:5b:d1:98:47:14:dc:72:9d:41:32:0b:33:78:8a:f8:df:
29:e1:da:92:00:e1:55:50:a3:69:17:4a:6b:6e:05:b2:7f:4b:
41:34:a7:66:b6:b6:70:6b:bb:06:fd:da:a4:9d:49:7d:0e:6d:
ae:60:16:b6:6a:fe:ab:17:aa:84:dc:c0:58:04:b7:0b:d9:a5:
95:9f:e5:27:82:c8:02:ac:cf:ae:03:04:1f:30:bb:37:ad:85:
c2:3b:4a:06:d4:12:4f:49:d2:ef:b5:81:eb:f9:42:d8:6f:8f:
db:c1:96:a0:43:0c:cc:f3:78:86:72:cc:d2:de:1c:98:35:86:
a4:62:db:00:b2:2c:75:62:fd:7c:d6:77:1e:b9:2f:5c:f3:78:
ae:ae:ad:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org