Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/dvsdJmnOnlDHfCeVo3ZdvvsgJFg.roa
File: dvsdJmnOnlDHfCeVo3ZdvvsgJFg.roa (raw, json)
Hash identifier: tqDEbnjz4dmUYyrMyzvfFBeFXJwhSfEhkEU3fbCNsxc=
Subject key identifier: 76:FB:1D:26:69:CE:9E:50:C7:7C:27:95:A3:76:5D:BE:FB:20:24:58
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 05CA2913
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/dvsdJmnOnlDHfCeVo3ZdvvsgJFg.roa
Signing time: Wed 01 Jun 2022 18:03:21 +0000
ROA not before: Wed 01 Jun 2022 18:03:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 193.233.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97134867 (0x5ca2913)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jun 1 18:03:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76fb1d2669ce9e50c77c2795a3765dbefb202458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:00:1f:c5:39:e5:f5:e5:60:2e:27:4f:1c:a8:
e1:a0:f4:50:83:6c:14:98:f9:b8:7f:35:dd:75:17:
2a:5b:57:ea:a8:1c:f0:a4:97:c2:10:16:0b:3f:99:
bc:34:86:0e:f6:37:78:c2:5e:16:bc:e2:32:de:0e:
94:d0:8e:ca:0c:48:f1:cc:f2:15:13:0b:7a:7b:d1:
47:6e:ee:51:55:d6:21:f1:5f:30:17:52:05:8d:db:
ff:45:62:8b:af:6e:49:72:a7:2d:63:7e:59:01:e4:
e3:36:40:d3:4b:69:3f:b0:45:87:d2:33:19:ea:a7:
a4:54:5a:c2:56:af:3d:4a:0c:4e:81:a8:95:9b:e1:
9e:3c:20:77:05:48:be:4c:eb:b5:49:a5:7b:35:8a:
e8:a8:d9:0a:09:76:b7:7d:7c:2e:e8:f8:55:11:89:
85:64:00:3f:34:61:f4:31:1d:92:7f:e7:29:e6:8f:
3b:05:e9:02:ed:7d:6a:1b:8f:93:23:66:e8:9a:f3:
1b:a0:7c:ec:64:93:dc:40:71:a4:c7:e9:a2:38:53:
88:25:2c:ec:06:ca:b4:f7:94:64:92:30:d3:66:92:
13:39:a9:97:17:9b:9f:1a:7c:c9:ab:1c:f6:a4:14:
4a:74:b7:df:b9:ff:a3:ed:e0:7e:4b:aa:af:c1:f7:
3e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FB:1D:26:69:CE:9E:50:C7:7C:27:95:A3:76:5D:BE:FB:20:24:58
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/dvsdJmnOnlDHfCeVo3ZdvvsgJFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.108.0/22
Signature Algorithm: sha256WithRSAEncryption
45:58:21:9d:df:7c:e1:10:8c:91:51:4a:f3:3e:e0:0a:73:96:
02:44:36:62:c7:62:35:08:74:cd:6a:fc:c1:11:2e:d7:cb:a9:
71:12:99:03:a7:06:1e:60:83:de:e6:14:70:54:2d:d7:8c:5f:
09:35:d3:fc:62:c2:17:8c:65:76:d4:80:b5:de:3f:96:07:ef:
85:ef:46:5c:88:1a:81:12:c0:83:5c:61:cb:bd:78:a6:ce:c2:
06:3b:8f:9a:c7:41:55:b9:ce:87:28:f5:2a:77:73:ba:ca:6d:
75:d5:a8:be:90:ce:6c:3f:1d:b4:b6:cb:55:c2:d1:8f:59:c3:
ad:a0:a5:6f:42:93:3e:03:ba:fd:0f:70:6d:ef:8e:1a:0f:9d:
9c:20:53:e2:96:47:da:a3:b3:e2:a9:50:80:03:58:9a:05:76:
7a:7a:97:64:71:2e:43:92:41:a4:10:c1:25:6a:eb:23:dd:f6:
d7:a5:d8:a6:c3:f7:64:ca:e8:d0:85:83:1e:93:d9:56:c1:35:
0a:e8:21:79:4e:a5:f0:d9:5b:9f:2a:8c:5e:d2:7b:2f:39:5c:
e6:5d:33:9d:bf:4d:cb:a6:6c:a1:cc:f8:b2:7d:a9:79:2e:f9:
2d:33:16:f8:6d:45:be:e3:e3:b0:3e:3a:85:66:08:13:70:6e:
d7:70:f1:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-ams.rpki-client.org