Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/iI8ObPyOMFLKDzF8HSTx_Uqjv5Y.roa
File: iI8ObPyOMFLKDzF8HSTx_Uqjv5Y.roa (raw, json)
Hash identifier: oIhhi2q5ztyfDH0dl1dtv17oLt2yXCKLfle5httVG3k=
Subject key identifier: 88:8F:0E:6C:FC:8E:30:52:CA:0F:31:7C:1D:24:F1:FD:4A:A3:BF:96
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 042FE3E8
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/iI8ObPyOMFLKDzF8HSTx_Uqjv5Y.roa
Signing time: Sat 01 Jan 2022 12:04:59 +0000
ROA not before: Sat 01 Jan 2022 12:04:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56690
IP address blocks: 193.233.12.0/23 maxlen: 23
193.233.24.0/23 maxlen: 23
193.233.26.0/23 maxlen: 23
193.233.28.0/23 maxlen: 23
193.233.54.0/23 maxlen: 23
193.233.166.0/23 maxlen: 23
193.233.168.0/23 maxlen: 23
193.233.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70247400 (0x42fe3e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:04:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=888f0e6cfc8e3052ca0f317c1d24f1fd4aa3bf96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:de:93:2c:f6:f7:b5:67:bf:cd:4e:37:75:a6:
32:11:8b:d0:75:4f:c2:10:1d:e9:6d:77:dd:85:21:
86:b3:f0:ec:af:29:ef:58:c6:65:02:17:9e:d9:0c:
ef:66:03:72:e3:5d:18:40:66:40:c8:38:ac:2c:f6:
09:25:fb:9e:7c:10:e6:07:a6:6f:15:26:5b:01:27:
88:b7:bc:6b:90:77:c3:20:e6:43:61:85:b2:58:b1:
57:00:cc:15:95:97:26:d4:10:fe:ab:eb:92:e8:2b:
b2:b3:06:d7:c4:fb:01:fd:cd:1d:15:c6:b6:c3:36:
50:64:32:07:0b:dc:1d:6d:24:dc:2e:38:a0:e0:7e:
bb:c3:e5:bc:45:c7:09:c6:f4:05:83:69:59:bb:e8:
b5:58:2f:7e:64:a4:90:d6:df:f6:8d:ab:da:55:e8:
22:f7:94:28:3a:59:fb:e1:aa:b2:f9:df:38:7f:9d:
0f:eb:bd:3c:cd:9e:96:21:da:16:b4:fc:9d:01:e7:
a4:bf:5c:62:19:30:31:dd:a2:51:8f:23:5c:b7:11:
0f:29:6c:03:d3:9b:23:52:c4:32:e3:e7:89:84:cd:
19:ed:f6:af:9b:53:a1:ab:a1:07:c3:9f:8e:71:56:
33:3e:db:e7:24:5f:49:1a:31:6d:1e:06:e6:38:3d:
55:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:8F:0E:6C:FC:8E:30:52:CA:0F:31:7C:1D:24:F1:FD:4A:A3:BF:96
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/iI8ObPyOMFLKDzF8HSTx_Uqjv5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.12.0/23
193.233.24.0-193.233.29.255
193.233.54.0/23
193.233.73.0/24
193.233.166.0-193.233.169.255
Signature Algorithm: sha256WithRSAEncryption
0f:28:56:84:86:97:ed:fa:55:49:4e:c8:ef:fd:ec:4a:40:0d:
ea:71:89:85:0a:ed:d2:70:02:b2:29:a2:94:01:2d:94:65:b4:
d7:6f:00:71:9a:9c:85:a7:f8:b5:34:ea:2f:10:27:44:54:f7:
61:bd:63:9a:dd:f1:a4:a9:ac:98:96:10:41:72:e8:80:44:e3:
06:c5:eb:52:b8:08:cb:54:c2:9f:5f:40:1f:18:2e:2f:04:5d:
b9:13:6e:7c:99:6d:b4:7b:f2:60:42:b4:b9:ab:4b:48:9e:e9:
44:2b:5f:24:de:53:78:4f:d5:e9:8f:53:63:34:b0:ad:14:02:
95:9d:3b:41:4a:40:19:27:d2:d9:8b:6e:26:f9:7f:e1:09:02:
b9:3f:dd:e3:b7:33:61:0d:1b:42:73:82:6e:4b:f1:bf:53:ca:
db:18:9f:18:70:b9:49:21:26:26:34:db:53:ab:7e:ce:7b:43:
d2:fe:4f:99:d3:cd:c1:68:d5:53:d7:85:60:c6:0e:97:c9:05:
81:bb:e1:8c:8d:47:90:b8:f1:92:f1:1c:8d:e8:b1:39:85:0b:
0f:fd:f8:85:e5:21:0c:f5:b3:f0:93:fc:73:9b:b2:ec:d2:bd:
5b:bf:c0:5f:80:74:f1:f1:7f:8e:4b:74:8b:25:09:99:62:c2:
02:9d:18:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:39 2024 by rpki-client on console-fra.rpki-client.org