Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/jJy7SeC2r5SzzoZL9mumI3fYaPw.roa
File: jJy7SeC2r5SzzoZL9mumI3fYaPw.roa (raw, json)
Hash identifier: XoagnstbtRjFoDIX1PN4BJSoVNSZAeLKiWeDEhjL0Qw=
Subject key identifier: 8C:9C:BB:49:E0:B6:AF:94:B3:CE:86:4B:F6:6B:A6:23:77:D8:68:FC
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0420CDA1
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/jJy7SeC2r5SzzoZL9mumI3fYaPw.roa
Signing time: Sat 01 Jan 2022 12:04:52 +0000
ROA not before: Sat 01 Jan 2022 12:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6869
IP address blocks: 193.233.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69258657 (0x420cda1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c9cbb49e0b6af94b3ce864bf66ba62377d868fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:85:74:8b:eb:25:33:0c:fc:b7:28:52:96:c6:
6e:89:17:ae:52:89:ff:3c:4d:44:b9:13:ee:1f:2d:
04:af:87:61:b4:d0:4c:ab:08:d8:64:f1:e4:ac:ef:
1e:70:6c:9e:f7:8a:a4:c8:6f:9f:32:87:84:9a:e6:
2e:9c:c8:10:35:0b:e5:b3:3c:c3:fa:1a:9e:36:15:
b0:3f:47:06:b8:7b:65:55:f4:e7:8e:5e:17:5c:c7:
ed:01:38:36:17:f6:d0:a3:63:e9:3e:db:2b:79:d2:
9c:6b:97:6a:c3:c7:ed:3b:a0:b7:ad:98:05:3e:46:
8c:06:3d:3b:6a:c0:b3:b8:78:9a:16:90:f4:df:82:
84:48:f4:dd:b6:fe:81:2d:60:48:45:16:38:4c:37:
2b:21:a9:de:6a:e6:5d:14:16:e5:9d:7a:e6:45:21:
5f:b2:4d:c1:21:d2:1b:10:92:f1:60:21:f9:9d:6d:
80:51:8b:a8:99:91:03:40:67:8a:b7:ca:b9:25:46:
ec:27:75:84:7b:97:93:a1:47:89:09:ae:e2:71:e1:
80:f2:08:96:3e:ec:38:d6:e7:e0:e3:63:fe:44:55:
32:1a:3c:2a:db:fe:94:8a:bb:13:15:1e:2c:38:17:
cc:e7:cd:02:40:b4:64:ce:e0:da:c5:45:23:25:31:
b9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:9C:BB:49:E0:B6:AF:94:B3:CE:86:4B:F6:6B:A6:23:77:D8:68:FC
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/jJy7SeC2r5SzzoZL9mumI3fYaPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.152.0/24
Signature Algorithm: sha256WithRSAEncryption
67:1c:65:c1:b7:f6:58:b5:22:80:87:52:f8:20:6e:ef:53:53:
88:c2:fc:6a:ac:bb:2b:40:aa:15:59:f4:1d:9f:8b:79:0f:48:
76:3a:67:68:7b:38:a1:8a:0e:ca:59:c1:62:60:14:e3:2b:e9:
4a:61:10:62:77:da:7d:85:d7:0a:f5:b5:74:74:e6:0e:d0:fe:
7d:07:a1:e6:16:43:5a:97:61:70:b3:cf:5b:c2:a0:2f:b5:22:
80:16:88:7a:57:50:c0:14:2c:cc:8b:cd:dc:79:c5:82:7b:53:
d4:56:0e:31:2c:ed:49:29:46:63:c1:1e:0a:1b:4f:e2:da:e6:
34:7f:63:55:05:3e:ac:28:b2:73:75:38:68:dd:ef:61:21:0d:
84:6c:40:7e:b4:74:f3:31:d4:6f:80:6c:64:de:d0:65:fe:d5:
de:ba:2c:a2:32:46:2e:81:e2:4f:64:97:9b:83:0e:7e:3e:08:
00:b2:32:79:bd:27:71:a2:37:17:31:65:eb:04:8d:d8:c7:f8:
6c:10:13:e2:2f:7c:2b:06:de:27:38:08:ef:5c:31:b3:85:9a:
8b:35:cf:ed:8f:b0:dd:27:ef:c1:b1:2d:a2:37:f7:ee:c6:a5:
2d:10:cb:67:48:d1:87:47:4a:58:ad:ff:59:1d:c9:68:40:45:
63:10:3a:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org