Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/oA-SQVzhSoG08c41l1XuC_uhC1A.roa
File: oA-SQVzhSoG08c41l1XuC_uhC1A.roa (raw, json)
Hash identifier: 8wZxs8XdBOja1WwUxrMfZf6EA1Vxj4XEIvrgBnWyyYo=
Subject key identifier: A0:0F:92:41:5C:E1:4A:81:B4:F1:CE:35:97:55:EE:0B:FB:A1:0B:50
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 042BCC3E
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/oA-SQVzhSoG08c41l1XuC_uhC1A.roa
Signing time: Sat 01 Jan 2022 12:04:57 +0000
ROA not before: Sat 01 Jan 2022 12:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49453
IP address blocks: 193.233.248.0/24 maxlen: 24
193.233.251.0/24 maxlen: 24
193.233.250.0/24 maxlen: 24
193.233.249.0/24 maxlen: 24
193.233.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69979198 (0x42bcc3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a00f92415ce14a81b4f1ce359755ee0bfba10b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:af:7d:b6:05:af:df:35:04:94:9f:61:4f:40:
97:e4:6e:15:4b:46:0e:79:6f:b0:22:38:06:d0:b1:
0b:ae:f4:51:14:09:a0:fc:02:35:fb:21:3b:eb:60:
0b:ef:10:29:ad:f8:f0:6a:f2:70:60:42:d2:1e:fb:
aa:99:52:a7:26:e9:08:9d:c5:ec:af:2e:4f:c1:c8:
ee:7e:f7:62:a9:b3:db:e0:63:a4:43:d7:8d:0c:08:
c2:f4:aa:75:12:6c:66:e5:b9:43:04:b3:13:02:0c:
16:e5:b2:51:76:65:89:06:d0:fd:20:2a:fa:90:f1:
8e:cd:bf:e3:cf:43:e7:e0:86:0b:67:e6:9c:9a:15:
c3:4d:97:6a:17:81:2f:b0:3d:94:c0:a2:23:bc:e3:
f1:2d:3f:e8:b7:1b:53:68:79:73:d5:28:90:67:2c:
a6:3c:9b:d8:83:43:cb:51:6f:7f:0b:c2:4e:cd:de:
af:ff:b6:2e:e5:90:90:65:30:9f:01:b7:2d:26:58:
17:95:34:9c:35:76:a2:26:db:81:22:1b:35:ed:6c:
e5:2d:7a:ee:77:59:c8:a3:c5:84:61:b4:c7:c7:e0:
46:c9:11:18:3c:b1:43:ec:cf:8f:0c:5a:de:a1:89:
30:76:b8:b2:71:95:88:ca:b4:ff:8d:c5:b9:d8:1f:
01:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:0F:92:41:5C:E1:4A:81:B4:F1:CE:35:97:55:EE:0B:FB:A1:0B:50
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/oA-SQVzhSoG08c41l1XuC_uhC1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.88.0/22
193.233.248.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:9d:f4:55:4e:38:36:ad:34:d4:ff:b8:01:82:80:43:c2:72:
60:6d:d0:a6:38:99:49:24:9a:68:46:25:0d:1f:48:13:0d:7b:
e7:b5:e6:c4:95:82:c9:31:33:d1:f4:61:6e:d7:01:04:ee:82:
54:7c:fd:77:cc:d1:be:1b:6b:33:b5:fb:7e:a0:72:81:b5:27:
24:d1:b9:4d:ed:ed:26:3d:d8:fe:9f:e7:cc:d7:04:08:cb:e9:
07:1e:59:1c:e1:9e:5b:86:36:53:7f:0d:37:e3:55:1c:cb:2a:
7a:69:55:75:61:15:79:7d:d7:3b:0e:30:e0:c9:3e:c4:8c:16:
99:bb:12:a6:a9:aa:ca:f5:eb:f3:28:ea:2f:8c:ed:dd:4c:7f:
68:c5:9a:2d:a3:21:a4:66:bc:8d:9d:2e:03:38:d4:b2:01:b9:
f4:0f:51:3c:0b:18:3d:88:5f:cd:ce:ed:13:f9:c8:bf:4e:58:
3f:9e:ac:39:08:4c:3b:54:d5:c7:02:b2:de:0d:94:31:77:29:
c5:9b:97:e7:f4:7d:b8:78:13:a6:01:cc:32:cb:10:2b:34:90:
7b:62:c8:6e:38:e4:6b:15:f4:bc:79:3b:2e:f6:94:43:49:fc:
8f:8e:02:29:f9:6e:91:51:92:95:a0:a7:f5:57:2e:24:79:0d:
f0:f9:55:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:39 2023 by rpki-client on console-fra.rpki-client.org