Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/sJLSSCIsI7dBl1iEuk71cwHvMTg.roa
File: sJLSSCIsI7dBl1iEuk71cwHvMTg.roa (raw, json)
Hash identifier: OA14cgX87+Hk0RkV6W4mYqoQbsl+WEkiILleXjfYMBM=
Subject key identifier: B0:92:D2:48:22:2C:23:B7:41:97:58:84:BA:4E:F5:73:01:EF:31:38
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018259FF5F1D520B5A7640F69C582BEAEEE2
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/sJLSSCIsI7dBl1iEuk71cwHvMTg.roa
Signing time: Mon 01 Aug 2022 15:21:24 +0000
ROA not before: Mon 01 Aug 2022 15:21:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 193.233.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:59:ff:5f:1d:52:0b:5a:76:40:f6:9c:58:2b:ea:ee:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Aug 1 15:21:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b092d248222c23b741975884ba4ef57301ef3138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c6:ac:86:22:01:4a:d1:33:65:9d:d4:53:03:
c0:0d:18:20:7d:52:a9:65:a6:4d:af:7f:3d:10:53:
02:bd:12:dd:09:fe:87:8b:e9:1d:d7:b5:6f:90:d9:
20:22:5c:b1:d2:8a:01:b7:cd:e4:60:38:64:30:b6:
f5:12:58:7b:10:3b:db:d1:41:1a:e4:57:df:fa:a8:
39:27:0c:01:78:b6:9f:b4:bf:99:1b:10:9c:41:44:
dd:15:18:ae:ea:59:54:7b:14:64:47:57:d1:5e:c8:
71:d5:18:61:f8:56:b2:64:4e:82:23:57:60:50:66:
2c:cf:ed:84:90:62:a4:bf:4c:88:ca:6d:9c:84:1c:
58:5e:cb:b7:3a:b5:24:91:b5:14:24:89:b7:45:19:
90:36:b2:63:97:3b:f2:53:84:bc:1e:a9:f9:c6:8f:
25:df:88:31:b5:21:e1:10:57:91:4e:a7:d9:82:5d:
24:bb:e8:a8:e8:8a:35:61:bc:af:16:62:a8:06:88:
70:04:ca:df:15:3e:9d:cf:a6:bd:fb:26:ae:5c:c2:
ad:59:84:44:27:f3:93:a5:2c:92:03:0d:c0:7b:51:
82:85:61:53:2c:3f:6e:af:6c:93:1c:20:ed:bd:8d:
c7:cb:1a:fa:2d:74:85:63:1d:98:74:ed:f3:a6:27:
e8:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:92:D2:48:22:2C:23:B7:41:97:58:84:BA:4E:F5:73:01:EF:31:38
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/sJLSSCIsI7dBl1iEuk71cwHvMTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.242.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b8:c4:bd:89:64:ef:59:fb:e5:b1:b3:51:24:8a:0b:19:5d:
c6:36:ca:66:f1:e4:e4:fc:f2:35:e1:c9:9e:8d:1a:49:41:df:
a4:d5:cf:26:3e:1a:2d:f0:26:9a:d4:12:84:61:fd:a8:91:0a:
dc:ef:59:1c:bd:c6:f2:eb:26:86:80:73:af:74:d4:70:18:af:
cf:93:99:45:cf:6c:b9:d0:7b:1b:ad:e6:bc:62:33:95:02:de:
f9:ee:76:21:aa:4f:07:54:ef:ff:af:99:cf:d4:77:f6:61:fe:
1d:91:b5:3d:46:7b:71:8d:48:db:35:1b:28:fd:65:16:0a:28:
76:f2:49:89:1d:76:b6:9c:b1:08:6d:22:18:6c:e4:e7:c2:d8:
4d:4e:48:fb:4c:9c:a1:b4:3e:5a:67:c6:f0:0a:6b:aa:65:fa:
3f:67:61:92:1d:94:17:e9:3d:64:95:fe:9f:9c:c1:13:8f:ac:
98:b4:ec:74:5f:2b:2a:6e:6a:cc:87:6f:75:09:06:cb:8d:fc:
19:2c:dc:57:c3:d7:5f:95:a0:0b:67:63:9d:81:e0:63:f3:08:
84:d3:f4:81:b1:d4:ff:bd:0a:68:1f:92:bb:e4:ed:7e:ca:2a:
77:d4:68:ca:ba:05:ce:ef:c4:55:a9:84:f5:9a:50:d5:75:5f:
0a:c4:92:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-ams.rpki-client.org