Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/w0RavHfvtdUrHAYlpMoJTe9ADI4.roa
File: w0RavHfvtdUrHAYlpMoJTe9ADI4.roa (raw, json)
Hash identifier: s4C4R0ZVBZAfeRS4mNehnPieIM6xSjppTyv63g0P+HI=
Subject key identifier: C3:44:5A:BC:77:EF:B5:D5:2B:1C:06:25:A4:CA:09:4D:EF:40:0C:8E
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 043E65BC
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/w0RavHfvtdUrHAYlpMoJTe9ADI4.roa
Signing time: Sat 01 Jan 2022 12:05:07 +0000
ROA not before: Sat 01 Jan 2022 12:05:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212980
IP address blocks: 193.233.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71198140 (0x43e65bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:05:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3445abc77efb5d52b1c0625a4ca094def400c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7f:ea:be:95:ff:84:2c:3c:c6:d4:c9:78:e2:
e4:52:6a:aa:b2:33:a8:34:f8:94:04:78:3c:b3:7a:
bc:b0:7a:0d:9f:01:12:e4:5d:7b:4c:29:a1:00:4b:
a0:52:3e:e0:3a:4d:8b:66:c3:c5:ef:14:15:49:0d:
17:9c:04:28:51:1d:21:59:ce:64:a4:88:f5:50:83:
f3:5e:86:37:ef:c9:0c:e4:71:7c:ed:18:d4:22:bf:
54:c9:0f:01:c1:af:9d:ac:bd:99:30:99:b6:ba:64:
13:b7:14:04:9e:c1:47:d0:d2:65:84:24:85:87:8b:
eb:c0:d5:8d:53:4b:07:8d:6f:16:31:0a:45:b1:1f:
5d:07:5d:f4:37:ca:f8:c1:00:2e:4b:d2:c6:79:d4:
18:8f:c0:ae:23:bc:f7:7b:54:1c:44:02:7b:7c:7b:
9d:7e:d3:b6:95:4c:2a:41:f8:7d:f3:40:fd:b8:63:
2a:c1:43:bc:0e:ac:2d:a2:06:c8:aa:8e:a3:3f:06:
41:07:13:1b:79:f9:62:f0:4d:15:bc:99:b3:70:66:
7c:4e:3c:21:41:9f:af:8b:be:1f:b1:ab:ab:c5:60:
6b:17:89:5d:a2:da:f9:5f:f3:15:45:77:f7:82:43:
74:b0:3f:ba:a7:2c:a9:bf:e5:a5:7e:7b:94:17:ef:
6f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:44:5A:BC:77:EF:B5:D5:2B:1C:06:25:A4:CA:09:4D:EF:40:0C:8E
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/w0RavHfvtdUrHAYlpMoJTe9ADI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.196.0/24
Signature Algorithm: sha256WithRSAEncryption
37:e7:0c:3c:9c:5b:e0:53:07:bf:92:e8:44:47:16:ad:33:b4:
90:d5:80:dd:ec:c0:e0:db:ef:a5:f3:30:45:bb:01:28:20:ef:
a9:ec:66:7c:3f:82:81:7d:58:d7:38:1a:e1:b4:b9:b6:ff:5c:
e4:d0:7d:b8:37:7e:ce:82:60:66:c2:7c:89:90:ca:bd:51:43:
c0:59:12:6a:93:e5:06:83:e4:e7:42:88:ff:f0:a9:18:93:cb:
ce:6f:29:99:78:cf:6b:41:5e:f1:00:82:a9:04:c6:f2:79:84:
b1:81:3e:dd:09:be:85:29:76:df:57:60:50:94:3e:f0:69:b3:
f4:74:f3:a9:6a:db:cd:1e:32:2b:f9:82:a5:7d:6b:1c:fb:ac:
07:0c:c1:0d:7d:a8:09:80:16:2d:f5:ab:5c:06:8b:93:40:ce:
0e:23:30:62:d7:1d:62:98:00:4c:ca:be:9d:af:de:4d:bb:b7:
38:92:0c:2d:b3:a0:21:51:33:e4:42:57:58:31:25:9f:d5:01:
5a:38:c2:71:60:b0:c6:da:26:87:ac:9c:bc:db:45:bc:55:8d:
70:a3:f7:1e:7a:57:cc:2e:94:2c:f9:1f:5c:f5:ca:b6:ce:09:
07:dc:ed:b6:e9:07:9f:a2:8c:7d:19:05:1c:ee:b0:bc:80:5c:
03:d7:eb:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-ams.rpki-client.org