Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b55e40-d8be-48d9-bd55-c83007327449/1/RIm4vqcK7Azj-Z7ELn_bKK8Vzuc.roa
File: RIm4vqcK7Azj-Z7ELn_bKK8Vzuc.roa (raw, json)
Hash identifier: 4UyzsPp1qQyrjhRGA7IcxpaiHUr3GUdnuCRtXAecc2k=
Subject key identifier: 44:89:B8:BE:A7:0A:EC:0C:E3:F9:9E:C4:2E:7F:DB:28:AF:15:CE:E7
Certificate issuer: /CN=dfc2603437ef74117fa12272ec42c2527da800c7
Certificate serial: 0182EAA56C60D7375CE168512BD8C5B85B0F
Authority key identifier: DF:C2:60:34:37:EF:74:11:7F:A1:22:72:EC:42:C2:52:7D:A8:00:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/38JgNDfvdBF_oSJy7ELCUn2oAMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b55e40-d8be-48d9-bd55-c83007327449/1/RIm4vqcK7Azj-Z7ELn_bKK8Vzuc.roa
Signing time: Mon 29 Aug 2022 17:28:05 +0000
ROA not before: Mon 29 Aug 2022 17:28:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51907
IP address blocks: 193.134.16.0/20 maxlen: 24
2a10:8244::/30 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ea:a5:6c:60:d7:37:5c:e1:68:51:2b:d8:c5:b8:5b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfc2603437ef74117fa12272ec42c2527da800c7
Validity
Not Before: Aug 29 17:28:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4489b8bea70aec0ce3f99ec42e7fdb28af15cee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:66:6b:9a:2f:a9:b6:ff:32:d6:33:6f:1e:32:
a7:3c:79:1e:50:8e:46:fc:3a:05:23:3b:72:fa:8d:
a4:64:1a:d2:c4:66:21:a7:73:ce:e1:e2:19:fb:24:
cc:0e:03:03:4a:6a:f7:a2:17:f1:47:0b:c7:0b:8c:
63:ce:98:77:22:dc:6e:12:ac:d0:46:4f:cc:49:ff:
90:86:76:5a:bf:90:e1:71:3d:91:e5:5e:da:78:c0:
5d:9f:61:82:1e:ba:4b:7c:17:00:6b:e2:08:9d:95:
d1:37:48:03:0d:ee:5e:f8:fd:8a:72:f2:15:94:88:
ab:5e:6d:88:f0:69:74:ac:1c:08:cd:25:0f:c6:42:
b4:d2:15:07:c6:93:ba:ea:8c:cd:86:dc:0e:9d:bf:
32:98:32:8e:35:22:ff:4f:05:bc:bd:ec:24:6b:a4:
93:53:4d:4e:bd:43:99:f6:d5:e6:25:5c:b5:14:de:
8a:34:f8:a5:a9:f4:38:40:d1:12:e5:91:3c:32:15:
9e:a8:de:2d:c8:7b:44:db:87:c9:cd:39:66:1a:f6:
97:b0:17:d6:35:e6:b0:d1:95:7c:89:38:7c:c0:83:
af:d7:79:dd:a2:b9:6d:29:07:a9:83:11:52:17:0d:
06:6f:18:c9:02:12:d3:bb:68:97:c2:75:4a:fa:3d:
db:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:89:B8:BE:A7:0A:EC:0C:E3:F9:9E:C4:2E:7F:DB:28:AF:15:CE:E7
X509v3 Authority Key Identifier:
keyid:DF:C2:60:34:37:EF:74:11:7F:A1:22:72:EC:42:C2:52:7D:A8:00:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/38JgNDfvdBF_oSJy7ELCUn2oAMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b55e40-d8be-48d9-bd55-c83007327449/1/RIm4vqcK7Azj-Z7ELn_bKK8Vzuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b55e40-d8be-48d9-bd55-c83007327449/1/38JgNDfvdBF_oSJy7ELCUn2oAMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.16.0/20
IPv6:
2a10:8244::/30
Signature Algorithm: sha256WithRSAEncryption
93:17:e3:30:0f:78:23:f4:74:38:11:b4:df:de:49:9f:ee:a1:
f4:78:4c:89:c7:d5:c2:c0:01:e7:70:8e:bf:4a:16:97:a4:56:
33:8c:45:2b:06:1e:1e:10:8d:0d:76:cf:37:63:1e:1d:e1:00:
6f:8a:bb:7d:da:a5:8d:d1:45:38:f3:ad:f2:49:13:b4:6b:b9:
c1:f1:bd:13:c4:94:13:05:aa:2d:a6:70:ae:45:71:82:04:64:
b8:ff:4b:3e:70:8a:b4:4b:ec:d4:67:81:90:00:2d:07:c2:31:
e8:56:0f:67:48:cc:87:8f:4c:90:84:a3:56:8c:46:fc:f9:b5:
8b:52:2e:28:bd:de:5d:35:2a:d8:98:ce:c6:fd:f2:a4:94:cf:
bb:0b:b8:e5:55:2d:fa:4c:96:c1:cf:78:c9:12:a8:fb:6e:04:
26:34:ba:ae:c9:25:70:59:ab:ea:df:4b:55:36:25:60:28:01:
4a:31:1e:41:8f:12:5c:5e:e6:ba:ed:5a:05:52:a6:8e:e4:4d:
53:41:3f:73:bc:a7:76:cd:f4:94:e6:6d:af:c0:13:44:4b:a4:
9b:ef:76:96:84:09:f8:f3:b2:36:98:7e:8d:ff:b4:37:ef:cd:
fc:94:f5:7d:7e:ca:3a:6f:f8:6c:88:8d:60:84:15:ba:4f:ae:
f4:ea:9b:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:35 2023 by rpki-client on console-ams.rpki-client.org