Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/d96da6-12b2-446e-8d99-7cb345e8541a/1/hxDz3hBXYRoVZHdNs_l2TFfAvYM.roa
File: hxDz3hBXYRoVZHdNs_l2TFfAvYM.roa (raw, json)
Hash identifier: SzToGZpO7+NnyUlzq3Pn8WiceGR7T9prJm8KSvN4/uk=
Subject key identifier: 87:10:F3:DE:10:57:61:1A:15:64:77:4D:B3:F9:76:4C:57:C0:BD:83
Certificate issuer: /CN=e4a714ffc598b15647bbafe2c6460a87eafbcf97
Certificate serial: 02169AA1
Authority key identifier: E4:A7:14:FF:C5:98:B1:56:47:BB:AF:E2:C6:46:0A:87:EA:FB:CF:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KcU_8WYsVZHu6_ixkYKh-r7z5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/d96da6-12b2-446e-8d99-7cb345e8541a/1/hxDz3hBXYRoVZHdNs_l2TFfAvYM.roa
Signing time: Sat 01 Jan 2022 00:54:08 +0000
ROA not before: Sat 01 Jan 2022 00:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.30.161.0/24 maxlen: 24
193.17.68.0/24 maxlen: 24
193.200.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35035809 (0x2169aa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a714ffc598b15647bbafe2c6460a87eafbcf97
Validity
Not Before: Jan 1 00:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8710f3de1057611a1564774db3f9764c57c0bd83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7e:21:c8:9e:46:db:9c:f3:c8:87:c2:b1:d0:
8c:c6:81:84:ad:2b:66:fc:a9:71:85:e8:12:17:5c:
f7:66:31:09:0f:f3:dc:24:21:22:e4:69:23:89:ae:
1f:7f:c9:52:3b:ac:78:ef:85:d0:ea:bd:de:cc:a2:
12:17:61:20:28:75:2f:58:ef:08:65:60:a0:0f:4c:
fd:d9:f1:38:eb:d3:02:23:b0:f1:44:60:3f:14:c3:
55:68:af:fc:90:b4:89:ca:7a:48:dc:7a:7a:06:b7:
f2:2b:62:10:b5:26:83:16:93:a5:4a:18:60:24:12:
5a:0a:8a:3a:e0:c1:ed:be:67:b9:98:4e:96:4d:95:
dd:60:f7:b3:12:d9:8d:d2:c1:01:88:e2:28:49:65:
c6:87:d4:a4:4b:48:7f:09:f1:c9:cf:bb:fa:1a:4a:
0a:bd:d5:8d:26:c5:7f:18:ca:69:07:f7:8f:59:ad:
8d:ea:3b:bb:ab:b9:7f:5e:1a:0a:6c:8f:80:d9:48:
c8:bd:52:34:4a:f5:bc:36:fe:ae:87:9a:1b:b5:99:
37:e8:fe:1d:1a:a8:5f:0a:8c:9d:73:0f:7e:1b:cb:
ab:1a:1f:79:e0:5f:b7:ab:14:d1:42:ac:99:20:3c:
87:10:27:10:3d:ab:d0:11:f8:52:ae:8c:ae:51:99:
34:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:10:F3:DE:10:57:61:1A:15:64:77:4D:B3:F9:76:4C:57:C0:BD:83
X509v3 Authority Key Identifier:
keyid:E4:A7:14:FF:C5:98:B1:56:47:BB:AF:E2:C6:46:0A:87:EA:FB:CF:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KcU_8WYsVZHu6_ixkYKh-r7z5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/d96da6-12b2-446e-8d99-7cb345e8541a/1/hxDz3hBXYRoVZHdNs_l2TFfAvYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/d96da6-12b2-446e-8d99-7cb345e8541a/1/5KcU_8WYsVZHu6_ixkYKh-r7z5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.68.0/24
193.30.161.0/24
193.200.30.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:7d:4b:72:f9:11:f6:b1:d0:1e:17:18:f4:19:fb:88:d5:fd:
c6:8d:43:94:c2:1c:91:21:75:3e:ba:1c:34:e6:65:0a:a3:d1:
b9:a7:94:30:2d:b8:5e:dc:3b:5c:33:68:1d:39:8c:00:5e:67:
7f:8f:a8:ab:9a:26:05:89:92:1b:d8:8b:26:ec:8d:54:bd:19:
66:ca:ea:48:33:bf:15:f6:60:e9:09:81:6a:ef:a4:10:ed:27:
f9:5c:c8:ce:81:8a:98:ab:31:4b:b4:3f:ca:ee:90:d4:0f:97:
21:44:8b:f0:7c:a9:11:6f:14:74:eb:5e:a9:0e:d2:36:00:d5:
0d:cb:89:3d:b5:c0:05:fd:bf:71:25:1f:c9:34:b7:e5:ff:bf:
bf:95:ae:53:9a:06:be:23:19:a1:ba:87:b1:bc:ae:ad:ca:aa:
22:59:a3:0d:52:82:c7:13:86:d7:15:65:c0:e3:f5:a3:b0:53:
40:dc:29:4a:be:26:35:7c:54:ce:41:31:90:c7:6d:28:da:69:
ac:f1:2e:fc:a8:46:64:16:6d:00:52:c4:5c:bf:58:ef:34:aa:
62:2d:67:ba:ab:22:c9:b9:7f:4f:43:eb:64:7f:d5:c2:c1:64:
70:dc:5d:75:82:48:d7:15:aa:60:fb:67:a5:79:81:7d:22:2f:
8f:1b:18:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:45 2024 by rpki-client on console-ams.rpki-client.org