Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5f13a5-a8db-4c37-b7a7-c5378581b0e1/1/kbDj9YjAsCr8N6axbUYVdRiiKaw.roa
File: kbDj9YjAsCr8N6axbUYVdRiiKaw.roa (raw, json)
Hash identifier: o3M5FvzBNcU1Xj02VCo/WnKWdqPW0Dth/a+LGlt6R9Q=
Subject key identifier: 91:B0:E3:F5:88:C0:B0:2A:FC:37:A6:B1:6D:46:15:75:18:A2:29:AC
Certificate issuer: /CN=a1a6fc7262ba782dd5f643085982b5d36703dbfb
Certificate serial: 02D1C76F
Authority key identifier: A1:A6:FC:72:62:BA:78:2D:D5:F6:43:08:59:82:B5:D3:67:03:DB:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oab8cmK6eC3V9kMIWYK102cD2_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5f13a5-a8db-4c37-b7a7-c5378581b0e1/1/kbDj9YjAsCr8N6axbUYVdRiiKaw.roa
Signing time: Sat 01 Jan 2022 06:04:52 +0000
ROA not before: Sat 01 Jan 2022 06:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15925
IP address blocks: 193.41.124.0/23 maxlen: 23
195.110.26.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47302511 (0x2d1c76f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1a6fc7262ba782dd5f643085982b5d36703dbfb
Validity
Not Before: Jan 1 06:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91b0e3f588c0b02afc37a6b16d46157518a229ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:60:f5:f6:85:97:d0:59:88:82:d7:2b:3f:19:
a6:1a:e2:d6:f7:39:f2:22:c9:46:04:b0:cd:54:ea:
6e:c8:1e:28:4e:c6:cd:80:bd:d0:aa:ab:37:bb:96:
c2:e2:e1:37:db:9e:07:da:39:11:3f:34:3a:1b:21:
f5:7d:f9:8b:bd:21:b9:ed:75:1f:ad:65:4a:de:61:
e6:09:ef:ec:73:4f:0d:75:88:76:49:c6:2f:d0:7d:
44:fa:a8:4d:c1:30:de:7d:4b:49:60:4e:d5:ef:e3:
df:39:df:7a:ef:7d:0d:1a:d2:b8:c1:38:cb:1a:d8:
a3:84:51:27:d8:92:6e:01:1b:f1:f3:ae:0c:da:5f:
dd:ad:dc:0c:1a:9a:13:66:f6:cf:8d:d9:2f:11:69:
85:d3:58:60:cb:39:23:5b:69:c4:26:2f:82:23:09:
6d:3a:17:80:94:ac:9a:a1:90:80:8b:5b:6e:3c:e7:
56:bb:ec:fe:a4:5e:c5:db:4c:25:ec:cb:b6:07:f4:
bd:f9:b2:60:5f:15:79:9f:63:0e:1d:f9:a3:7c:97:
86:f8:60:d4:4c:e5:74:f1:fa:dc:a8:b4:b9:0f:35:
b0:68:12:77:76:71:79:f4:73:d5:16:0c:c2:35:0a:
37:74:77:ff:59:c3:1f:fd:19:fe:21:26:5e:50:f6:
86:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B0:E3:F5:88:C0:B0:2A:FC:37:A6:B1:6D:46:15:75:18:A2:29:AC
X509v3 Authority Key Identifier:
keyid:A1:A6:FC:72:62:BA:78:2D:D5:F6:43:08:59:82:B5:D3:67:03:DB:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oab8cmK6eC3V9kMIWYK102cD2_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5f13a5-a8db-4c37-b7a7-c5378581b0e1/1/kbDj9YjAsCr8N6axbUYVdRiiKaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5f13a5-a8db-4c37-b7a7-c5378581b0e1/1/oab8cmK6eC3V9kMIWYK102cD2_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.124.0/23
195.110.26.0/23
Signature Algorithm: sha256WithRSAEncryption
af:68:e4:d5:c3:0b:d1:bd:04:3b:19:75:0a:af:42:e8:8c:7f:
fe:5c:14:ae:b3:b9:3a:67:b0:80:21:6a:04:8b:95:84:34:4f:
ec:e9:71:02:35:44:ca:df:9a:07:d3:83:f1:aa:4c:b3:0e:ea:
c1:fe:3f:b7:5f:74:9b:5b:d9:1a:51:69:a1:5d:75:95:47:e0:
1a:b9:99:68:bf:c0:af:97:6c:58:b0:5a:dc:c6:3f:81:4c:85:
b5:5e:a2:cd:c5:0b:dc:03:c9:9a:f5:c2:25:be:d9:d4:de:b6:
8a:18:a2:8b:cf:dc:cb:e3:12:3c:43:66:88:c8:da:bf:45:cf:
0a:d0:9c:80:18:b6:b2:2c:ad:bf:4d:4a:59:b3:cf:9a:63:88:
bd:e2:d4:41:9b:1f:78:33:26:c9:63:64:21:e2:62:03:b6:20:
de:ab:b3:24:b6:d0:b1:e5:1f:9a:f2:c7:4f:a5:c3:89:be:90:
31:a1:89:91:f1:6d:5b:d9:dc:a8:83:9b:6a:6f:f3:f6:43:b5:
e1:80:9d:97:dd:b7:85:eb:b1:e9:22:0e:0b:b8:fc:62:bd:67:
04:30:7d:f5:f7:e6:7b:b5:19:3d:7d:c0:76:9e:2e:3a:09:5a:
92:1c:2b:7f:84:ec:3f:17:3f:ea:d9:02:ce:90:86:b2:99:5a:
8c:6a:ca:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:12 2023 by rpki-client on console-fra.rpki-client.org