Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/a5O2HumZJCFhuPQcQ4ATa87tMYs.roa
File: a5O2HumZJCFhuPQcQ4ATa87tMYs.roa (raw, json)
Hash identifier: cANKmR3xF8OJIaD3YfTO4AaJPS+JtBBYxbMI7UvTVBg=
Subject key identifier: 6B:93:B6:1E:E9:99:24:21:61:B8:F4:1C:43:80:13:6B:CE:ED:31:8B
Certificate issuer: /CN=ef477ca3b449bbc41247e8c921e4c8dabfc1afae
Certificate serial: 0B406E50
Authority key identifier: EF:47:7C:A3:B4:49:BB:C4:12:47:E8:C9:21:E4:C8:DA:BF:C1:AF:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70d8o7RJu8QSR-jJIeTI2r_Br64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/a5O2HumZJCFhuPQcQ4ATa87tMYs.roa
Signing time: Sat 01 Jan 2022 16:06:51 +0000
ROA not before: Sat 01 Jan 2022 16:06:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16245
IP address blocks: 193.17.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188771920 (0xb406e50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef477ca3b449bbc41247e8c921e4c8dabfc1afae
Validity
Not Before: Jan 1 16:06:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b93b61ee999242161b8f41c4380136bceed318b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e2:ae:d4:0a:e2:87:0b:6c:a8:7c:1c:ec:7e:
aa:35:40:a9:6f:90:f9:d7:01:aa:2a:59:cf:1d:dc:
78:b0:64:fc:95:53:6a:d8:45:07:38:11:d4:ac:fd:
ec:85:f9:20:c7:36:05:48:ea:cd:82:ae:67:0a:a1:
ce:0d:48:58:e5:c0:ac:db:da:03:b0:e3:92:eb:50:
aa:0c:4c:b0:ed:0c:00:24:8e:58:b4:1b:c7:72:3b:
f9:5c:af:27:f8:ba:65:23:d3:0c:34:59:c8:2a:19:
69:86:85:d9:0b:b3:3c:99:12:41:79:aa:0b:a6:c5:
ec:c5:26:7c:ba:13:04:06:9c:48:f5:59:44:87:fd:
d6:31:ed:fe:62:1b:e2:84:36:d5:e5:c1:0c:54:e6:
50:98:dc:88:0a:2e:eb:d2:d2:55:be:dd:95:68:fe:
ec:cf:df:ea:3c:30:97:32:1f:c7:b7:71:b2:2a:0d:
81:97:6b:84:4b:97:51:96:b4:61:05:fa:be:71:de:
85:b6:37:df:01:fe:39:09:88:66:25:47:62:57:af:
3e:b9:db:24:9f:5e:89:93:40:e4:33:b3:7b:fc:0a:
89:67:6d:d4:42:f6:fc:71:f0:2c:e9:e0:3e:a6:21:
b7:ea:a9:49:53:4e:a4:1b:10:43:49:c3:9d:08:c1:
dc:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:93:B6:1E:E9:99:24:21:61:B8:F4:1C:43:80:13:6B:CE:ED:31:8B
X509v3 Authority Key Identifier:
keyid:EF:47:7C:A3:B4:49:BB:C4:12:47:E8:C9:21:E4:C8:DA:BF:C1:AF:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70d8o7RJu8QSR-jJIeTI2r_Br64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/a5O2HumZJCFhuPQcQ4ATa87tMYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/70d8o7RJu8QSR-jJIeTI2r_Br64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.206.0/24
Signature Algorithm: sha256WithRSAEncryption
12:eb:ee:4c:ac:92:80:49:92:f6:b7:7a:ff:a4:6f:28:d4:f2:
63:ae:2e:ae:7a:78:70:da:bf:6c:a0:6f:87:34:91:c4:3d:5b:
7e:98:29:f3:30:3a:38:32:e4:ab:a2:e5:53:ca:22:48:d2:2e:
95:97:08:e2:5a:81:8b:f5:f2:f5:27:25:d3:65:0e:69:5a:cc:
06:02:15:c8:3d:79:ef:c5:7b:82:71:11:08:e6:01:0a:45:43:
7a:22:55:14:22:bd:48:2a:00:9d:ba:2d:47:75:d7:9e:fd:d4:
bd:14:14:c4:cf:0a:ed:1b:a4:e9:e4:83:e9:62:80:9c:98:9d:
17:82:f9:8c:ec:04:3a:cd:0f:99:ef:cc:92:8d:95:73:9a:07:
1e:72:de:bb:5f:66:ca:0c:03:a9:f1:45:f3:80:52:11:f3:be:
e3:a2:6b:2b:c1:2b:d9:ce:74:f9:d4:6b:ab:5b:35:65:a3:f2:
7d:e0:44:02:b6:21:2c:de:48:ee:fb:58:e0:b8:82:6c:2a:86:
24:4c:51:51:ec:2a:01:97:f5:9d:7a:8f:fb:f1:80:c3:50:b6:
26:7a:bb:e2:54:be:9e:20:a0:e8:cf:43:74:58:59:a7:b3:7b:
06:b0:3b:70:17:ed:ca:fd:d9:b7:3f:d3:e6:b2:74:98:57:16:
9a:22:d6:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:17 2023 by rpki-client on console-fra.rpki-client.org