Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/63bb79-93b0-499f-978d-10fe44726908/1/rqT6cH5ZtO9v02cHpDJ6mkiknFs.roa
File: rqT6cH5ZtO9v02cHpDJ6mkiknFs.roa (raw, json)
Hash identifier: 9Csj3fxuYBw7ujspjSxMI5VMyMCm2t4U6A5eSADdBH4=
Subject key identifier: AE:A4:FA:70:7E:59:B4:EF:6F:D3:67:07:A4:32:7A:9A:48:A4:9C:5B
Certificate issuer: /CN=3ead19096b0ee080fe43810500b718a947fed229
Certificate serial: 0185390200A332FD52521358BFDC56C36615
Authority key identifier: 3E:AD:19:09:6B:0E:E0:80:FE:43:81:05:00:B7:18:A9:47:FE:D2:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pq0ZCWsO4ID-Q4EFALcYqUf-0ik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/63bb79-93b0-499f-978d-10fe44726908/1/rqT6cH5ZtO9v02cHpDJ6mkiknFs.roa
Signing time: Thu 22 Dec 2022 08:45:10 +0000
ROA not before: Thu 22 Dec 2022 08:45:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 193.108.136.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:02:00:a3:32:fd:52:52:13:58:bf:dc:56:c3:66:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ead19096b0ee080fe43810500b718a947fed229
Validity
Not Before: Dec 22 08:45:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aea4fa707e59b4ef6fd36707a4327a9a48a49c5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6e:55:ab:44:70:16:1b:46:a5:46:f2:45:4e:
cb:89:ef:52:50:d2:9d:ba:38:d1:03:0f:5a:9f:b7:
99:25:bf:61:e6:12:80:dc:e0:b3:ab:b0:d4:c8:5d:
6c:31:6d:ec:b8:91:f9:e5:12:d1:be:99:cb:59:9b:
c8:ee:7e:6b:d6:df:1f:85:b9:6e:e4:7e:09:c6:ba:
c7:f8:6e:b0:2e:1b:e2:4c:bc:4d:a9:97:55:df:bf:
09:3f:85:2d:62:a9:45:f6:d3:eb:42:0c:d8:1b:69:
b6:01:af:76:6f:49:f5:f7:0d:91:54:19:09:43:09:
11:96:10:cd:27:69:54:3a:47:25:7b:ce:c8:3b:ee:
a1:10:37:41:3a:1f:64:36:73:89:9e:1a:af:6d:b9:
a4:d7:2d:c1:e1:a0:49:89:22:8b:cf:14:30:87:42:
d7:34:f0:50:de:39:83:77:53:09:a9:ca:4e:4a:4e:
99:11:50:9b:f7:bb:04:57:fe:ae:23:3a:86:41:33:
2f:72:a3:53:2d:62:64:d4:36:ef:d6:17:45:27:f8:
1b:8f:45:c7:6e:37:c0:cc:89:2a:6d:56:0b:bc:c5:
31:4e:70:31:0e:c0:43:ea:6a:94:de:42:0d:4c:9b:
ef:dc:26:3d:aa:53:53:5b:a5:d0:7e:ff:ca:4c:ab:
c4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A4:FA:70:7E:59:B4:EF:6F:D3:67:07:A4:32:7A:9A:48:A4:9C:5B
X509v3 Authority Key Identifier:
keyid:3E:AD:19:09:6B:0E:E0:80:FE:43:81:05:00:B7:18:A9:47:FE:D2:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pq0ZCWsO4ID-Q4EFALcYqUf-0ik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/63bb79-93b0-499f-978d-10fe44726908/1/rqT6cH5ZtO9v02cHpDJ6mkiknFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/63bb79-93b0-499f-978d-10fe44726908/1/Pq0ZCWsO4ID-Q4EFALcYqUf-0ik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.136.0/23
Signature Algorithm: sha256WithRSAEncryption
96:5a:43:3c:ce:2a:21:e5:8e:d5:98:f8:37:3f:87:8e:a1:51:
29:ba:9b:38:5b:3c:6f:35:6e:55:81:af:e7:8f:99:34:50:f5:
56:b5:db:7c:c8:4e:f0:a4:a3:f7:85:c8:3c:a3:b2:8c:7f:14:
e2:2c:bc:f1:cb:f6:58:5c:7c:52:9b:31:19:a2:39:0e:94:95:
00:bb:aa:14:9f:c2:56:be:12:a7:e3:50:1a:56:ac:e0:1e:38:
87:3c:19:9e:26:3b:1f:07:7f:e5:6e:97:b9:64:55:25:8e:d1:
c2:f7:4f:de:15:fa:30:69:64:7a:6e:28:66:b6:87:ba:e3:4c:
68:48:ac:f2:ff:46:7b:f8:dc:3e:c0:7f:ad:78:a7:9f:b7:26:
59:aa:58:02:ef:e9:29:3a:83:1f:d4:27:13:30:0f:fa:f5:3b:
46:75:da:1c:3c:4e:49:e5:3c:ed:98:42:70:26:5e:7d:44:48:
e1:09:54:35:61:6a:95:47:6a:d6:a2:d7:0a:33:0a:a2:71:d7:
d2:3b:1e:cd:93:1f:67:c0:f3:53:87:7e:1a:6a:88:fc:d6:c1:
40:aa:d1:da:1c:5e:e7:78:d1:b3:13:8a:c4:72:83:56:d3:5e:
0f:04:2d:98:6b:16:e1:68:ba:a0:d7:27:a2:8c:df:05:d5:70:
11:f4:c3:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:07 2023 by rpki-client on console-ams.rpki-client.org