Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/cNhjOpbUHGvrgtIB3n7eR6cN1Cc.roa
File: cNhjOpbUHGvrgtIB3n7eR6cN1Cc.roa (raw, json)
Hash identifier: tiVZwkZ6C8K7POhGpySvZpp8blpjMxpJvHQ/g777zjA=
Subject key identifier: 70:D8:63:3A:96:D4:1C:6B:EB:82:D2:01:DE:7E:DE:47:A7:0D:D4:27
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1931FBB0
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/cNhjOpbUHGvrgtIB3n7eR6cN1Cc.roa
Signing time: Sat 01 Jan 2022 11:57:09 +0000
ROA not before: Sat 01 Jan 2022 11:57:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39668
IP address blocks: 193.230.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422706096 (0x1931fbb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 11:57:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70d8633a96d41c6beb82d201de7ede47a70dd427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c9:e2:85:6d:28:0d:1f:db:db:54:16:a0:07:
e2:94:74:73:9a:dd:2c:d5:54:5c:c1:89:74:21:b3:
9e:08:23:49:09:13:73:d1:1d:21:8a:f8:64:a7:79:
7b:b8:0c:d0:f7:96:48:71:f9:6d:b9:af:3d:ec:5a:
6a:34:2f:9b:9a:90:7d:87:ee:a1:ba:e0:f3:3f:c5:
af:8e:2f:80:04:48:88:06:a9:b5:5b:aa:9c:f9:8a:
47:7a:d6:28:be:6a:d3:0b:21:9b:45:8f:e6:c2:30:
a6:1e:44:b6:a8:df:19:2e:b5:6e:4e:a8:89:19:04:
ba:7b:9f:b2:cb:4b:fb:e1:4d:c2:69:1d:1c:d5:11:
d0:56:8e:71:33:ff:87:91:90:19:ac:a8:a6:65:0e:
e2:4a:08:8a:b2:14:67:1d:d4:5b:40:d9:cc:aa:c4:
0f:66:3e:2d:5a:26:14:bb:a9:23:a5:17:38:6c:85:
c6:aa:9a:2e:0a:5e:ce:e5:05:e9:c8:10:e7:d5:ec:
32:36:49:d2:e8:9b:50:25:ff:c3:96:36:6e:a6:b5:
e0:05:fb:56:5e:16:e6:c1:a2:c7:d2:46:7c:c7:68:
bb:3c:2d:b9:07:87:b0:c6:79:0a:2d:a5:c5:6f:ef:
d8:5b:25:ad:e3:e4:63:c1:1a:0d:7a:a7:8f:ac:62:
27:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D8:63:3A:96:D4:1C:6B:EB:82:D2:01:DE:7E:DE:47:A7:0D:D4:27
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/cNhjOpbUHGvrgtIB3n7eR6cN1Cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.230.215.0/24
Signature Algorithm: sha256WithRSAEncryption
24:96:94:97:81:ae:03:c0:61:1f:93:ba:e9:0a:8a:e0:77:aa:
d8:b2:dd:24:e6:15:32:fd:f3:26:0a:69:1e:cf:f2:8c:04:25:
88:f5:17:36:c0:4c:88:b2:b6:35:c2:4a:07:5d:95:d9:b4:54:
55:ed:ac:11:75:90:95:4d:b9:cf:10:35:e3:1e:69:4a:b9:18:
b4:f2:42:53:ba:1a:b7:d8:29:1c:df:8f:2e:77:be:9c:2b:13:
d5:de:7e:c4:5d:ed:86:e9:58:97:e0:84:b0:62:09:03:38:3c:
20:5f:ec:9e:3c:f9:54:b7:eb:13:b2:b2:f1:9d:6a:74:f7:67:
d9:1b:61:6e:53:c5:0f:01:9d:d1:13:2c:29:a7:f3:3c:ae:24:
b9:fb:32:a2:08:93:dc:68:55:ff:76:8a:5d:c9:30:09:87:4b:
7a:d9:ac:20:19:30:71:40:e0:4d:13:51:fb:8d:42:16:d6:57:
09:2f:62:ab:d6:24:96:a4:bb:f3:38:37:35:aa:69:3a:45:99:
fd:90:7b:83:a3:52:7d:54:ef:f9:ae:1e:59:df:6d:94:66:2f:
5c:b6:87:29:7a:d1:b7:cf:d5:64:0c:b5:be:1f:5d:47:98:4c:
73:2c:7a:a2:bf:ed:bc:1e:96:d7:25:68:3b:2e:50:60:4e:6a:
4b:ea:a8:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org