Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/on-e2HQwwP27hCulbzQj8AZgrBQ.roa
File: on-e2HQwwP27hCulbzQj8AZgrBQ.roa (raw, json)
Hash identifier: FH6huB9xm/nAAU1RwKxL/otb6AQFBi/g5VvZyvavFy0=
Subject key identifier: A2:7F:9E:D8:74:30:C0:FD:BB:84:2B:A5:6F:34:23:F0:06:60:AC:14
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B279732
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/on-e2HQwwP27hCulbzQj8AZgrBQ.roa
Signing time: Wed 18 May 2022 13:32:17 +0000
ROA not before: Wed 18 May 2022 13:32:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8930
IP address blocks: 194.102.176.0/24 maxlen: 24
193.230.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 455579442 (0x1b279732)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 18 13:32:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a27f9ed87430c0fdbb842ba56f3423f00660ac14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7f:0a:a1:2a:f5:28:a5:8a:3d:19:ec:ab:07:
d8:27:36:95:73:61:f5:08:0a:ca:7f:15:b5:c4:af:
cf:fd:8f:0f:4f:8a:b5:09:1a:72:2b:c1:1d:a9:3e:
c3:6c:d9:cb:d7:b4:46:fe:44:43:cb:31:61:25:39:
75:29:6e:e0:1d:67:2b:99:6c:f1:ef:d7:4d:59:54:
de:99:b3:00:3e:cc:7a:d1:44:3d:03:e0:69:76:e9:
51:55:68:d3:e9:36:b3:05:54:9c:3c:8f:7a:8f:2f:
48:36:07:78:20:aa:8f:87:d9:cf:76:c9:6f:18:d7:
ae:11:19:6c:52:40:b7:be:64:39:63:0a:40:79:09:
e1:ed:51:85:b1:6f:0a:be:f1:82:35:23:4f:68:55:
ec:fe:79:e8:f6:48:f3:80:df:08:d5:71:63:63:6c:
0f:63:c6:28:70:17:6e:91:9d:7e:77:64:5c:51:2e:
27:95:7b:7c:16:c3:4e:e3:4b:a7:23:18:c8:9f:d9:
c5:50:85:30:b7:25:f6:2c:8b:b5:a1:b2:f3:d8:ad:
95:7f:d3:38:ea:ce:d7:df:c4:22:a9:83:60:8b:9b:
c3:92:4b:5c:24:b0:4a:e7:82:29:4f:f7:57:4d:51:
d0:3b:ca:ab:9d:35:7b:87:91:5a:0d:29:e6:15:95:
75:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:7F:9E:D8:74:30:C0:FD:BB:84:2B:A5:6F:34:23:F0:06:60:AC:14
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/on-e2HQwwP27hCulbzQj8AZgrBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.230.230.0/24
194.102.176.0/24
Signature Algorithm: sha256WithRSAEncryption
03:e4:ef:69:8f:0f:9c:14:fe:19:ce:f0:31:c8:e3:24:1d:00:
ba:5c:a8:65:18:ce:aa:84:ec:4e:8e:b5:e5:a9:83:4a:1d:ee:
46:f2:0c:82:8b:39:98:95:d7:d6:1f:5d:3b:9d:91:2d:89:18:
6c:fb:fb:f2:1c:5b:7d:d0:9d:83:a2:7c:3b:f5:3e:ba:59:79:
10:cb:5b:de:57:b6:6f:8c:a7:a2:a9:73:bf:7a:ef:3f:37:1b:
94:12:3a:b0:db:de:48:a5:04:3d:a3:0f:14:b1:a7:d3:44:52:
c8:93:3a:f7:a8:e2:8e:1d:67:70:4c:59:59:30:84:c5:ea:1d:
01:81:6c:f1:4f:71:7e:5d:b7:f1:86:09:73:a6:b0:a1:93:7d:
f3:d7:75:10:4e:b6:5e:f4:07:bb:9d:cb:83:8b:a2:63:15:46:
15:95:1f:7a:cb:e2:07:10:0d:cf:6c:00:0e:cf:37:42:25:e1:
4d:37:5c:cc:6e:7f:ad:e4:10:8d:42:ae:03:8b:af:9c:ae:72:
f2:e2:89:47:8e:3e:ae:1c:2b:c9:1c:26:c0:87:12:11:62:2a:
6b:08:af:97:d1:ff:c9:50:99:ce:9e:70:99:7f:60:69:b6:46:
00:e8:3e:fc:23:fd:57:94:52:a4:cc:5e:b3:09:a3:df:35:b1:
f2:c3:b3:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org