Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/hXJt7G1bq27cV3SUmH21hjDKxJ4.roa
File: hXJt7G1bq27cV3SUmH21hjDKxJ4.roa (raw, json)
Hash identifier: 0yV8CPEkauAnmi7O2WLZau7H7ConBX4WmT0FfB4fhjo=
Subject key identifier: 85:72:6D:EC:6D:5B:AB:6E:DC:57:74:94:98:7D:B5:86:30:CA:C4:9E
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 09252286
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/hXJt7G1bq27cV3SUmH21hjDKxJ4.roa
Signing time: Sat 01 Jan 2022 16:00:47 +0000
ROA not before: Sat 01 Jan 2022 16:00:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208393
IP address blocks: 193.221.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153428614 (0x9252286)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85726dec6d5bab6edc577494987db58630cac49e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:94:4f:af:b8:bf:e4:0d:c6:bc:17:af:00:0d:
4c:18:2a:cf:2c:63:17:8f:1e:8e:99:5f:b1:3b:44:
62:ab:38:36:22:f0:20:17:d1:5d:26:0d:d2:44:2a:
95:89:f1:d8:2e:df:44:6a:d7:3d:04:8d:40:2e:95:
f1:0b:2a:3d:f4:8b:31:65:66:07:58:4e:56:01:11:
eb:ce:38:b6:df:3c:27:9e:f9:f4:82:10:5e:0a:de:
c9:69:1e:22:35:26:da:2d:5e:32:1b:2e:d2:ff:d1:
1d:06:8a:c5:d2:ab:0d:55:58:98:c7:18:09:f4:ba:
e1:c9:d8:f6:32:91:ed:ca:b0:e1:d9:b9:dd:90:b9:
86:09:f8:f9:68:22:7c:49:9f:c9:fb:b0:d8:be:36:
17:b2:b9:57:60:f0:f4:54:be:c1:f8:b7:ee:bd:c2:
d5:8d:7c:f3:55:51:2f:dd:cd:12:df:2c:6d:04:bd:
6e:cf:3c:fa:97:20:19:f4:ba:2c:e1:be:1d:55:86:
2e:95:cf:b5:2a:dd:14:43:91:e1:56:8f:91:07:16:
69:43:f8:ff:bd:dd:a1:72:54:63:d9:6a:38:fd:27:
91:fd:b8:cf:38:ca:7d:b8:62:48:15:ec:9f:d5:b8:
9d:81:67:12:00:a6:9a:a6:c7:b5:d5:de:c9:3f:5d:
42:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:72:6D:EC:6D:5B:AB:6E:DC:57:74:94:98:7D:B5:86:30:CA:C4:9E
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/hXJt7G1bq27cV3SUmH21hjDKxJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.192.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:5c:48:44:42:cc:d9:e6:5c:c7:ca:45:a1:2a:78:01:b0:c0:
e8:dc:8f:fa:15:fb:c4:6f:6a:ea:d5:f8:b7:86:18:63:7d:f6:
25:bb:5b:94:3f:51:84:bc:43:e8:92:2f:ac:ce:1b:01:d4:75:
53:35:04:ec:30:ac:44:c1:0d:67:71:22:64:a8:70:e4:69:23:
65:95:69:7e:fd:79:b4:15:30:be:bc:28:15:55:22:c2:20:a7:
35:e2:82:92:07:19:ca:c5:75:e3:88:84:d8:3b:bf:49:95:b5:
75:22:b1:80:d2:29:b6:e2:28:3d:e4:9a:2f:47:eb:8a:bb:4f:
6d:3a:91:cb:0f:9c:cd:47:e4:ab:cb:4b:9c:01:c8:26:29:ab:
5e:a2:d8:26:3b:f0:06:74:b4:15:01:ea:bc:de:a3:5e:7b:0a:
16:bb:96:9e:d1:95:09:fb:62:64:98:6c:fc:3b:34:c4:6e:9b:
c4:d8:f9:9d:4e:c0:5e:77:ab:0c:62:ec:d9:3f:15:b8:46:60:
26:f6:4b:4d:1d:50:33:98:8b:ec:23:56:b0:70:2e:3b:1d:67:
95:8e:de:04:a4:e8:54:1e:60:b9:d3:b0:2f:c6:9a:16:a6:96:
3c:c9:5e:f7:c7:c6:18:27:97:d9:25:79:4d:0d:90:0b:3d:2c:
17:bd:b1:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:27 2023 by rpki-client on console-ams.rpki-client.org