Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/jirqbvmrAAGWpNpGjvo1oqaVKvM.roa
File: jirqbvmrAAGWpNpGjvo1oqaVKvM.roa (raw, json)
Hash identifier: CfaWOzuBMezjGNdj74Z18bHDzBqNHT2WFg2Sgrqlh3A=
Subject key identifier: 8E:2A:EA:6E:F9:AB:00:01:96:A4:DA:46:8E:FA:35:A2:A6:95:2A:F3
Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Certificate serial: 018312B5BDD86BF6030210728ECAF1FE03EC
Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/jirqbvmrAAGWpNpGjvo1oqaVKvM.roa
Signing time: Tue 06 Sep 2022 12:10:43 +0000
ROA not before: Tue 06 Sep 2022 12:10:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48038
IP address blocks: 193.73.208.0/24 maxlen: 24
2001:67c:4f0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:12:b5:bd:d8:6b:f6:03:02:10:72:8e:ca:f1:fe:03:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Validity
Not Before: Sep 6 12:10:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e2aea6ef9ab000196a4da468efa35a2a6952af3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3e:40:b4:b2:f0:1d:26:1b:35:4c:28:4c:9e:
50:6e:19:4f:43:e0:c7:63:57:cf:a0:3b:2d:d1:a3:
59:6d:98:2f:8b:1c:f7:8e:37:a9:f2:3b:29:90:10:
48:16:c6:b5:95:5b:f6:b3:75:31:56:f2:8b:ef:8d:
cb:db:04:42:69:f3:a6:24:7c:9e:cc:09:c6:90:a6:
14:e2:77:eb:65:f7:70:d0:a4:b9:06:9a:ba:21:7a:
fb:2c:0e:9b:bb:fd:e8:90:40:44:ca:fe:5e:d6:e5:
b7:2b:d7:00:4d:62:81:67:c7:5c:93:b4:d9:48:02:
a6:d6:f6:02:02:d7:bf:f7:b1:e4:13:61:24:06:70:
12:11:d7:3e:c7:2b:ff:f8:f4:61:c3:72:55:fa:f8:
29:2c:a8:d5:1f:bc:5e:4d:ae:97:85:d0:09:16:28:
e1:be:bc:52:d3:a3:2a:5f:f2:da:de:34:c6:89:57:
0d:a3:99:fa:5f:ec:18:1b:b8:de:14:9f:db:32:8d:
45:96:04:2d:ba:fc:0b:d1:e8:0c:0f:f9:31:1e:c8:
47:7a:09:de:33:3c:bd:c5:93:0a:cd:a8:07:3e:f8:
29:de:98:a4:d2:84:b8:6a:85:98:a0:8a:14:8e:ba:
ab:f1:6c:37:d2:26:aa:cf:91:0b:25:88:87:f4:3a:
f3:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:2A:EA:6E:F9:AB:00:01:96:A4:DA:46:8E:FA:35:A2:A6:95:2A:F3
X509v3 Authority Key Identifier:
keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/jirqbvmrAAGWpNpGjvo1oqaVKvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.73.208.0/24
IPv6:
2001:67c:4f0::/48
Signature Algorithm: sha256WithRSAEncryption
38:35:d2:80:80:ea:c5:2f:46:e0:d8:56:7e:ab:f7:be:85:f7:
60:4d:3c:0d:14:18:1f:34:71:05:90:a1:54:65:28:3c:9f:4a:
16:77:f2:1c:f6:4f:d0:ff:00:f3:3c:81:9e:1f:9c:c3:ae:4b:
18:b3:ba:0d:06:e7:c4:6d:fa:e1:28:86:13:fc:0d:d7:25:72:
82:81:35:a3:32:b3:8a:15:3e:2f:47:f9:ee:e7:a6:fe:49:d7:
b5:12:e6:f6:4e:ba:09:80:59:9f:a3:c9:d3:b4:11:4c:62:b1:
49:51:ac:ef:a8:9d:09:d1:53:20:20:d8:c4:35:7b:8f:9c:2c:
4f:b0:8b:6b:03:b2:33:e8:93:8e:64:e9:af:3c:5c:61:e1:5a:
0b:b4:f7:30:2f:ef:9b:d2:2b:06:d1:ee:20:32:0b:5e:66:86:
d0:ff:db:2d:24:59:6a:08:e2:54:5f:a4:8b:13:db:39:4c:79:
63:ca:fe:44:91:3b:2c:9b:b5:ba:82:90:8c:18:ed:8c:78:a8:
a7:89:eb:f0:44:8d:64:f3:1e:41:ae:05:2e:67:38:ba:15:3c:
76:f5:ad:72:ac:02:f4:90:f6:10:e1:c7:26:6c:f7:16:7a:a8:
77:26:51:3b:cd:de:98:7b:86:38:d2:b1:36:c9:fc:88:19:d2:
9d:04:01:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:43 2024 by rpki-client on console-fra.rpki-client.org