Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/46c7e6-4006-40f0-adaa-b4192ac638c9/1/IDwKbXHW72oR3nKRNIUw-KTn8I8.roa
File: IDwKbXHW72oR3nKRNIUw-KTn8I8.roa (raw, json)
Hash identifier: KHTd07xPQhiTrn+EivWsFkXKokB7d8m3w7c7Zlu4WGo=
Subject key identifier: 20:3C:0A:6D:71:D6:EF:6A:11:DE:72:91:34:85:30:F8:A4:E7:F0:8F
Certificate issuer: /CN=0a42ae6e96180f03b7ca6d97427516e4c07f6e2b
Certificate serial: 04D12378
Authority key identifier: 0A:42:AE:6E:96:18:0F:03:B7:CA:6D:97:42:75:16:E4:C0:7F:6E:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkKubpYYDwO3ym2XQnUW5MB_bis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/46c7e6-4006-40f0-adaa-b4192ac638c9/1/IDwKbXHW72oR3nKRNIUw-KTn8I8.roa
Signing time: Sat 01 Jan 2022 06:58:31 +0000
ROA not before: Sat 01 Jan 2022 06:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213121
IP address blocks: 31.7.92.0/22 maxlen: 22
93.157.184.0/24 maxlen: 24
2a0a:cf80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80814968 (0x4d12378)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a42ae6e96180f03b7ca6d97427516e4c07f6e2b
Validity
Not Before: Jan 1 06:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=203c0a6d71d6ef6a11de7291348530f8a4e7f08f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b8:74:4b:68:04:be:0e:44:60:63:4d:26:a7:
ce:78:2c:54:8a:1a:2a:ca:ca:2d:8c:79:6a:1a:5f:
59:05:ae:ad:c2:d0:2c:e1:66:c1:3e:fb:e4:71:53:
1d:56:a4:ef:1a:a7:57:d5:db:d6:e1:b7:74:3f:11:
e8:52:ab:dc:50:71:66:74:f7:77:14:81:e5:5c:ff:
e2:81:b7:e3:79:2f:d6:ea:85:c7:30:f2:d6:cb:c6:
db:d1:33:3d:9a:cc:b8:96:a8:05:de:75:81:ef:dd:
99:41:5d:45:2e:a6:15:d9:03:73:35:21:5f:d8:ee:
85:47:9c:57:65:83:de:4e:ec:94:0e:45:d4:42:cc:
32:e1:3d:fd:04:64:77:6c:92:29:a8:b4:de:ea:1f:
e1:d2:26:53:30:3b:1d:b0:c2:d5:83:be:fd:6e:03:
8c:7c:f1:6d:35:a0:99:03:2f:80:a5:d6:dc:60:6e:
d8:71:3c:bb:b9:bc:3c:ea:e4:e5:cd:ea:04:b1:5c:
8a:e2:39:99:63:3c:23:6d:63:52:c0:b5:61:38:09:
48:7a:bb:51:a6:22:ef:e3:a6:0b:db:00:d0:31:38:
5c:d3:d5:6b:cc:7a:9c:ad:35:56:45:d3:b1:27:d0:
88:fa:39:6e:96:23:93:36:37:3f:95:07:3c:bb:f8:
13:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3C:0A:6D:71:D6:EF:6A:11:DE:72:91:34:85:30:F8:A4:E7:F0:8F
X509v3 Authority Key Identifier:
keyid:0A:42:AE:6E:96:18:0F:03:B7:CA:6D:97:42:75:16:E4:C0:7F:6E:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkKubpYYDwO3ym2XQnUW5MB_bis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/46c7e6-4006-40f0-adaa-b4192ac638c9/1/IDwKbXHW72oR3nKRNIUw-KTn8I8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/46c7e6-4006-40f0-adaa-b4192ac638c9/1/CkKubpYYDwO3ym2XQnUW5MB_bis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.92.0/22
93.157.184.0/24
IPv6:
2a0a:cf80::/29
Signature Algorithm: sha256WithRSAEncryption
8c:6d:b1:2d:36:fd:2f:ea:d4:55:45:b5:a2:3c:1e:e5:e1:52:
f2:20:e4:17:55:70:49:2b:a8:c9:50:4a:3a:5b:29:c5:ee:f0:
28:fa:67:7c:37:eb:ab:9b:ce:5c:68:a7:6f:d7:c0:e9:03:bf:
f2:ff:29:04:43:0d:ca:60:57:25:7b:12:22:2e:9c:fd:a1:e4:
a7:ae:7f:1d:d9:40:73:91:07:53:c3:ff:e3:24:b0:9c:fd:e3:
17:31:ea:36:1f:63:82:6d:b1:5f:cc:67:ce:f1:7f:f4:cd:f5:
64:63:17:12:50:01:8e:0e:13:94:b0:2c:4c:85:32:ad:60:e8:
1b:99:d8:f8:1a:bf:1f:d5:29:de:6e:91:ec:a2:2a:8b:2c:ef:
23:08:b6:30:e3:af:d0:3e:62:fb:fb:29:fa:f5:45:05:ab:08:
b3:6c:da:4c:0e:59:6d:39:39:65:94:8c:1e:18:7b:ea:b6:b6:
1c:4b:ca:94:1e:16:b4:c0:02:3e:34:84:bf:dc:44:b1:8e:d6:
43:1a:a7:c1:d2:63:3b:5a:a9:05:2e:69:98:36:a4:05:3e:a1:
ee:3b:88:01:d0:b1:68:4f:99:0c:a4:b0:72:69:52:5f:5a:e6:
f4:a4:3b:a4:a3:8c:ae:b5:b5:38:16:49:6a:b5:eb:56:15:f9:
f0:49:e7:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:40 2024 by rpki-client on console-fra.rpki-client.org