Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/f150b1-43b9-4911-a005-aacad86c617d/1/9qJOsLOb2Fakh51kQ_hBZhd3cd8.roa
File: 9qJOsLOb2Fakh51kQ_hBZhd3cd8.roa (raw, json)
Hash identifier: 5O7qgt9k8Y7QRS+/p8Di4xRHY3FfGWz5j74Uq2TuRWo=
Subject key identifier: F6:A2:4E:B0:B3:9B:D8:56:A4:87:9D:64:43:F8:41:66:17:77:71:DF
Certificate issuer: /CN=3b3daef89306a75f0b88191440742a720afb3f20
Certificate serial: 0B8666C5
Authority key identifier: 3B:3D:AE:F8:93:06:A7:5F:0B:88:19:14:40:74:2A:72:0A:FB:3F:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oz2u-JMGp18LiBkUQHQqcgr7PyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/f150b1-43b9-4911-a005-aacad86c617d/1/9qJOsLOb2Fakh51kQ_hBZhd3cd8.roa
Signing time: Sat 01 Jan 2022 11:54:04 +0000
ROA not before: Sat 01 Jan 2022 11:54:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 193.201.28.0/23 maxlen: 23
2001:7f8:10::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193357509 (0xb8666c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3daef89306a75f0b88191440742a720afb3f20
Validity
Not Before: Jan 1 11:54:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6a24eb0b39bd856a4879d6443f84166177771df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2f:b6:b5:60:e5:1f:1b:15:63:15:a1:07:36:
a5:ba:cf:36:ad:14:09:58:43:1f:81:af:ed:32:80:
7f:57:9b:d4:1b:e2:f7:3f:c7:40:cf:50:9a:d2:bc:
74:09:a4:23:2e:f2:5d:b3:51:73:70:6f:0b:fb:92:
85:63:3a:08:31:20:17:79:09:12:76:ae:17:6c:58:
78:37:67:85:85:46:7b:62:ae:80:37:a4:95:66:d2:
f7:89:82:d6:2b:14:f3:5e:68:3e:f1:60:51:92:45:
c4:df:b9:58:86:aa:e8:35:9f:4b:f6:22:32:ed:72:
23:3f:dc:72:11:f8:e1:11:bd:e0:7a:a5:76:bb:cf:
e0:ce:d4:81:58:9b:57:fc:a5:4f:95:2c:f9:3d:3d:
47:02:e7:fa:1b:fb:63:bc:5c:dd:56:c7:e0:eb:db:
64:f4:b1:e3:36:42:0a:86:cc:67:f5:44:bd:71:06:
e0:85:50:12:a5:d2:d1:21:cd:72:fc:3a:ea:5c:78:
34:20:d4:a1:1f:b1:65:94:40:78:bf:16:8a:89:31:
4c:6c:99:6e:2e:77:b0:f3:62:f7:02:9a:b6:a7:92:
dc:5c:f2:31:37:49:3d:1c:4e:5c:d5:05:99:09:20:
e2:96:08:6c:98:52:97:1a:da:8a:08:26:49:fa:7e:
07:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A2:4E:B0:B3:9B:D8:56:A4:87:9D:64:43:F8:41:66:17:77:71:DF
X509v3 Authority Key Identifier:
keyid:3B:3D:AE:F8:93:06:A7:5F:0B:88:19:14:40:74:2A:72:0A:FB:3F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oz2u-JMGp18LiBkUQHQqcgr7PyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f150b1-43b9-4911-a005-aacad86c617d/1/9qJOsLOb2Fakh51kQ_hBZhd3cd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f150b1-43b9-4911-a005-aacad86c617d/1/Oz2u-JMGp18LiBkUQHQqcgr7PyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.28.0/23
IPv6:
2001:7f8:10::/64
Signature Algorithm: sha256WithRSAEncryption
66:b0:32:ff:d1:e3:41:24:61:98:80:36:ed:68:75:6e:b1:51:
82:a8:a2:8f:ac:26:0a:db:78:32:51:99:76:67:1e:b3:79:2d:
4f:36:34:46:74:ff:fd:ad:f9:1b:53:5d:d7:71:00:53:75:e3:
a4:4c:45:e7:cd:7a:d6:34:db:82:ab:f1:c2:d6:20:9c:fb:aa:
86:fe:66:f1:42:03:43:37:4d:21:c0:9d:f2:9e:dd:dc:5c:85:
0d:1e:75:1b:2d:f6:a1:1d:d7:85:18:44:94:c3:cf:1e:2a:dd:
4a:0e:e0:8d:62:d3:8f:8b:1b:29:18:e8:47:29:3a:42:d6:2e:
af:95:c9:c8:98:ed:43:6a:9f:4b:eb:96:c8:15:53:41:f0:e5:
79:1f:71:ff:d8:8c:c7:21:63:9a:ab:55:b1:42:b4:8c:73:58:
8a:71:2f:6f:f3:f5:51:7e:b7:79:fb:c4:e6:88:2f:c6:7e:fe:
8f:dd:a2:5e:92:4d:e5:32:13:9c:5f:08:7d:69:ff:04:b9:26:
33:10:8e:8a:9c:9c:54:d4:8f:ce:0f:5e:31:af:9a:9c:10:93:
87:f8:70:bd:77:5a:23:66:b3:72:4b:d2:14:2d:08:6e:92:1e:
b7:54:b9:ce:20:a1:bd:6e:88:7c:12:83:78:0f:a1:4b:05:48:
69:73:6b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:58 2024 by rpki-client on console-fra.rpki-client.org