Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/1o94U03D06znOuilTDbyGxSs2ps.roa
File: 1o94U03D06znOuilTDbyGxSs2ps.roa (raw, json)
Hash identifier: 4Ds1vL0xRjA2ex/VOV2F1tY8q8mq6LtS2CFCvUffFQs=
Subject key identifier: D6:8F:78:53:4D:C3:D3:AC:E7:3A:E8:A5:4C:36:F2:1B:14:AC:DA:9B
Certificate issuer: /CN=821f1285d775a9f589243eac844adc5ab89d97c9
Certificate serial: 01845D23E3D64A782BFC60003366C57DC886
Authority key identifier: 82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/1o94U03D06znOuilTDbyGxSs2ps.roa
Signing time: Wed 09 Nov 2022 16:05:43 +0000
ROA not before: Wed 09 Nov 2022 16:05:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202062
IP address blocks: 193.31.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:23:e3:d6:4a:78:2b:fc:60:00:33:66:c5:7d:c8:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f1285d775a9f589243eac844adc5ab89d97c9
Validity
Not Before: Nov 9 16:05:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d68f78534dc3d3ace73ae8a54c36f21b14acda9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5d:b0:a7:d2:93:9a:05:2b:58:e7:0e:08:b2:
ab:35:69:af:ed:e0:92:23:02:b1:01:f3:da:76:96:
72:fe:07:73:b6:1d:97:1a:49:4e:cf:76:86:b6:2b:
1a:ef:96:29:1b:3e:fa:c9:a4:25:89:de:aa:11:b3:
d2:c0:b2:37:a9:66:fc:42:58:ea:18:b0:e3:98:b5:
91:a4:6e:6a:80:2f:cc:97:27:a0:02:ed:bb:93:96:
a0:87:ef:37:0f:0c:08:45:b0:eb:24:6c:15:35:ee:
56:a7:de:44:7b:4c:ac:08:8e:1a:33:bc:b9:22:14:
00:34:83:b4:6f:35:05:c3:1c:9b:10:c9:eb:c6:6d:
c1:aa:80:cd:3d:dd:a7:5f:d6:3f:ce:13:ad:2f:27:
bb:8e:bd:bc:51:30:11:e8:77:5d:11:ba:1f:6c:48:
6e:4b:09:22:91:f3:b4:9d:4c:dd:2e:0c:6d:1d:8e:
2a:4d:be:3e:ba:1c:9d:61:39:08:b8:f2:8e:5a:a6:
9e:b7:c7:ae:04:3b:7c:22:84:f0:00:a3:a8:c6:12:
65:d7:cd:9d:8c:c6:00:ac:de:e4:dc:16:1c:96:ab:
4a:a7:1f:80:4a:a0:3c:94:56:9c:90:0a:77:15:4d:
41:a3:95:2f:8f:34:5a:6b:36:86:52:f5:4a:ce:f3:
c8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:8F:78:53:4D:C3:D3:AC:E7:3A:E8:A5:4C:36:F2:1B:14:AC:DA:9B
X509v3 Authority Key Identifier:
keyid:82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/1o94U03D06znOuilTDbyGxSs2ps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.254.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:22:48:85:f7:3f:b9:38:98:5d:cc:57:dc:ef:fc:1e:62:be:
2e:c7:9a:d9:45:18:06:a7:70:57:bc:b9:90:66:85:02:eb:60:
c8:87:cb:d4:0e:b0:8a:9a:f9:65:e2:9c:60:0c:34:21:f9:e5:
ee:ee:52:a8:d3:b7:60:76:42:db:3c:69:80:6b:82:61:9e:86:
93:67:af:d3:5b:c8:1f:bb:a1:53:f2:2e:5f:74:c7:21:9f:f2:
fd:39:be:44:2c:73:2b:3c:4c:3b:ee:29:ab:fc:62:2a:4d:bd:
e0:b1:80:6f:0a:6e:bc:50:6a:63:15:c2:c4:c2:ac:71:bd:21:
4b:08:af:79:44:90:eb:7a:21:e8:ba:99:78:f2:d7:6e:49:e0:
41:7d:a9:e8:f5:20:f0:d6:d1:09:66:66:06:04:96:b2:46:0e:
f0:b3:b1:34:a4:d3:c6:9d:0c:d0:b4:2f:76:01:a0:02:e3:be:
80:cc:77:04:f4:17:92:60:5a:db:bb:9f:ed:29:34:33:a9:42:
08:77:66:f8:31:30:8f:d2:15:53:bd:2c:51:6e:82:19:b0:52:
b1:57:6e:60:b7:cf:2e:2d:95:40:51:22:76:59:e2:dc:cb:27:
35:1b:62:2c:ed:07:7c:b2:af:d9:79:ab:f8:30:cc:14:d9:d5:
e1:f6:4d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:09 2024 by rpki-client on console-fra.rpki-client.org