Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b1e63b-01ab-4c05-84a7-45e1c77a18c0/1/iPhocANxWGarl0zlKUCcF1tuZEM.roa
File: iPhocANxWGarl0zlKUCcF1tuZEM.roa (raw, json)
Hash identifier: h+mQ/Lb4gz3GQGvfFJ0Xlsdgu8NzZbDwKOvULLCBKew=
Subject key identifier: 88:F8:68:70:03:71:58:66:AB:97:4C:E5:29:40:9C:17:5B:6E:64:43
Certificate issuer: /CN=71d39d6c50dd309ee9286c302dfb15245bdbaf23
Certificate serial: 0D8581B8
Authority key identifier: 71:D3:9D:6C:50:DD:30:9E:E9:28:6C:30:2D:FB:15:24:5B:DB:AF:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdOdbFDdMJ7pKGwwLfsVJFvbryM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b1e63b-01ab-4c05-84a7-45e1c77a18c0/1/iPhocANxWGarl0zlKUCcF1tuZEM.roa
Signing time: Sat 01 Jan 2022 02:01:56 +0000
ROA not before: Sat 01 Jan 2022 02:01:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58333
IP address blocks: 193.35.62.0/24 maxlen: 24
193.222.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226853304 (0xd8581b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d39d6c50dd309ee9286c302dfb15245bdbaf23
Validity
Not Before: Jan 1 02:01:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88f8687003715866ab974ce529409c175b6e6443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:5a:ec:d7:03:03:88:c3:6f:0e:b8:e6:7a:42:
75:7e:12:dd:7b:d3:41:1f:cc:d7:ba:2e:d9:bc:ef:
5c:de:a8:fd:7f:ce:af:42:d5:58:ea:02:c6:55:a8:
0d:89:d1:bf:aa:6d:33:03:b2:1e:33:4e:da:c2:fb:
38:1b:06:39:1a:79:9e:5d:d4:9d:e1:1c:97:31:46:
b4:ca:d0:f0:7a:63:e5:34:cf:96:3b:78:a3:34:0d:
0a:dd:0c:da:04:4d:73:7f:78:09:97:3f:46:d6:9b:
e7:78:d4:a2:40:ad:47:56:7d:00:d5:94:d0:b3:bb:
64:fe:26:d2:a7:06:17:16:e1:f3:b7:1b:62:d1:97:
81:bc:ae:c1:21:1f:7c:0b:a8:4a:28:98:77:8a:17:
a0:7c:cf:97:c7:0f:3f:a8:a9:44:4e:bd:22:94:c4:
5c:8a:8e:ca:3f:95:7c:a1:3c:f4:78:20:bb:d7:18:
7e:e4:ae:f5:0c:ec:20:05:9d:09:bb:af:0e:d6:28:
fa:88:f6:5b:77:ef:0b:63:03:d5:c9:0a:4b:81:45:
a3:86:91:92:ab:d2:8b:b0:d2:3e:54:46:82:e8:76:
f7:0a:15:0c:e6:d0:93:fa:78:03:1a:cc:d9:fd:a5:
d2:f8:16:b2:40:55:fe:4e:ec:5e:ac:68:06:83:42:
7e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F8:68:70:03:71:58:66:AB:97:4C:E5:29:40:9C:17:5B:6E:64:43
X509v3 Authority Key Identifier:
keyid:71:D3:9D:6C:50:DD:30:9E:E9:28:6C:30:2D:FB:15:24:5B:DB:AF:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdOdbFDdMJ7pKGwwLfsVJFvbryM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b1e63b-01ab-4c05-84a7-45e1c77a18c0/1/iPhocANxWGarl0zlKUCcF1tuZEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b1e63b-01ab-4c05-84a7-45e1c77a18c0/1/cdOdbFDdMJ7pKGwwLfsVJFvbryM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.62.0/24
193.222.51.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d9:13:04:40:47:47:0b:8c:e0:f7:0c:1c:c7:14:27:c6:aa:
9c:d9:2e:35:f8:85:27:be:db:14:0d:42:a0:da:eb:a8:09:e3:
65:2d:4b:ab:88:2d:34:9a:07:83:fe:17:5f:32:41:17:dd:34:
6a:cd:4e:99:f0:9f:0b:e6:10:32:2d:0b:38:ad:40:63:cc:89:
fd:76:3c:4c:ce:30:87:fd:17:d0:95:1c:3c:bd:5a:de:3d:91:
39:21:9a:8f:18:41:03:2f:f3:3d:b4:b3:0c:40:6e:3e:42:ec:
14:ff:6e:ae:a9:cc:9d:74:2f:fc:b1:dd:77:f2:43:e2:be:e2:
8b:e8:3d:00:3a:78:52:d7:ff:8d:d1:7f:00:df:7e:d4:9c:a9:
5d:8e:cd:c2:46:8d:74:34:ad:f5:26:a4:0c:24:4f:04:de:a0:
09:f9:5b:a6:57:ac:2d:9f:97:cb:e2:4e:c9:3e:a9:f0:10:aa:
17:29:29:f1:ba:83:b6:53:2a:be:02:4f:3b:8b:77:ba:f9:0f:
ba:50:d5:71:b5:b9:65:28:88:6b:dc:78:d4:68:91:07:54:b8:
1c:fe:b3:54:97:34:f6:04:3f:51:b3:cc:30:90:d0:0a:06:2d:
53:7f:cb:be:01:f4:69:77:50:b6:6c:67:3e:50:25:26:9e:b9:
81:3d:88:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:47 2024 by rpki-client on console-fra.rpki-client.org