Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/6a2946-f0a4-4e85-930e-d4edf16e0978/1/_atBCB-zvOryAx9Gk0GO9pH-cio.roa
File: _atBCB-zvOryAx9Gk0GO9pH-cio.roa (raw, json)
Hash identifier: 0dUqLDPZHx1G2/dsmwqY8vw1UyVRR2xYN68nHBNpq74=
Subject key identifier: FD:AB:41:08:1F:B3:BC:EA:F2:03:1F:46:93:41:8E:F6:91:FE:72:2A
Certificate issuer: /CN=1bdba013655b9bb0caa285d75c142c1ee30f8854
Certificate serial: 0512B5E2
Authority key identifier: 1B:DB:A0:13:65:5B:9B:B0:CA:A2:85:D7:5C:14:2C:1E:E3:0F:88:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G9ugE2Vbm7DKooXXXBQsHuMPiFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/6a2946-f0a4-4e85-930e-d4edf16e0978/1/_atBCB-zvOryAx9Gk0GO9pH-cio.roa
Signing time: Sat 01 Jan 2022 03:51:21 +0000
ROA not before: Sat 01 Jan 2022 03:51:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51580
IP address blocks: 193.176.238.0/24 maxlen: 24
193.176.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85112290 (0x512b5e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bdba013655b9bb0caa285d75c142c1ee30f8854
Validity
Not Before: Jan 1 03:51:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdab41081fb3bceaf2031f4693418ef691fe722a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:45:3f:be:ba:69:93:7b:31:d3:34:54:15:58:
ac:74:fb:43:27:af:c7:fe:37:c8:20:b9:24:ca:a2:
58:6d:94:71:f3:3c:6d:4b:64:00:8a:4c:d8:86:ab:
cd:03:9d:05:4c:e1:74:76:77:50:da:52:d1:50:32:
2b:d6:90:8a:e5:bb:5b:45:10:88:13:15:56:0f:1f:
91:f7:be:42:87:7d:ac:74:fb:de:d7:cf:7c:ef:16:
ab:9f:62:9d:62:cd:45:2b:f7:07:f7:33:bb:4d:38:
57:d7:03:89:a5:d5:0a:a6:40:7d:03:08:cd:88:79:
90:0f:53:0f:6c:ff:78:ad:f4:74:58:e5:5a:b8:2a:
a7:6a:a4:86:37:2e:09:a9:38:ae:8a:db:ac:34:10:
4b:fb:17:12:22:ce:da:91:62:df:37:b9:47:d9:22:
90:e3:57:d8:9d:4a:87:3a:10:67:c2:87:89:4d:cf:
d7:51:91:c2:1c:b7:1e:b3:2f:24:9a:77:72:84:0b:
ba:b5:5e:41:c6:c1:4f:30:2c:7c:d4:8d:b4:24:b1:
a1:ff:54:25:ed:f1:f6:dc:27:93:d7:f3:1f:b6:76:
1f:d8:81:c5:7d:11:41:cc:79:69:0b:53:d0:80:b8:
1d:f7:90:88:79:4b:88:1e:08:9b:92:c2:c4:8d:22:
ef:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:AB:41:08:1F:B3:BC:EA:F2:03:1F:46:93:41:8E:F6:91:FE:72:2A
X509v3 Authority Key Identifier:
keyid:1B:DB:A0:13:65:5B:9B:B0:CA:A2:85:D7:5C:14:2C:1E:E3:0F:88:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G9ugE2Vbm7DKooXXXBQsHuMPiFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/6a2946-f0a4-4e85-930e-d4edf16e0978/1/_atBCB-zvOryAx9Gk0GO9pH-cio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/6a2946-f0a4-4e85-930e-d4edf16e0978/1/G9ugE2Vbm7DKooXXXBQsHuMPiFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.238.0/24
193.176.246.0/24
Signature Algorithm: sha256WithRSAEncryption
05:f4:81:33:f7:27:b1:8f:86:88:4a:3e:da:80:36:03:36:b0:
ab:13:e8:97:32:21:cb:d7:de:e1:1c:34:bc:43:1b:c6:df:c1:
a2:00:5b:f5:e0:0e:0a:24:b4:0d:c2:37:8e:9d:75:f1:bc:74:
9e:87:8a:db:2d:0f:5d:63:e8:4c:12:1f:bd:ee:f3:b3:c7:3e:
04:9d:79:36:23:b8:0d:a8:ec:31:c7:60:2f:e0:4d:38:bc:15:
66:4a:1f:63:96:03:13:a8:cd:08:c6:6d:3e:0a:d1:77:26:89:
90:9c:51:48:0b:98:4e:79:bc:85:b1:f9:45:87:1a:95:21:63:
1d:82:c3:7a:32:08:55:96:05:aa:c8:2b:8d:de:ae:5d:39:f0:
bb:b7:bd:bc:14:ce:4c:c9:af:48:2a:91:eb:ad:14:3e:16:ee:
4b:8d:48:16:02:52:c5:91:c1:eb:8a:10:91:20:ff:bd:df:28:
93:8e:ee:6a:c8:1d:0e:26:54:a4:fe:10:23:38:36:81:9b:b2:
75:93:35:f5:11:7c:54:2b:a6:d6:cf:12:24:03:8e:dd:91:3a:
01:cf:cb:e1:28:b8:f4:79:51:1a:c2:a5:7b:5e:d4:dc:60:b3:
30:2b:ac:f7:bf:85:a7:5a:4a:9c:5d:30:15:d4:f7:86:02:bd:
72:d2:ca:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:50 2023 by rpki-client on console-fra.rpki-client.org