Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/8d8346-2ff7-45af-a99e-a2269e35f5ea/1/ChJuoh-ISDjII5p2tefTQ9srphg.roa
File: ChJuoh-ISDjII5p2tefTQ9srphg.roa (raw, json)
Hash identifier: qyxcFL1UOBUIZ7ceoIGdmeeonWY2p+whBXbc0M9LsDo=
Subject key identifier: 0A:12:6E:A2:1F:88:48:38:C8:23:9A:76:B5:E7:D3:43:DB:2B:A6:18
Certificate issuer: /CN=77fb3e86b1474db04a15cae0efc3773de4b835bb
Certificate serial: 0A0213
Authority key identifier: 77:FB:3E:86:B1:47:4D:B0:4A:15:CA:E0:EF:C3:77:3D:E4:B8:35:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_s-hrFHTbBKFcrg78N3PeS4Nbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/8d8346-2ff7-45af-a99e-a2269e35f5ea/1/ChJuoh-ISDjII5p2tefTQ9srphg.roa
Signing time: Sun 06 Feb 2022 20:43:12 +0000
ROA not before: Sun 06 Feb 2022 20:43:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 193.8.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 655891 (0xa0213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77fb3e86b1474db04a15cae0efc3773de4b835bb
Validity
Not Before: Feb 6 20:43:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a126ea21f884838c8239a76b5e7d343db2ba618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8b:f7:76:7e:0f:4a:9b:1e:15:35:b5:ad:52:
fe:f9:8c:bf:75:1a:00:8f:09:5c:1c:8f:f7:53:92:
bb:1a:da:60:a6:77:d4:d4:40:cf:2e:ba:c5:43:62:
53:a2:3b:e8:09:a3:36:23:7b:58:59:cd:67:0d:2a:
09:c4:e9:0e:7c:e3:e7:cf:63:88:db:77:48:f4:e1:
c6:0a:ec:e2:e1:ae:c3:0c:05:fc:1f:39:ff:01:34:
b5:cc:56:00:cf:ff:70:f8:4e:12:f8:5f:bf:2a:aa:
5b:6b:3a:bf:31:70:7b:eb:1c:20:ac:ae:16:f7:83:
10:e7:d6:4e:df:3d:7e:92:c9:cf:75:01:a8:f8:22:
a5:7d:70:1a:66:ae:1f:cb:88:54:32:a2:00:e5:e8:
d3:99:a8:6b:5d:33:c7:fd:7a:22:45:68:b4:cc:79:
2f:fa:13:9a:ff:e0:9f:5a:ee:47:5f:59:32:29:d7:
2a:b1:7b:ea:61:d3:84:b1:3c:69:ac:e0:48:6b:a6:
5e:da:da:92:aa:3e:23:57:05:c3:74:0c:c6:13:a6:
4f:e2:51:95:32:63:8f:bb:b8:35:ea:29:49:98:80:
87:22:9c:2e:37:3c:79:dc:12:20:f1:ff:c5:09:66:
0f:e6:40:fe:0c:c2:ce:5f:90:85:c2:44:43:06:1f:
5b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:12:6E:A2:1F:88:48:38:C8:23:9A:76:B5:E7:D3:43:DB:2B:A6:18
X509v3 Authority Key Identifier:
keyid:77:FB:3E:86:B1:47:4D:B0:4A:15:CA:E0:EF:C3:77:3D:E4:B8:35:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_s-hrFHTbBKFcrg78N3PeS4Nbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/8d8346-2ff7-45af-a99e-a2269e35f5ea/1/ChJuoh-ISDjII5p2tefTQ9srphg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/8d8346-2ff7-45af-a99e-a2269e35f5ea/1/d_s-hrFHTbBKFcrg78N3PeS4Nbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.75.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:a3:12:03:9c:6a:30:e9:c6:a2:71:04:9b:bf:a1:ca:2f:8f:
e9:c7:c6:24:f7:ca:fa:7d:d0:6d:3c:96:3c:12:68:7c:69:65:
15:ff:18:6f:48:c5:b7:87:60:cb:2b:94:8e:3c:32:1c:9f:4b:
6a:f1:b9:a4:5c:d7:f9:af:10:2e:44:3c:be:b5:51:4e:9b:97:
e2:43:14:48:1e:9f:13:9f:e2:ad:0e:64:43:ea:94:68:a4:b4:
a2:f1:0b:62:94:5e:0f:58:71:fd:4b:97:6f:2f:3d:3e:88:f2:
83:f8:a5:6d:71:fe:31:35:87:76:91:3a:8b:fb:73:3d:fb:d1:
b5:87:d7:75:8c:39:3c:c9:9d:5b:66:92:b0:ae:c1:ae:c3:31:
18:0c:3c:50:01:99:bc:3a:09:e4:6d:94:11:31:bb:42:84:81:
f9:b0:2a:83:59:c5:a3:29:19:30:91:4e:35:77:da:72:d5:03:
65:43:e8:81:ea:07:4e:ea:3e:61:5d:5b:7c:6f:c2:15:43:94:
c7:e1:0c:97:63:6c:79:a9:8a:78:7b:35:a9:dd:ca:08:86:8d:
2a:8f:5c:b7:52:80:de:1f:d1:f2:29:99:c0:35:b1:29:c2:90:
95:bb:a5:dc:0e:d1:3d:89:5a:d4:0c:48:94:df:6a:fa:84:2c:
3e:03:50:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:36 2023 by rpki-client on console-ams.rpki-client.org