Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/eKH4ELCHTR_H9zTBpNZVDFYaI9k.roa
File: eKH4ELCHTR_H9zTBpNZVDFYaI9k.roa (raw, json)
Hash identifier: VaphtqjifNG+iUTB6zXp7BHM5s66cjNw2uwp/I/iVps=
Subject key identifier: 78:A1:F8:10:B0:87:4D:1F:C7:F7:34:C1:A4:D6:55:0C:56:1A:23:D9
Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Certificate serial: 01835EC2884B7BBCCC2208AB869C9AC7C7E2
Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/eKH4ELCHTR_H9zTBpNZVDFYaI9k.roa
Signing time: Wed 21 Sep 2022 06:35:50 +0000
ROA not before: Wed 21 Sep 2022 06:35:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62242
IP address blocks: 193.23.28.0/24 maxlen: 24
2a04:9ac0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5e:c2:88:4b:7b:bc:cc:22:08:ab:86:9c:9a:c7:c7:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Validity
Not Before: Sep 21 06:35:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78a1f810b0874d1fc7f734c1a4d6550c561a23d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f4:3d:84:58:d6:ec:3e:f9:27:da:db:48:03:
0e:81:b8:a9:de:b7:03:e3:da:f1:63:2e:a8:07:86:
97:15:c3:e9:5f:4f:5f:e5:44:2e:c2:f9:6c:cd:b1:
bd:1d:aa:b7:54:36:cf:5e:15:66:cc:a9:ed:c7:b6:
40:6a:21:92:17:24:d7:57:3b:6e:78:2f:2e:a5:29:
9f:15:78:eb:90:af:f5:ea:fe:09:c0:bf:15:1f:a6:
25:40:92:87:ad:b0:47:64:f4:6a:4e:d6:df:a3:22:
4b:bf:50:1d:d7:d8:05:ba:69:fe:83:d1:01:ff:5e:
ce:d9:38:a0:07:c0:cc:6e:08:8c:11:1e:ff:4e:17:
be:64:92:4e:af:56:ac:b3:0c:c4:22:92:f6:3f:4e:
d5:f7:ff:56:30:b9:5a:16:ca:de:4f:5f:29:b4:0f:
17:0b:2d:9e:fe:7a:21:81:f8:00:f3:17:b0:1b:99:
15:8c:ae:86:a4:e2:bf:f7:b6:54:5d:b3:2d:95:3b:
ba:94:9a:f8:48:ef:12:52:4d:48:71:15:79:e4:a2:
1d:7d:69:c9:1b:5e:d9:6b:3e:a3:4b:48:30:38:f7:
60:38:ba:c8:eb:17:51:ea:ef:bb:c3:1d:0e:74:1a:
33:d1:3b:74:67:38:dd:3a:0c:84:80:e6:e6:9f:e0:
77:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A1:F8:10:B0:87:4D:1F:C7:F7:34:C1:A4:D6:55:0C:56:1A:23:D9
X509v3 Authority Key Identifier:
keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/eKH4ELCHTR_H9zTBpNZVDFYaI9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.28.0/24
IPv6:
2a04:9ac0::/32
Signature Algorithm: sha256WithRSAEncryption
15:fc:32:d2:0d:63:7f:59:22:bd:8a:16:90:ca:75:c0:98:15:
d3:54:3f:87:94:b1:c1:39:3b:43:9d:91:f8:e8:48:64:1e:af:
42:37:8a:47:fb:d0:10:75:72:a7:88:75:3b:47:19:b4:4b:d8:
f4:7c:fa:ef:c4:78:02:8b:fb:c5:e9:ed:f0:2b:12:1a:b0:47:
83:07:81:80:ea:c1:a5:a0:78:01:34:d6:97:ce:0a:16:3a:af:
73:1d:e1:b3:7f:7f:7e:10:da:14:25:73:7c:27:85:74:b6:86:
50:9a:4d:3d:09:12:2d:96:4f:90:32:09:82:ba:3f:f5:b0:91:
50:b9:dd:2d:fb:b6:07:a2:7e:89:c6:b8:7f:0d:7c:d9:86:6c:
42:40:0b:a3:88:7c:4c:2d:45:93:99:8a:42:81:d8:58:34:55:
44:ba:7e:ae:7d:a8:c2:f3:b2:2a:e5:09:98:b1:0f:a0:7c:b2:
63:27:96:a7:06:76:90:75:40:a9:8e:3b:56:21:cc:4a:eb:4f:
d3:26:3e:9f:fd:7f:26:75:e2:86:fe:02:6f:46:c7:2a:c8:ca:
96:ac:a0:da:27:64:38:c8:e8:93:6b:63:58:23:5d:14:f5:1e:
97:2f:5b:08:47:15:79:b5:7a:e5:86:02:35:f6:a2:87:68:8c:
88:ff:33:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:16 2024 by rpki-client on console-ams.rpki-client.org