Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/d1353b-fa9d-4e6e-8c22-0ab25d0b0bee/1/c--soSWmrIPPUVNjMj4-iiYbUpo.roa
File: c--soSWmrIPPUVNjMj4-iiYbUpo.roa (raw, json)
Hash identifier: Eg6jqbOO/OYu3zBFz3Mq0l5weGSG137bSTkmytr2z+Y=
Subject key identifier: 73:EF:AC:A1:25:A6:AC:83:CF:51:53:63:32:3E:3E:8A:26:1B:52:9A
Certificate issuer: /CN=cde8e6543992db497598c22e7a8b9578f88d982f
Certificate serial: 11A2FD22
Authority key identifier: CD:E8:E6:54:39:92:DB:49:75:98:C2:2E:7A:8B:95:78:F8:8D:98:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zejmVDmS20l1mMIueouVePiNmC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/d1353b-fa9d-4e6e-8c22-0ab25d0b0bee/1/c--soSWmrIPPUVNjMj4-iiYbUpo.roa
Signing time: Sat 01 Jan 2022 03:51:38 +0000
ROA not before: Sat 01 Jan 2022 03:51:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34386
IP address blocks: 193.58.200.0/23 maxlen: 23
193.58.203.0/24 maxlen: 24
193.58.200.0/22 maxlen: 22
194.79.244.0/22 maxlen: 22
194.79.244.0/23 maxlen: 23
194.79.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 295894306 (0x11a2fd22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cde8e6543992db497598c22e7a8b9578f88d982f
Validity
Not Before: Jan 1 03:51:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73efaca125a6ac83cf515363323e3e8a261b529a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9b:55:bc:e5:e9:42:00:ce:58:1b:22:f8:8e:
c2:a9:7e:98:bc:e0:a9:23:9f:5a:98:e6:dc:25:72:
70:6f:3e:83:f8:f4:ee:c5:f2:30:3e:01:3a:38:27:
8f:ec:cf:c3:8b:df:74:9a:24:e0:df:d2:46:49:50:
a3:3d:61:6c:6f:5c:44:3c:e5:53:8a:a8:fd:07:b9:
79:a2:42:6f:0d:d5:9e:9e:ff:1f:a9:7f:a3:cc:70:
52:09:c4:bb:76:89:11:eb:b0:58:e8:62:ef:54:6b:
cc:3d:81:ee:0c:18:0f:bb:66:74:b0:44:a5:58:4e:
8e:79:25:1a:1f:90:4c:66:f1:af:40:b3:da:41:3d:
99:ae:92:c1:0c:36:a9:f4:ca:42:8d:91:67:73:10:
76:06:64:86:f2:7b:79:51:5a:88:27:a8:a8:f1:a7:
b7:f0:59:37:d1:f7:c9:32:7b:7a:ea:04:48:3b:f6:
d6:fb:04:be:7c:d9:66:ed:71:dc:12:e3:07:e4:78:
9e:d7:8f:d7:f5:f6:3e:b8:68:b2:66:86:dd:54:57:
36:36:d4:34:91:4a:10:db:d6:ca:c6:0b:cc:f2:1f:
50:2e:2c:46:34:f2:97:0f:2b:a1:26:f4:ae:23:02:
83:df:91:0e:e8:9b:5d:8d:ad:b3:19:cd:9c:8e:4b:
87:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:EF:AC:A1:25:A6:AC:83:CF:51:53:63:32:3E:3E:8A:26:1B:52:9A
X509v3 Authority Key Identifier:
keyid:CD:E8:E6:54:39:92:DB:49:75:98:C2:2E:7A:8B:95:78:F8:8D:98:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zejmVDmS20l1mMIueouVePiNmC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/d1353b-fa9d-4e6e-8c22-0ab25d0b0bee/1/c--soSWmrIPPUVNjMj4-iiYbUpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/d1353b-fa9d-4e6e-8c22-0ab25d0b0bee/1/zejmVDmS20l1mMIueouVePiNmC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.200.0/22
194.79.244.0/22
Signature Algorithm: sha256WithRSAEncryption
05:71:57:0e:4e:40:68:51:d0:a7:83:80:38:44:3f:80:54:70:
4e:c4:68:e8:a0:8e:ee:2b:63:bb:9f:52:ce:0f:ee:4a:e8:1e:
b5:c6:d0:1d:8c:85:39:95:41:b0:fe:cc:64:52:af:c5:8c:b8:
fb:7a:43:35:a0:0d:b9:2d:28:8d:0b:75:f5:81:eb:9f:83:e4:
66:38:b4:e8:01:bb:57:41:f1:09:a3:c0:ad:60:00:58:15:b9:
cf:15:14:14:2d:bd:d8:71:86:52:42:77:11:69:c6:cd:74:5b:
f2:55:27:cf:56:f9:ab:89:65:0a:d7:ce:51:b0:31:78:b5:59:
7d:df:0c:cf:14:f9:0c:15:5d:08:84:2f:6c:67:ee:4e:c7:fd:
ac:6e:0a:32:73:7d:48:eb:4f:c3:fb:5b:29:32:88:1b:12:4d:
b2:ab:c0:f0:25:96:15:5f:1a:c4:ed:4c:3f:14:db:c2:a4:bb:
4e:26:b1:25:e6:95:af:2d:cc:0a:ff:70:2e:f0:a6:c2:31:ac:
9c:dc:2d:bd:cb:e8:53:58:1a:9a:b6:b8:50:e5:52:16:18:1e:
7a:eb:a4:18:b1:72:13:4f:2b:2f:6e:b4:c1:2e:13:41:8c:1b:
fc:2c:2e:8f:26:bd:c4:71:8f:0a:eb:03:db:81:f9:57:55:29:
07:4a:9b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:50 2024 by rpki-client on console-fra.rpki-client.org