Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bkDhhwvwM7KwB-Uuci0zxeK4xok.roa
File: bkDhhwvwM7KwB-Uuci0zxeK4xok.roa (raw, json)
Hash identifier: H8iJMvZQ7ECuzL8BVCbEjYLEV43kbJUSYaKYM+zQxK8=
Subject key identifier: 6E:40:E1:87:0B:F0:33:B2:B0:07:E5:2E:72:2D:33:C5:E2:B8:C6:89
Certificate issuer: /CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Certificate serial: 0461EDDE
Authority key identifier: 6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bkDhhwvwM7KwB-Uuci0zxeK4xok.roa
Signing time: Sat 01 Jan 2022 16:07:23 +0000
ROA not before: Sat 01 Jan 2022 16:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44879
IP address blocks: 193.47.168.0/21 maxlen: 24
193.47.176.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73526750 (0x461edde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Validity
Not Before: Jan 1 16:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e40e1870bf033b2b007e52e722d33c5e2b8c689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8f:70:ec:0c:47:69:aa:8d:c7:a4:4d:7f:0d:
35:25:f0:63:35:01:23:9c:7f:88:e4:da:ae:60:31:
a6:25:c7:1a:53:1d:7f:fa:d4:46:6c:68:83:98:f2:
d0:16:5c:eb:24:8f:dd:28:88:14:d8:b1:83:a1:ef:
4b:97:ee:f5:99:de:71:f7:34:32:ec:3c:3e:aa:2e:
06:d7:db:c3:5c:a5:02:cc:4a:7c:b2:fd:d0:33:66:
29:a0:fe:90:e2:bf:85:09:7c:74:a7:18:fd:07:38:
56:9e:9e:03:ab:7e:69:8a:62:ac:0a:ac:ac:41:ab:
70:25:cd:45:43:05:83:13:29:50:c7:b2:37:07:77:
89:8e:0a:8a:1e:84:45:9d:2a:0c:73:12:01:f0:2c:
a5:57:d3:87:ce:ed:3e:bb:99:da:40:84:e9:66:4b:
90:e7:95:de:e1:44:3f:71:22:f0:a7:91:fe:5e:8e:
48:ba:60:c4:c4:bc:0b:16:c2:7f:fd:e5:68:d1:05:
10:5a:40:20:bf:65:f2:67:4f:dc:5c:64:3d:28:be:
0f:77:b5:a2:3e:1d:c6:b4:cc:15:46:5c:36:ee:99:
06:b5:80:8f:d9:7b:dc:5f:5a:7d:12:94:1f:97:46:
97:d3:8e:7e:fd:f1:6f:8a:aa:7f:47:2c:81:e1:8b:
eb:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:40:E1:87:0B:F0:33:B2:B0:07:E5:2E:72:2D:33:C5:E2:B8:C6:89
X509v3 Authority Key Identifier:
keyid:6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bkDhhwvwM7KwB-Uuci0zxeK4xok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.168.0-193.47.183.255
Signature Algorithm: sha256WithRSAEncryption
53:a7:27:08:d2:ba:6e:84:17:14:54:6b:79:17:6d:46:12:58:
19:23:b9:57:ea:44:e5:69:a9:1e:f9:56:88:a0:24:64:f2:0e:
2c:d9:41:5d:f6:c5:c0:d2:6d:07:9e:b6:df:70:05:74:1d:e2:
51:ef:68:3e:e9:e9:47:3f:10:ab:d9:0b:da:02:04:b0:6f:ef:
4e:41:75:f9:fc:d4:4f:ad:5d:52:9a:3d:ad:ce:af:c7:c1:f9:
f7:69:da:64:cb:24:33:76:04:05:25:ff:e9:0d:39:8d:0f:4c:
0b:dc:f5:47:db:ec:88:6f:a0:06:b1:b4:9d:f9:8e:c7:cc:13:
f6:c9:18:0e:20:1a:a9:6b:6e:d4:5c:b2:1f:18:aa:c2:f4:97:
97:56:eb:2d:7e:63:48:80:69:33:d9:e8:85:61:87:4e:66:7e:
a0:14:b6:ff:a1:fc:35:31:f2:03:1d:a6:3e:24:16:a7:4f:1c:
87:1e:07:13:b4:24:e3:cf:e2:a2:1c:0e:41:de:84:ef:86:64:
3f:20:39:b0:41:20:16:7a:1a:21:ec:db:a8:84:94:b6:09:d3:
bc:9f:44:b5:df:65:ed:ab:80:0f:69:a0:a6:8b:ed:8a:e0:d0:
0d:32:6a:41:8a:44:1d:58:75:85:59:78:fe:01:0d:7f:18:ee:
a2:4c:7d:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:05 2024 by rpki-client on console-fra.rpki-client.org