Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3e2a73-f497-49cc-b420-d7ab514d4ee2/1/hBymwCtW_SAZKmyO1gVV3hflJwE.roa
File: hBymwCtW_SAZKmyO1gVV3hflJwE.roa (raw, json)
Hash identifier: wPrQNgOrOW2sXY8VGnafwl858ujemUSP7LBInX3FJEM=
Subject key identifier: 84:1C:A6:C0:2B:56:FD:20:19:2A:6C:8E:D6:05:55:DE:17:E5:27:01
Certificate issuer: /CN=f4e736f0d8e9e70f1ae7caa11c559ecf70a72828
Certificate serial: 09CF9519
Authority key identifier: F4:E7:36:F0:D8:E9:E7:0F:1A:E7:CA:A1:1C:55:9E:CF:70:A7:28:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Oc28Njp5w8a58qhHFWez3CnKCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3e2a73-f497-49cc-b420-d7ab514d4ee2/1/hBymwCtW_SAZKmyO1gVV3hflJwE.roa
Signing time: Sat 01 Jan 2022 05:06:34 +0000
ROA not before: Sat 01 Jan 2022 05:06:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24971
IP address blocks: 193.169.160.0/23 maxlen: 23
2001:678:a50::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164599065 (0x9cf9519)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e736f0d8e9e70f1ae7caa11c559ecf70a72828
Validity
Not Before: Jan 1 05:06:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=841ca6c02b56fd20192a6c8ed60555de17e52701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ab:b6:99:b1:1d:56:8d:e7:0f:0e:95:be:06:
16:3c:22:d4:2b:af:ce:e6:81:6c:84:7a:ae:03:af:
9e:92:57:87:24:c3:73:ce:99:4b:d9:30:20:86:5f:
b7:3f:49:69:7c:cd:2e:27:e6:29:d2:fe:92:d7:db:
2f:ed:08:78:4c:70:55:6a:d6:2a:8f:42:12:99:13:
e8:4c:e8:3d:01:59:81:33:9a:26:74:f4:91:16:ad:
a7:d6:02:29:3a:d6:66:1f:e2:8e:be:3d:b5:80:1a:
ea:82:3e:8c:4d:d5:d7:97:2f:4e:8e:a8:07:63:56:
e7:59:a1:4b:c3:98:da:c4:48:8a:ed:6a:3a:40:60:
ad:61:8e:39:8b:03:2f:16:16:23:11:7e:0e:69:0e:
0e:ed:d0:49:b4:96:ad:08:44:2d:5a:8a:73:f1:8b:
c5:61:67:61:af:18:38:b2:a6:8a:9e:d9:9c:c9:ab:
5d:d4:58:91:bc:6f:1c:fa:63:ea:29:5f:9e:68:af:
f1:90:fb:14:5c:a0:d5:04:b3:e2:aa:17:ea:4b:00:
4a:78:78:f1:ae:ff:3f:55:b4:5a:aa:79:58:72:30:
5b:91:0f:31:0d:41:93:7b:cb:cf:9d:3c:52:27:3d:
80:2c:e1:a8:5a:30:97:3c:a9:30:16:47:6e:0c:a0:
b6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:1C:A6:C0:2B:56:FD:20:19:2A:6C:8E:D6:05:55:DE:17:E5:27:01
X509v3 Authority Key Identifier:
keyid:F4:E7:36:F0:D8:E9:E7:0F:1A:E7:CA:A1:1C:55:9E:CF:70:A7:28:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Oc28Njp5w8a58qhHFWez3CnKCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3e2a73-f497-49cc-b420-d7ab514d4ee2/1/hBymwCtW_SAZKmyO1gVV3hflJwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3e2a73-f497-49cc-b420-d7ab514d4ee2/1/9Oc28Njp5w8a58qhHFWez3CnKCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.160.0/23
IPv6:
2001:678:a50::/48
Signature Algorithm: sha256WithRSAEncryption
61:42:29:45:e3:ec:a5:11:d8:42:64:61:df:75:04:97:27:6e:
b4:6e:7c:00:8b:c8:1c:5f:37:a5:29:d6:d7:8f:ae:59:a8:2b:
37:f2:87:87:9b:d9:42:ca:63:0a:c5:97:51:8a:35:20:62:2d:
1f:6c:bc:09:a8:4e:10:5b:dc:ec:a9:1e:14:08:82:6c:24:e3:
80:e1:02:0f:5d:d4:ac:c0:60:0a:b6:e0:63:22:aa:f1:e7:0e:
bd:e0:38:f3:a7:43:5d:c5:c4:d5:42:8e:af:72:ce:0a:21:03:
4b:33:ff:a0:67:69:76:2b:11:75:0f:87:5a:9f:e3:19:66:aa:
f5:32:4b:2d:8b:6b:9d:e0:f7:ab:b3:a8:9b:8f:33:91:0f:ed:
62:b3:38:04:db:49:a4:65:16:99:dd:13:4f:1c:14:a7:2d:a8:
86:9b:3a:bd:cd:a0:c9:78:ee:a6:80:d6:08:2b:8f:e5:80:32:
cd:9e:77:e8:23:10:7d:28:34:43:30:39:48:1d:28:ef:c7:61:
d5:00:98:8d:46:43:c3:6a:6d:33:f0:ca:70:eb:25:9a:81:9c:
14:d5:3e:89:8d:0d:29:6d:6b:b9:3e:d9:f1:02:ee:26:9f:7a:
ad:1c:23:91:1b:fd:cc:93:00:a8:26:8c:ec:2e:dc:2e:2c:4f:
08:d0:0c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:27 2024 by rpki-client on console-ams.rpki-client.org