Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/kYxJJDdIILKwkqUtxSh0NWFEmuA.roa
File: kYxJJDdIILKwkqUtxSh0NWFEmuA.roa (raw, json)
Hash identifier: Zl2N0HCvZQuL4wqiGJmJFcOP0DdGg2VXKRUqJw7x2FM=
Subject key identifier: 91:8C:49:24:37:48:20:B2:B0:92:A5:2D:C5:28:74:35:61:44:9A:E0
Certificate issuer: /CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Certificate serial: 0D85997E
Authority key identifier: 9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/kYxJJDdIILKwkqUtxSh0NWFEmuA.roa
Signing time: Sat 01 Jan 2022 02:57:08 +0000
ROA not before: Sat 01 Jan 2022 02:57:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 251
IP address blocks: 193.34.48.0/22 maxlen: 24
195.13.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226859390 (0xd85997e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Validity
Not Before: Jan 1 02:57:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=918c4924374820b2b092a52dc528743561449ae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:45:86:33:a0:0c:3b:49:2b:f0:2f:00:dd:b2:
d9:a9:a2:a2:8a:97:0c:8f:75:5b:b8:ac:da:49:85:
cc:5c:29:91:37:e8:18:c2:c4:60:1f:8a:3a:95:58:
62:94:8a:42:13:1f:41:64:bf:50:74:61:58:1d:d5:
af:e7:01:a3:85:ae:f2:ba:00:c5:4d:ab:78:51:b4:
b6:1a:4a:86:9a:63:94:5a:7d:1c:bc:48:6f:17:3d:
bc:6c:cb:de:92:0b:8b:7d:da:19:d0:24:e3:de:7f:
fa:17:a8:b0:f7:6e:2f:fb:31:5e:31:e2:d5:e9:78:
85:e9:25:dc:49:75:01:bd:05:8d:2a:cd:6a:8e:9d:
0c:b0:68:4a:3e:14:eb:95:28:9a:86:6c:7d:2a:e1:
d9:c5:ee:7f:0e:d0:23:f2:08:c0:8a:65:b6:e3:e1:
46:f4:9e:c8:70:1f:a3:3c:1e:da:67:e1:51:3a:af:
32:cd:8a:c8:e4:8b:0e:36:76:d2:80:f7:aa:43:48:
33:43:75:dd:c8:5e:2b:59:d1:c2:7d:8a:88:1c:80:
f8:20:03:88:b3:60:89:e8:d9:49:fa:bb:97:be:bf:
65:64:66:ab:0d:3d:b3:54:eb:bd:f9:e4:84:3e:12:
2b:db:16:dc:9a:15:8e:47:fc:fd:2b:2b:cc:42:6c:
87:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:8C:49:24:37:48:20:B2:B0:92:A5:2D:C5:28:74:35:61:44:9A:E0
X509v3 Authority Key Identifier:
keyid:9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/kYxJJDdIILKwkqUtxSh0NWFEmuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/njUz1mLD8Na7HmkvP6tte6OCTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.48.0/22
195.13.60.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:c2:14:e5:10:4a:5c:a2:7c:36:ed:9f:9f:5d:93:63:a2:d0:
6e:12:1c:b8:7e:1b:e2:c8:de:0f:12:c0:23:00:89:a9:b2:5a:
fc:15:49:54:94:be:9c:b0:d6:b5:8f:0e:a3:9d:21:9a:1f:70:
e4:ca:f8:5e:95:c5:37:e2:ad:b0:07:d2:39:a6:bb:36:fc:53:
98:4f:87:c6:86:30:18:41:b0:ef:f9:31:f2:79:16:a8:41:d7:
db:34:28:7a:a7:ef:b8:34:a4:db:09:fe:e4:d9:0e:be:cd:f9:
ef:b5:97:f3:1d:c3:35:e5:ee:39:46:2e:92:74:af:8d:46:2c:
1f:be:c9:36:af:52:6d:b3:a7:43:f5:e5:01:d8:1d:01:70:14:
98:dc:99:52:36:c8:3c:3a:c4:5b:41:26:22:ce:bf:ad:52:06:
78:af:96:f9:b5:2f:e9:16:8d:81:db:97:f6:53:58:ff:76:2e:
53:0e:b9:68:60:84:ef:59:c7:c5:dc:1d:10:55:9f:46:bc:79:
4e:29:0b:32:49:c2:85:5d:d7:ba:ff:cf:1a:4d:0a:cb:58:ba:
e7:68:6c:c4:18:d8:fd:6a:f9:db:b9:33:31:56:f3:dc:1d:15:
e5:75:23:7e:30:09:ee:e6:50:39:c9:f2:d3:2d:a8:ee:f4:ea:
90:1f:d6:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:48 2023 by rpki-client on console-fra.rpki-client.org