Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/7a8781-e363-46e4-97ed-e3e8151a8760/1/rnnsicC5IzPaBrMn_6O2fLFzVWA.roa
File: rnnsicC5IzPaBrMn_6O2fLFzVWA.roa (raw, json)
Hash identifier: juf6Cm5aD5PAkyjyg4bdOpY8yWQheORs5dnxlqhMH0s=
Subject key identifier: AE:79:EC:89:C0:B9:23:33:DA:06:B3:27:FF:A3:B6:7C:B1:73:55:60
Certificate issuer: /CN=48ba3701691d2928afad3a1b5735a26f4c99cff6
Certificate serial: 05288921
Authority key identifier: 48:BA:37:01:69:1D:29:28:AF:AD:3A:1B:57:35:A2:6F:4C:99:CF:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SLo3AWkdKSivrTobVzWib0yZz_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/7a8781-e363-46e4-97ed-e3e8151a8760/1/rnnsicC5IzPaBrMn_6O2fLFzVWA.roa
Signing time: Sat 01 Jan 2022 03:55:14 +0000
ROA not before: Sat 01 Jan 2022 03:55:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8426
IP address blocks: 193.28.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86542625 (0x5288921)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48ba3701691d2928afad3a1b5735a26f4c99cff6
Validity
Not Before: Jan 1 03:55:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae79ec89c0b92333da06b327ffa3b67cb1735560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1a:5e:10:1e:a1:6f:f2:ad:79:31:dd:05:77:
3d:08:53:7a:0c:ed:cf:67:c1:5e:a4:d1:dd:37:de:
81:ed:73:c0:ac:ed:64:a4:a8:80:6f:35:aa:0c:43:
e9:3b:8b:e2:d0:dc:db:6d:6b:8e:bc:22:e5:52:19:
fe:cb:7d:6f:f1:01:d4:1c:6c:d3:d9:29:f1:6f:c4:
91:28:59:5e:de:a1:99:a0:5b:a9:b1:88:93:54:f8:
b8:c3:71:1d:d3:7d:79:6d:91:5c:8a:71:8a:ed:4e:
47:bc:72:43:9d:b2:98:2a:63:36:37:c4:62:dd:3e:
2a:ad:e0:89:f1:35:6b:04:45:78:1d:81:18:93:b1:
96:2e:a6:7d:d1:17:33:e2:75:23:85:da:36:e1:bb:
16:da:80:47:69:5a:a9:a3:dc:c0:6f:23:7d:2d:2a:
e7:96:70:d9:fc:67:6a:17:53:9c:58:46:46:ff:82:
b5:ce:49:62:9b:d7:86:9f:4f:9a:53:82:27:44:a2:
1d:de:03:06:1d:7b:ca:f4:d6:9c:2b:5e:53:77:9f:
bf:8a:db:b6:b6:f6:46:a8:cd:af:37:39:16:c4:83:
86:82:d7:f1:01:53:f2:81:42:83:30:33:ef:a8:0d:
96:d3:0c:d9:e0:c6:c2:1f:e3:1b:f9:9c:15:37:a7:
84:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:79:EC:89:C0:B9:23:33:DA:06:B3:27:FF:A3:B6:7C:B1:73:55:60
X509v3 Authority Key Identifier:
keyid:48:BA:37:01:69:1D:29:28:AF:AD:3A:1B:57:35:A2:6F:4C:99:CF:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SLo3AWkdKSivrTobVzWib0yZz_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7a8781-e363-46e4-97ed-e3e8151a8760/1/rnnsicC5IzPaBrMn_6O2fLFzVWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7a8781-e363-46e4-97ed-e3e8151a8760/1/SLo3AWkdKSivrTobVzWib0yZz_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.85.0/24
Signature Algorithm: sha256WithRSAEncryption
67:68:45:18:11:3b:27:d6:e9:45:de:ff:24:c7:e1:fb:cb:71:
1e:89:7f:33:2f:25:e5:3d:bb:d8:e8:5e:e8:89:52:d7:82:1a:
90:3c:d3:34:ee:b5:80:39:88:05:19:0a:a6:a9:e7:c7:c7:96:
86:c1:44:58:0d:82:65:52:a8:30:db:51:7b:f0:3c:99:9d:2f:
ed:8b:d6:b8:fd:db:4a:5e:26:31:4a:46:86:ed:4a:61:0e:23:
97:3a:b4:66:88:f7:a9:34:bf:4f:a3:06:3b:11:f1:c9:3c:2e:
4e:6e:54:1f:8e:8b:3a:c7:83:6b:29:0e:f5:ca:e8:8c:60:c3:
20:e4:cf:b6:80:90:6c:5c:73:58:16:9a:b4:e8:0b:db:b3:cf:
34:be:3b:e6:35:c8:33:35:d4:4e:2a:66:c2:8a:5d:a2:18:ff:
5b:7d:04:99:a3:9f:18:d7:f0:b1:68:8d:3d:7e:4e:48:52:f8:
e8:c7:80:ee:9b:0a:f0:66:14:d0:9a:25:04:1d:dd:17:9c:24:
34:d3:68:86:2e:2b:ee:f6:dc:8a:74:db:57:fe:df:f3:4a:1c:
7a:0c:1b:f7:2c:92:6e:e3:90:23:0f:bc:b0:08:fe:cd:a9:6f:
11:4e:16:7b:83:95:c2:e5:a1:38:f3:aa:f1:c9:47:3e:dc:eb:
f1:70:df:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org