Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/C088HZAxlNMGqb-xYTNlMT9xOKc.roa
File: C088HZAxlNMGqb-xYTNlMT9xOKc.roa (raw, json)
Hash identifier: irPo7thjNw/mdbPfHiA+iTXir+KD0SyVZKHdQp7Sj6k=
Subject key identifier: 0B:4F:3C:1D:90:31:94:D3:06:A9:BF:B1:61:33:65:31:3F:71:38:A7
Certificate issuer: /CN=8d3f356a02d9679ce890b5d51e0dec2f3f363361
Certificate serial: 0185C72B
Authority key identifier: 8D:3F:35:6A:02:D9:67:9C:E8:90:B5:D5:1E:0D:EC:2F:3F:36:33:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jT81agLZZ5zokLXVHg3sLz82M2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/C088HZAxlNMGqb-xYTNlMT9xOKc.roa
Signing time: Sat 01 Jan 2022 01:59:11 +0000
ROA not before: Sat 01 Jan 2022 01:59:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208565
IP address blocks: 193.163.70.0/24 maxlen: 24
2a11:4e00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25544491 (0x185c72b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d3f356a02d9679ce890b5d51e0dec2f3f363361
Validity
Not Before: Jan 1 01:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b4f3c1d903194d306a9bfb1613365313f7138a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:01:ab:dd:5c:e0:87:b5:40:48:0d:5c:36:ad:
f1:e0:9c:97:fb:9e:90:5d:fd:dc:84:1a:53:82:b9:
5d:63:52:5a:e4:bf:74:9b:16:64:e2:32:62:24:56:
0f:1d:68:f1:8a:37:2d:5a:66:91:60:7d:ff:3e:0e:
dd:ad:f1:63:4b:83:64:47:bb:8c:aa:e0:79:ac:ab:
bd:96:5a:69:ae:a7:f4:f2:6e:8f:33:83:1e:e1:56:
39:cf:15:ee:04:62:ce:58:6c:c4:cf:4e:48:fa:07:
d2:07:8e:ed:e3:c0:4f:46:df:17:d6:4f:40:6b:e8:
df:02:a7:84:49:63:30:a5:d6:da:1d:89:17:1d:78:
0a:db:db:5e:d2:4b:7e:8e:0c:cc:f5:25:a8:05:b6:
3c:16:ec:2a:23:a0:5d:d1:3a:88:3b:f3:e1:1e:26:
d0:3a:bd:9a:df:0d:01:fa:c9:6b:15:84:88:c7:05:
8e:a0:dd:a0:c7:cc:9e:bf:e4:54:4f:f5:92:2b:b1:
e9:2a:2b:77:98:22:d6:a9:01:28:60:c6:67:2e:a3:
b5:80:a7:3c:10:a2:d5:31:3f:27:8f:2f:a1:c6:03:
63:69:41:a4:1f:6b:12:72:5c:e2:de:d9:be:72:7d:
d9:18:10:6a:51:47:41:13:20:6a:ce:ac:7f:94:1b:
27:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:4F:3C:1D:90:31:94:D3:06:A9:BF:B1:61:33:65:31:3F:71:38:A7
X509v3 Authority Key Identifier:
keyid:8D:3F:35:6A:02:D9:67:9C:E8:90:B5:D5:1E:0D:EC:2F:3F:36:33:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jT81agLZZ5zokLXVHg3sLz82M2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/C088HZAxlNMGqb-xYTNlMT9xOKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/jT81agLZZ5zokLXVHg3sLz82M2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.70.0/24
IPv6:
2a11:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
bc:35:98:4f:5a:dc:c3:8a:9d:86:42:4d:5e:3d:90:12:7f:3b:
f1:d5:ab:49:b6:9b:ee:1e:cd:68:d3:38:3e:b3:b7:aa:bf:11:
d9:1d:f4:7e:ac:cc:30:e3:7f:05:c8:5d:8d:41:d7:c9:c8:72:
a6:6f:9e:d9:97:01:90:07:42:75:4a:15:1e:c8:86:34:f5:32:
42:37:95:5d:cd:ea:da:96:e3:0f:59:69:ad:0c:f8:31:01:a4:
21:2a:07:81:ee:f2:15:d9:84:c8:0a:73:a0:3e:68:be:38:b2:
58:04:60:6a:42:5d:44:b7:d1:62:2e:3f:d7:99:2a:96:87:a6:
83:93:f2:06:cf:22:97:d0:2c:33:dd:fb:56:2c:27:93:57:30:
c7:78:55:49:42:0a:a7:e4:bc:a3:2c:a6:ea:a0:b1:8b:9c:47:
9a:7a:19:18:99:ad:93:38:8d:98:54:2f:66:8a:6a:1a:5e:c2:
0f:f5:6c:af:d5:61:94:22:90:ad:5e:cc:4d:a6:94:a6:ab:70:
99:84:67:d0:94:cf:ac:0b:6f:10:72:59:94:05:a3:e4:97:6d:
48:3b:04:b9:e2:ad:2e:1e:2c:72:2d:dd:f1:fc:86:db:85:2d:
14:10:b6:03:d3:09:be:9b:52:5e:2a:19:9c:e8:08:d2:3a:a2:
ca:8b:d4:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:19 2024 by rpki-client on console-fra.rpki-client.org