Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/iQDShmUNg8xn_RgYrNhOpmPaaOE.roa
File: iQDShmUNg8xn_RgYrNhOpmPaaOE.roa (raw, json)
Hash identifier: aby4TI9A83gTy7kH77wNguFQOjdWyYNV1crxpntlw8U=
Subject key identifier: 89:00:D2:86:65:0D:83:CC:67:FD:18:18:AC:D8:4E:A6:63:DA:68:E1
Certificate issuer: /CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Certificate serial: 0C13385F
Authority key identifier: EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/iQDShmUNg8xn_RgYrNhOpmPaaOE.roa
Signing time: Tue 05 Jul 2022 08:41:25 +0000
ROA not before: Tue 05 Jul 2022 08:41:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134823
IP address blocks: 193.42.40.0/22 maxlen: 24
2a13:2200::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202586207 (0xc13385f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Validity
Not Before: Jul 5 08:41:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8900d286650d83cc67fd1818acd84ea663da68e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d9:9a:4b:a4:28:18:b1:42:7c:b7:ab:ba:e4:
df:a2:2c:cc:d0:2d:c5:70:4f:b9:63:3e:c5:bb:92:
9a:2a:61:d6:e7:c7:82:61:94:97:a8:5b:f8:9e:27:
4c:1f:90:f1:f4:49:42:cd:f7:cf:dc:98:f3:1e:0a:
22:1b:28:15:c3:20:d8:d4:9a:de:9d:d9:f5:52:d8:
07:8b:29:bd:62:76:d6:6b:13:e7:c3:82:99:3c:cc:
b3:54:ed:df:45:fc:47:e2:06:0d:15:da:d2:c4:ae:
9d:24:56:15:b3:98:ce:80:f6:5c:fb:f9:a8:81:79:
16:03:94:23:60:ce:79:80:ba:82:66:f6:aa:04:d4:
19:81:ca:42:8d:b2:db:13:13:54:6f:be:35:7e:3e:
bf:6b:d1:60:19:e0:e3:53:f7:39:77:1e:72:a7:cb:
66:1a:fb:01:b2:a3:85:8f:35:a2:b8:83:f0:0f:f6:
ee:55:24:f9:12:89:5e:82:04:38:0e:8b:29:1c:7e:
49:c4:e9:7e:a4:7c:f2:a6:52:68:89:22:77:88:d7:
f3:19:55:a4:57:1f:ba:8a:d1:5f:a0:9f:e2:7f:e1:
42:a4:fd:43:b1:5d:b4:a0:6b:ee:21:28:38:5f:f2:
5d:d8:41:9c:4c:01:3c:0e:63:10:87:f5:d5:2f:12:
aa:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:00:D2:86:65:0D:83:CC:67:FD:18:18:AC:D8:4E:A6:63:DA:68:E1
X509v3 Authority Key Identifier:
keyid:EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/iQDShmUNg8xn_RgYrNhOpmPaaOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.40.0/22
IPv6:
2a13:2200::/29
Signature Algorithm: sha256WithRSAEncryption
56:d1:a3:8a:23:5a:2d:9f:09:5a:d2:4d:81:ce:0a:0c:27:6f:
b7:f9:ea:90:6d:70:1c:0f:c7:82:54:51:48:12:f6:60:32:54:
89:dc:f7:20:0a:bf:3d:ec:ef:b2:89:49:5c:7e:d3:cd:e9:1e:
0a:34:cc:44:59:70:8a:3a:fb:6d:0a:73:17:d7:01:0f:12:f7:
8e:c8:f7:9c:1c:15:86:b0:86:22:40:76:da:d3:ca:c9:71:01:
f0:e4:d6:97:1d:7a:6f:12:1d:e5:37:a4:ce:b3:bb:e4:bb:e6:
93:af:17:68:0a:bd:20:35:84:25:e9:62:96:fa:7a:8d:19:80:
17:02:e4:12:8e:3b:d3:ee:43:ad:1c:f6:55:cd:13:e2:f5:20:
1a:05:64:12:4c:58:2c:c7:06:48:68:99:6f:14:8a:b7:b4:27:
ff:e0:a6:26:e4:c0:8c:4e:f7:91:a0:d8:8d:d2:dc:47:40:b3:
39:1a:64:d5:b5:ff:4c:be:9d:85:3e:e7:f5:56:2a:06:36:64:
d9:05:8f:70:14:30:04:c8:c8:15:52:12:18:82:c1:74:ed:b5:
d5:43:11:49:41:60:9d:31:32:14:a8:f8:97:8b:3e:01:d5:79:
4c:66:40:96:2c:b0:e1:3e:68:d5:a2:85:44:20:5b:de:19:fb:
ad:0d:1b:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:25 2023 by rpki-client on console-ams.rpki-client.org