Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/1d8e80-33a8-4d55-a3d6-5ecdef2fb68d/1/8XJZRxltB86pj_fEUIH4tu9-RZ0.roa
File: 8XJZRxltB86pj_fEUIH4tu9-RZ0.roa (raw, json)
Hash identifier: wOQUm6LY2Wn8iUyq1F8O2M7pZbVWda+HVqGdtYLqhoY=
Subject key identifier: F1:72:59:47:19:6D:07:CE:A9:8F:F7:C4:50:81:F8:B6:EF:7E:45:9D
Certificate issuer: /CN=8fbc1063a6efb45e27b111e9207827c9f732502b
Certificate serial: 091888C4
Authority key identifier: 8F:BC:10:63:A6:EF:B4:5E:27:B1:11:E9:20:78:27:C9:F7:32:50:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j7wQY6bvtF4nsRHpIHgnyfcyUCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/1d8e80-33a8-4d55-a3d6-5ecdef2fb68d/1/8XJZRxltB86pj_fEUIH4tu9-RZ0.roa
Signing time: Sat 01 Jan 2022 10:59:18 +0000
ROA not before: Sat 01 Jan 2022 10:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29434
IP address blocks: 193.200.170.0/24 maxlen: 24
93.94.192.0/21 maxlen: 24
93.94.199.0/24 maxlen: 24
195.85.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152602820 (0x91888c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fbc1063a6efb45e27b111e9207827c9f732502b
Validity
Not Before: Jan 1 10:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1725947196d07cea98ff7c45081f8b6ef7e459d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:76:73:7e:16:db:eb:75:5f:49:aa:f8:67:a3:
67:68:18:99:52:12:f1:13:ca:1a:82:0a:5f:67:57:
a1:9c:d3:a5:a1:d0:14:dc:73:8f:40:ce:0f:fb:d6:
e6:e6:17:f0:83:a0:e6:fc:56:57:ad:71:36:a1:43:
0f:f9:b6:e5:70:28:ab:35:d1:ad:ed:00:03:37:ca:
61:e9:fd:c8:eb:d0:18:bf:cd:58:dd:68:c9:22:c7:
fb:2a:0e:60:65:0b:61:47:88:2f:cd:ef:d6:ad:b9:
44:9d:ca:da:de:56:43:70:ae:c2:e7:6b:ca:29:37:
9f:76:6d:cb:a5:13:f1:90:56:ce:60:29:52:a2:a3:
ab:01:ac:9a:c7:b7:b1:7e:90:40:33:69:1c:dc:b5:
7d:7a:bd:42:39:be:78:27:67:62:10:89:4a:b9:7b:
ae:14:80:e5:e7:68:07:ab:02:f3:86:f9:7f:da:a8:
be:08:5d:bb:03:b4:8e:a7:9f:f1:da:e5:07:67:5b:
f8:f8:2f:df:ba:6f:43:4f:f9:8c:9b:0e:26:46:ff:
15:b5:16:08:03:ab:ec:48:60:ff:db:dd:cf:97:f3:
5c:0f:5a:a7:a3:70:f4:b3:da:34:5a:5a:f4:8e:eb:
2d:8f:c8:16:17:aa:c2:12:17:8d:ac:f0:64:a1:24:
0e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:72:59:47:19:6D:07:CE:A9:8F:F7:C4:50:81:F8:B6:EF:7E:45:9D
X509v3 Authority Key Identifier:
keyid:8F:BC:10:63:A6:EF:B4:5E:27:B1:11:E9:20:78:27:C9:F7:32:50:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j7wQY6bvtF4nsRHpIHgnyfcyUCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/1d8e80-33a8-4d55-a3d6-5ecdef2fb68d/1/8XJZRxltB86pj_fEUIH4tu9-RZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/1d8e80-33a8-4d55-a3d6-5ecdef2fb68d/1/j7wQY6bvtF4nsRHpIHgnyfcyUCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.94.192.0/21
193.200.170.0/24
195.85.255.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:f3:f2:7c:f0:76:93:24:73:4a:67:b4:7e:48:e4:8b:52:d7:
26:48:87:d9:c4:ad:69:b7:5e:61:79:0d:4f:10:78:ba:39:21:
91:60:f0:67:4c:85:df:6d:38:21:72:f6:3f:10:f0:03:8b:4c:
07:d8:7e:03:65:4a:cb:d0:64:10:85:98:a0:a4:66:b4:e0:21:
9f:7f:c3:8c:66:95:a6:7c:d5:5f:02:bf:b9:86:06:ea:25:91:
6d:5c:f5:d4:ee:80:fc:2d:9b:b9:9e:0b:3a:8a:f9:f9:48:a3:
55:64:ee:2f:68:71:50:3e:38:09:ee:17:e8:6c:8d:8a:3e:59:
bd:7f:1b:c4:67:16:49:2a:39:1b:2c:3a:08:88:85:c5:db:db:
bd:07:4d:1b:c4:c2:ba:ff:ed:99:23:0e:7c:b0:ae:6f:07:47:
fa:5c:50:7f:40:af:a0:a5:0b:d3:73:c1:9f:be:3e:73:c3:75:
95:76:95:91:89:da:32:53:82:31:64:60:b0:cf:b3:98:12:5f:
a5:87:a5:5e:6f:94:0e:04:2f:97:a6:66:4b:d9:fe:78:11:0e:
78:03:ce:63:19:ce:3c:1f:d6:d2:c1:92:ac:d9:77:59:c5:75:
02:55:23:b8:22:60:d4:85:88:be:d4:d4:80:45:93:f1:70:bf:
c9:1c:6f:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:48 2024 by rpki-client on console-fra.rpki-client.org