Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/3ab7fc-baef-4a96-bdd3-fdc1dcda2961/1/CIShPBAxEI9QTkdneAcDHpDPv44.roa
File: CIShPBAxEI9QTkdneAcDHpDPv44.roa (raw, json)
Hash identifier: a1Cyt+dAl0yASXYuMnL1YI1HZOqfPvVSnD/br2LckI0=
Subject key identifier: 08:84:A1:3C:10:31:10:8F:50:4E:47:67:78:07:03:1E:90:CF:BF:8E
Certificate issuer: /CN=d2e42a583fa251b432cfc1dca8bd341d50660b95
Certificate serial: 018E1A
Authority key identifier: D2:E4:2A:58:3F:A2:51:B4:32:CF:C1:DC:A8:BD:34:1D:50:66:0B:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0uQqWD-iUbQyz8HcqL00HVBmC5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/3ab7fc-baef-4a96-bdd3-fdc1dcda2961/1/CIShPBAxEI9QTkdneAcDHpDPv44.roa
Signing time: Tue 22 Mar 2022 12:06:51 +0000
ROA not before: Tue 22 Mar 2022 12:06:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209140
IP address blocks: 193.105.84.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101914 (0x18e1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2e42a583fa251b432cfc1dca8bd341d50660b95
Validity
Not Before: Mar 22 12:06:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0884a13c1031108f504e47677807031e90cfbf8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e0:cd:33:e7:5d:99:bf:7c:45:f9:9c:77:bd:
d0:18:9c:99:2b:86:c5:69:0c:48:a7:3f:40:34:74:
04:95:55:b4:bf:d8:82:79:f4:2c:e5:53:e4:66:2b:
9b:e4:55:f2:06:11:bb:bf:2c:88:fb:32:50:37:72:
4b:7c:72:f3:50:32:58:c4:44:c1:59:28:73:c6:40:
ae:6b:d5:64:2a:ad:3f:57:c7:32:c7:b1:1d:79:24:
69:b0:54:4c:95:69:b8:b3:69:95:eb:6f:d5:73:42:
f6:ef:38:b2:28:50:dd:9d:6d:94:f3:35:4e:03:3e:
a2:ce:7c:0f:2f:fc:b9:59:ea:c8:69:ba:f8:27:1c:
67:1c:f1:d6:d2:00:7f:19:b1:a2:12:ee:07:cc:6d:
6f:55:21:27:bf:2d:fd:89:8b:89:42:9c:72:54:56:
2f:a6:3b:26:87:92:03:0e:73:38:fa:5e:fe:86:43:
0c:4c:b5:04:64:35:cd:27:1e:4c:bb:3c:36:25:7c:
1d:e5:04:0a:cd:b4:fa:23:2d:55:d0:e4:72:41:da:
9b:b6:fe:e1:b9:e1:6f:b0:ca:d0:3f:09:14:3e:91:
95:81:53:26:fb:a4:57:e8:20:13:90:72:8b:db:d6:
df:45:1c:7e:7f:14:64:01:b5:43:1d:e9:fa:ad:28:
69:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:84:A1:3C:10:31:10:8F:50:4E:47:67:78:07:03:1E:90:CF:BF:8E
X509v3 Authority Key Identifier:
keyid:D2:E4:2A:58:3F:A2:51:B4:32:CF:C1:DC:A8:BD:34:1D:50:66:0B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0uQqWD-iUbQyz8HcqL00HVBmC5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3ab7fc-baef-4a96-bdd3-fdc1dcda2961/1/CIShPBAxEI9QTkdneAcDHpDPv44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/3ab7fc-baef-4a96-bdd3-fdc1dcda2961/1/0uQqWD-iUbQyz8HcqL00HVBmC5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.84.0/24
Signature Algorithm: sha256WithRSAEncryption
57:e2:39:14:84:8d:a7:ef:b5:9f:c6:3c:03:bf:29:ac:a5:ab:
14:11:6d:db:03:3e:e3:8a:24:53:9a:f9:0b:11:6a:a1:0e:ce:
6a:4a:ff:5a:74:ce:43:d1:ab:e2:43:b7:97:93:ce:f2:0a:e5:
97:65:0b:d7:04:fe:0c:34:ef:43:57:5b:79:74:5d:eb:28:4f:
7b:63:ae:37:d7:4a:c2:71:c8:82:a6:d5:7b:7f:7b:04:55:7b:
1c:ff:a5:e4:78:80:55:74:06:85:0a:08:ff:df:63:3a:77:92:
90:ed:52:6b:3d:99:54:2a:01:33:08:4c:da:5a:7c:18:6b:06:
0f:a0:52:5f:b0:bb:d6:2b:57:33:f6:bb:53:a1:c2:45:fd:fe:
f1:7b:85:f7:ff:ff:7c:89:3a:81:0a:9c:d1:39:8a:cf:dd:8a:
58:ea:d4:d7:c4:02:79:d8:e5:2b:2d:c8:76:5f:07:60:04:01:
09:e6:fb:5f:c6:56:e2:ed:5e:c3:29:2c:f6:73:c1:25:cb:39:
7e:dd:5f:fa:c5:98:93:5e:77:d3:c6:5b:70:19:8b:b5:f2:20:
ac:c0:fb:b3:6f:f8:4d:2a:34:a9:a3:71:a3:fd:2b:eb:b9:20:
d0:c8:6e:84:28:30:af:9e:c4:0c:3a:7e:65:ce:91:85:c7:4c:
b2:c3:e5:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:34 2024 by rpki-client on console-fra.rpki-client.org