Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/de34b5-0320-4cd9-9ee3-c4ce3e8073db/1/xTxi8j_HinJHOLWYD9MJHfDGHcE.roa
File: xTxi8j_HinJHOLWYD9MJHfDGHcE.roa (raw, json)
Hash identifier: 1WKRGYWvnoc64V35bvaq1zkUcZQQaX03jmYXfy0muPg=
Subject key identifier: C5:3C:62:F2:3F:C7:8A:72:47:38:B5:98:0F:D3:09:1D:F0:C6:1D:C1
Certificate issuer: /CN=d2eda4f8d9e482952a112b2ef5a4f239b7f62551
Certificate serial: 0184894C37303F4FD0AA48E54A23776A27B5
Authority key identifier: D2:ED:A4:F8:D9:E4:82:95:2A:11:2B:2E:F5:A4:F2:39:B7:F6:25:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0u2k-NnkgpUqESsu9aTyObf2JVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/de34b5-0320-4cd9-9ee3-c4ce3e8073db/1/xTxi8j_HinJHOLWYD9MJHfDGHcE.roa
Signing time: Fri 18 Nov 2022 05:53:04 +0000
ROA not before: Fri 18 Nov 2022 05:53:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50251
IP address blocks: 193.106.48.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:89:4c:37:30:3f:4f:d0:aa:48:e5:4a:23:77:6a:27:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2eda4f8d9e482952a112b2ef5a4f239b7f62551
Validity
Not Before: Nov 18 05:53:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c53c62f23fc78a724738b5980fd3091df0c61dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5c:11:3c:b4:71:65:57:1e:83:9f:0f:3b:8f:
6d:46:1c:6e:08:69:a6:06:28:11:b9:8c:60:4c:26:
22:f7:db:22:69:3e:49:da:ba:ff:8b:eb:1c:f3:05:
5e:99:62:36:9c:5e:50:64:ed:43:08:a8:53:b7:ac:
7c:96:35:7a:84:7a:cc:32:2b:93:51:cf:ee:75:7d:
0d:db:2a:34:7c:1e:a1:da:bc:a5:25:0d:8d:7a:86:
b3:d7:17:4c:b4:5a:25:71:24:2b:49:d8:01:ee:a2:
43:f4:92:14:55:bc:d0:b1:a6:f8:c9:58:27:01:ff:
f3:dd:7c:b2:b2:cb:07:99:11:1e:94:5f:00:c8:a7:
70:15:1c:52:59:69:85:1b:cc:f8:f9:5c:08:f3:68:
a4:cc:9d:95:07:ee:16:21:50:e7:2b:8b:c1:e9:e3:
ce:22:7e:ed:d5:c7:d6:e6:e9:e0:e6:80:66:0b:cf:
03:c1:35:00:ca:fb:07:84:14:6b:b8:63:63:dd:13:
df:98:40:27:a2:3c:f1:6a:82:13:2b:e3:96:a7:4a:
92:0b:ac:87:1f:20:39:c7:0b:bf:41:f9:a4:cd:c7:
06:99:cb:21:05:a1:31:f0:a0:cb:44:70:7b:67:d1:
57:b6:b7:5d:6c:1b:db:d6:b7:07:a9:83:f4:9b:64:
9c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:3C:62:F2:3F:C7:8A:72:47:38:B5:98:0F:D3:09:1D:F0:C6:1D:C1
X509v3 Authority Key Identifier:
keyid:D2:ED:A4:F8:D9:E4:82:95:2A:11:2B:2E:F5:A4:F2:39:B7:F6:25:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0u2k-NnkgpUqESsu9aTyObf2JVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/de34b5-0320-4cd9-9ee3-c4ce3e8073db/1/xTxi8j_HinJHOLWYD9MJHfDGHcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/de34b5-0320-4cd9-9ee3-c4ce3e8073db/1/0u2k-NnkgpUqESsu9aTyObf2JVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.48.0/22
Signature Algorithm: sha256WithRSAEncryption
c4:d1:f8:cf:12:0b:00:2a:3e:d9:e0:35:cf:0d:28:4a:ed:33:
b3:04:90:6d:eb:b8:19:9f:5d:31:96:c1:f6:44:1e:3f:97:df:
1b:f8:b7:25:e3:bd:42:e1:d2:fb:ac:ce:98:ea:38:d6:88:a9:
03:c6:10:83:dd:c8:d1:3c:14:4a:76:4f:7b:11:15:d3:2b:1d:
d6:94:9f:0a:27:a8:2b:7a:d7:24:74:58:68:a4:fe:74:30:b1:
43:14:e1:c2:f2:10:45:4f:ba:6d:bd:0e:6c:9e:98:80:4a:7d:
b5:ee:8b:4a:8f:c8:c3:3a:90:cc:28:81:68:d1:d3:8c:35:c6:
83:e2:69:db:30:f2:21:4d:d9:56:a2:c1:25:f2:39:f2:8b:4e:
7b:a4:4d:d8:28:b4:9d:dc:10:98:c1:4a:e2:96:e0:6d:b6:08:
06:a1:8e:84:28:c1:ac:49:68:e7:52:63:c1:ae:e6:60:72:15:
bb:c8:fb:f4:a3:d9:cd:d4:6b:19:d0:9e:66:e0:82:5c:ca:59:
9c:01:07:0d:37:f3:62:d4:40:2f:64:de:b8:0a:a2:a4:ba:26:
bc:89:5f:e1:ef:3d:5c:93:7e:9b:aa:e6:d8:0a:e2:33:51:5f:
ba:cb:5e:6c:d5:cb:ad:e1:35:09:22:94:01:c1:ff:71:ea:d2:
c4:e9:ff:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:30 2023 by rpki-client on console-ams.rpki-client.org