Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/544bda-a4ef-4254-ba19-3c14ad2b83d7/1/hIdI7ZRxXfcse7MkyTzdZUfU2D4.roa
File: hIdI7ZRxXfcse7MkyTzdZUfU2D4.roa (raw, json)
Hash identifier: ikB2IEdzl7R8Y8cFsVQb1+MlWX1E68fpV6vaP7mV2ec=
Subject key identifier: 84:87:48:ED:94:71:5D:F7:2C:7B:B3:24:C9:3C:DD:65:47:D4:D8:3E
Certificate issuer: /CN=479828bdc6d059e7551592de3ee29eb41bf7bda5
Certificate serial: 03BAA0DB
Authority key identifier: 47:98:28:BD:C6:D0:59:E7:55:15:92:DE:3E:E2:9E:B4:1B:F7:BD:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R5govcbQWedVFZLePuKetBv3vaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/544bda-a4ef-4254-ba19-3c14ad2b83d7/1/hIdI7ZRxXfcse7MkyTzdZUfU2D4.roa
Signing time: Sat 01 Jan 2022 07:58:55 +0000
ROA not before: Sat 01 Jan 2022 07:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196877
IP address blocks: 193.104.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62562523 (0x3baa0db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=479828bdc6d059e7551592de3ee29eb41bf7bda5
Validity
Not Before: Jan 1 07:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=848748ed94715df72c7bb324c93cdd6547d4d83e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6f:e1:75:ab:00:42:57:48:28:00:d4:59:5a:
8f:74:2c:77:ea:3d:29:5c:d0:59:6f:8e:37:ec:39:
dc:7d:e0:d6:27:4e:4c:3f:dd:65:70:f7:fe:8f:96:
fc:9f:98:06:35:9b:5d:7b:94:be:ee:5c:e2:27:3e:
c8:20:72:8c:1d:33:d9:7a:f1:7d:e2:d9:4f:df:46:
9f:fc:8b:dd:43:e3:9a:eb:f0:50:7d:64:8c:34:80:
07:fa:e7:c7:d2:e5:dc:b1:dd:6d:f2:3d:2c:25:d4:
6f:2e:c4:42:da:1c:60:f8:75:01:cc:66:a7:6c:ff:
bd:4a:01:38:60:da:db:1a:39:30:7b:47:ed:4f:eb:
04:21:65:0b:b1:9f:4c:8c:9f:80:fc:3c:ce:c0:41:
19:14:11:61:79:0f:d2:cc:42:4f:4a:00:96:68:76:
18:4b:26:97:7f:2a:82:dd:cb:23:2c:c4:e1:ca:4b:
9c:5f:cb:ce:05:e9:bc:ae:06:49:ac:6d:6a:5d:a8:
1d:8e:41:12:f6:f5:d7:61:24:3b:d0:ce:74:16:47:
af:ac:d0:88:45:e4:1f:38:ca:e3:61:1d:59:58:22:
ba:f0:1a:5f:95:22:68:b2:53:7d:53:24:98:a4:46:
55:dd:3a:4e:32:70:06:8b:68:0c:04:98:a7:3b:62:
81:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:87:48:ED:94:71:5D:F7:2C:7B:B3:24:C9:3C:DD:65:47:D4:D8:3E
X509v3 Authority Key Identifier:
keyid:47:98:28:BD:C6:D0:59:E7:55:15:92:DE:3E:E2:9E:B4:1B:F7:BD:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R5govcbQWedVFZLePuKetBv3vaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/544bda-a4ef-4254-ba19-3c14ad2b83d7/1/hIdI7ZRxXfcse7MkyTzdZUfU2D4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/544bda-a4ef-4254-ba19-3c14ad2b83d7/1/R5govcbQWedVFZLePuKetBv3vaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.210.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:cd:07:80:f4:8b:a9:41:fc:0a:21:26:36:03:ae:40:4f:9c:
e2:dd:d0:dc:2f:c1:9e:9b:92:75:5e:dd:64:aa:9e:be:57:f0:
f5:0a:55:32:e2:21:0f:7d:87:fc:df:05:3a:55:28:3b:4a:2d:
24:77:02:3d:2b:66:a6:19:51:2e:4e:aa:eb:7e:9e:19:5e:2b:
e1:cd:f6:6a:cb:96:a1:3c:04:17:bb:02:47:38:b4:8b:57:83:
1b:53:e9:52:97:c8:82:5e:ec:b8:fb:20:b8:84:2e:8e:ff:fd:
cf:db:49:ea:de:95:1d:8e:9a:54:c0:73:43:da:51:5c:88:a3:
ae:2c:6f:e8:a9:82:4a:05:94:ce:d0:ca:b0:94:cd:cd:4b:ae:
09:60:b7:27:ed:bc:83:bc:86:97:1b:19:f9:da:62:61:4f:f3:
56:15:81:a8:3d:12:87:7e:7c:61:fe:3e:49:bf:23:90:aa:0e:
39:29:e4:a5:aa:3a:7d:d3:06:12:b2:1c:02:78:64:08:2f:d8:
e5:31:ba:a8:0e:64:ec:26:43:27:68:07:cd:b1:a0:2a:55:a4:
6b:b3:92:e9:2b:d8:aa:be:7e:78:2f:eb:86:a0:ee:e2:2a:cc:
94:a4:b3:5e:73:ec:ed:1f:e9:d6:71:38:53:29:ac:d5:b2:ec:
08:ec:d2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:54 2023 by rpki-client on console-fra.rpki-client.org