Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/8e8218-6fb6-4e69-92e6-e9ce291d218f/1/BrloMq9-b6hRZ5nRui66WM9lkyY.roa
File: BrloMq9-b6hRZ5nRui66WM9lkyY.roa (raw, json)
Hash identifier: rWGu9DKhuy0mYT0p+sbesspGkyEzJ38hp2S4HahmDLE=
Subject key identifier: 06:B9:68:32:AF:7E:6F:A8:51:67:99:D1:BA:2E:BA:58:CF:65:93:26
Certificate issuer: /CN=4c8343edc843542f529fbc3e650cb6578c9206c3
Certificate serial: 1868FF
Authority key identifier: 4C:83:43:ED:C8:43:54:2F:52:9F:BC:3E:65:0C:B6:57:8C:92:06:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TIND7chDVC9Sn7w-ZQy2V4ySBsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/8e8218-6fb6-4e69-92e6-e9ce291d218f/1/BrloMq9-b6hRZ5nRui66WM9lkyY.roa
Signing time: Sat 01 Jan 2022 00:52:53 +0000
ROA not before: Sat 01 Jan 2022 00:52:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 193.104.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1599743 (0x1868ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c8343edc843542f529fbc3e650cb6578c9206c3
Validity
Not Before: Jan 1 00:52:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06b96832af7e6fa8516799d1ba2eba58cf659326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:fb:ea:48:aa:b4:a0:4c:d8:ad:3b:df:f3:00:
0d:65:77:97:9d:a5:84:dd:43:ab:38:90:09:9d:83:
f2:bd:ae:c7:3a:49:5a:df:f0:64:85:4e:be:fb:c1:
99:9d:ef:b0:9a:e0:cb:1c:e6:e5:b1:d7:2b:2b:13:
1a:f9:d0:f7:d6:79:be:ab:f9:25:a8:ab:4e:d0:2f:
4d:3d:71:84:04:7f:e1:39:c2:db:ef:ea:1e:b8:ea:
b3:bc:53:65:d6:4f:55:f6:10:dd:1d:51:f4:db:cb:
a5:4b:b6:fe:e3:5b:19:c3:b0:e1:31:42:44:fa:07:
8d:39:4d:bc:ee:e0:3f:f4:b7:48:c7:ec:17:41:e9:
cc:a9:21:d9:a9:e1:a7:b8:e8:75:b6:2f:7e:9a:95:
3d:9f:95:63:10:5a:21:af:13:85:a6:c7:97:72:5c:
8e:e4:12:ca:0e:2f:c6:fa:eb:e2:30:3e:8a:dc:09:
4a:0d:56:86:76:1d:0a:6e:3b:86:de:9f:3e:9f:78:
f8:9e:fa:54:c5:21:f6:ef:e2:5e:29:99:c3:1f:ac:
c7:06:87:1e:35:91:01:60:b7:fb:f7:c1:5c:fb:b9:
74:c6:1b:0f:f9:6c:93:a8:08:bd:33:6f:30:90:8d:
f1:78:6a:57:cb:a0:e4:b1:9e:f2:1a:2e:58:73:43:
5d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:B9:68:32:AF:7E:6F:A8:51:67:99:D1:BA:2E:BA:58:CF:65:93:26
X509v3 Authority Key Identifier:
keyid:4C:83:43:ED:C8:43:54:2F:52:9F:BC:3E:65:0C:B6:57:8C:92:06:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TIND7chDVC9Sn7w-ZQy2V4ySBsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8e8218-6fb6-4e69-92e6-e9ce291d218f/1/BrloMq9-b6hRZ5nRui66WM9lkyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8e8218-6fb6-4e69-92e6-e9ce291d218f/1/TIND7chDVC9Sn7w-ZQy2V4ySBsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.196.0/24
Signature Algorithm: sha256WithRSAEncryption
75:a8:25:b9:e7:ad:5d:c9:a8:fe:34:55:29:47:e5:84:d8:b4:
6f:13:ce:0f:bc:0c:51:00:cb:52:6e:28:6e:cb:c8:02:01:5e:
ab:b7:ec:58:ce:59:f5:e2:0c:c7:08:5e:a7:54:70:9b:b9:53:
60:79:51:d4:4a:d6:2c:01:6e:8d:d6:5a:83:50:eb:fd:3d:bd:
be:cf:64:50:7d:9b:66:99:de:77:af:80:31:01:f4:fe:9d:a2:
51:4d:a9:6f:d3:57:98:4a:0f:9f:d3:8a:4a:ce:b0:98:10:d8:
67:ce:6b:69:1c:ce:69:2a:e1:25:d2:bf:65:9d:73:3f:2e:3f:
fa:43:52:66:91:e4:fa:b1:e3:0f:5f:34:8a:c1:62:82:bb:ad:
d6:20:32:a2:d8:7e:60:35:65:9e:ec:17:c0:f0:77:d1:c3:4b:
1e:d9:7a:69:54:18:12:47:9c:91:b1:36:9f:b0:77:e0:b4:74:
96:73:5b:c3:7c:fc:d1:34:81:a2:44:7e:c2:77:cf:a6:db:e8:
6c:eb:9d:1a:d5:74:20:44:62:ee:a5:e9:32:bd:e8:03:3d:cb:
e6:cb:13:bd:62:a6:de:ff:de:d3:ab:5f:f0:b9:28:05:d6:80:
b8:fb:8a:de:36:8d:e6:b5:c5:07:36:8a:18:9e:6d:46:c1:80:
b0:24:9f:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:00 2023 by rpki-client on console-ams.rpki-client.org