Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/Po0FSGzQdJTUu-SIX6IJ2TBKsqQ.roa
File: Po0FSGzQdJTUu-SIX6IJ2TBKsqQ.roa (raw, json)
Hash identifier: 5Ury2WkwSLFrGQJO+6gfI4cyqFiZwUlt3+vEYq4TOk4=
Subject key identifier: 3E:8D:05:48:6C:D0:74:94:D4:BB:E4:88:5F:A2:09:D9:30:4A:B2:A4
Certificate issuer: /CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Certificate serial: 028171
Authority key identifier: 96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/Po0FSGzQdJTUu-SIX6IJ2TBKsqQ.roa
Signing time: Wed 16 Mar 2022 15:44:50 +0000
ROA not before: Wed 16 Mar 2022 15:44:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29641
IP address blocks: 193.8.106.0/23 maxlen: 23
193.8.108.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164209 (0x28171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=960c6d787e6b5eb64248dd9a7a1065b1053f7458
Validity
Not Before: Mar 16 15:44:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e8d05486cd07494d4bbe4885fa209d9304ab2a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a0:3c:08:d7:25:22:33:2e:c0:fd:89:32:f6:
bd:a2:91:7b:dc:5c:ef:24:bd:96:e8:d0:58:e2:3d:
4e:0d:5c:0f:66:92:9f:e7:07:c0:a5:5f:95:91:7a:
0c:a5:97:8f:15:26:da:a3:7f:75:4b:fb:bd:a9:87:
b0:8b:34:b8:c8:b7:3a:e6:97:06:9e:2a:1e:2c:b0:
03:51:ea:d2:65:97:89:41:b5:d9:7a:17:e3:62:62:
a9:45:ea:3a:9a:82:a4:9f:90:1d:7a:2b:dd:21:84:
76:8f:10:ce:aa:f9:46:02:6c:e8:40:de:b4:aa:c4:
7c:ab:d1:c5:4c:90:9e:9e:5e:96:72:b3:34:66:fc:
7f:07:76:25:d2:35:63:ef:86:2a:b8:fd:43:c3:65:
1b:d1:24:f2:3b:31:ba:bd:b9:af:47:21:a9:07:34:
a0:d6:31:ad:ce:39:c6:fd:71:2a:a3:61:da:ab:13:
12:d6:76:e9:a6:db:ff:2e:df:7b:c2:1e:ec:58:0c:
d6:cc:60:2e:19:7f:17:a2:e9:50:e2:09:3e:1b:58:
7b:8b:4b:ee:b0:6e:f4:6a:48:8c:2b:ed:a7:ec:15:
57:f3:db:6a:6f:2c:23:7e:1c:93:00:70:87:52:f4:
cd:98:8c:be:83:1b:51:f2:42:79:8a:90:65:38:bc:
88:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:8D:05:48:6C:D0:74:94:D4:BB:E4:88:5F:A2:09:D9:30:4A:B2:A4
X509v3 Authority Key Identifier:
keyid:96:0C:6D:78:7E:6B:5E:B6:42:48:DD:9A:7A:10:65:B1:05:3F:74:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgxteH5rXrZCSN2aehBlsQU_dFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/Po0FSGzQdJTUu-SIX6IJ2TBKsqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/05ab16-2228-488e-b152-eb0921895714/1/lgxteH5rXrZCSN2aehBlsQU_dFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.106.0-193.8.109.255
Signature Algorithm: sha256WithRSAEncryption
52:5e:45:da:22:dd:e3:3c:c8:91:2d:5f:e1:b2:03:5f:29:74:
95:94:a8:17:1f:52:ff:57:38:30:3d:d0:e4:ad:81:28:b4:f2:
07:5a:29:cc:ce:eb:39:84:67:68:21:11:0e:ef:74:74:2b:c7:
18:7f:ff:72:0c:9f:eb:11:0d:a2:0f:08:b7:8d:b5:f2:d8:7d:
f5:59:f8:67:40:80:92:ea:7b:64:cf:e7:14:1a:fb:ea:8b:34:
93:af:87:1b:80:0f:8d:08:78:24:42:c0:1f:1b:e8:a4:d4:1c:
b2:a7:4b:29:cb:bc:a3:37:cc:be:7a:7b:8e:34:46:c6:56:66:
28:95:8c:db:50:d3:56:67:03:cf:2d:b4:a6:fe:59:3f:a5:49:
18:ca:38:5c:83:60:04:2a:f7:54:fd:c0:c2:52:ad:cf:3f:8d:
9a:93:41:f7:08:af:d5:61:71:1a:e4:05:c6:8a:5f:05:d3:54:
f1:c6:c3:d5:09:02:21:b5:a1:2f:01:de:05:be:c5:2d:ba:d4:
75:89:10:91:fa:14:26:24:f0:ea:74:cd:9f:c6:8d:db:e7:4f:
a5:b3:a3:27:95:1e:1d:7a:5b:59:15:4f:b6:7c:69:4f:2a:2e:
65:1f:a8:29:9f:03:60:81:f4:5c:d7:6c:7a:84:1d:56:0f:29:
70:fc:16:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:24 2023 by rpki-client on console-fra.rpki-client.org