Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/RCOT9kGMzkORPj3VyII0eDd-ewE.roa
File: RCOT9kGMzkORPj3VyII0eDd-ewE.roa (raw, json)
Hash identifier: jJCSQcC9kuczxTEoxLAxqNl7CDt0AtsKcs4rFlLeCtM=
Subject key identifier: 44:23:93:F6:41:8C:CE:43:91:3E:3D:D5:C8:82:34:78:37:7E:7B:01
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 01845D63FAAA2A2088E91BD4C0049692A51E
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/RCOT9kGMzkORPj3VyII0eDd-ewE.roa
Signing time: Wed 09 Nov 2022 17:15:44 +0000
ROA not before: Wed 09 Nov 2022 17:15:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210993
IP address blocks: 193.232.65.0/24 maxlen: 24
194.226.42.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:63:fa:aa:2a:20:88:e9:1b:d4:c0:04:96:92:a5:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Nov 9 17:15:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=442393f6418cce43913e3dd5c8823478377e7b01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2f:39:d9:60:a4:ed:df:eb:6e:b0:bc:62:66:
00:e2:b8:68:a5:44:4a:f1:cb:7f:c0:c0:ed:c9:a0:
09:60:e2:dd:3e:10:57:cc:5b:1c:c9:5a:6e:67:f6:
24:85:d3:3d:dc:f4:2e:19:35:71:72:d7:cd:28:e3:
d3:64:0f:17:3f:a5:e9:b6:20:80:0a:92:8c:a7:7e:
92:bd:eb:3a:a3:68:b7:cf:6e:7d:76:b6:6f:ba:91:
ee:ce:26:3d:a5:2a:da:d5:fc:91:6d:62:d2:48:d4:
f0:8b:0e:c8:d2:b4:8f:a5:11:03:d3:08:a9:c7:d2:
b8:09:60:41:c6:7c:4c:65:c6:d5:d5:1e:b2:68:25:
95:27:fb:4d:10:d1:35:e5:9b:65:24:0e:3b:8c:ce:
4b:4c:cc:ae:8d:bc:99:c1:96:f0:4e:16:b0:56:92:
38:82:2a:b7:e0:ac:05:a8:55:d4:20:5d:d3:22:6b:
87:a0:b9:a3:88:85:20:60:f6:fb:f8:6e:bb:52:eb:
21:73:c7:0d:40:9f:86:3e:33:88:44:f9:5a:b9:da:
85:fb:d5:73:a0:ba:5c:da:42:08:f2:56:c4:09:e0:
f7:0a:ab:ff:1b:74:bc:18:25:60:98:9c:e8:03:8a:
58:1e:d9:bf:91:55:67:9a:48:d4:01:eb:b3:ad:e2:
92:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:23:93:F6:41:8C:CE:43:91:3E:3D:D5:C8:82:34:78:37:7E:7B:01
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/RCOT9kGMzkORPj3VyII0eDd-ewE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.65.0/24
194.226.42.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:f5:c3:d5:23:14:0e:ca:b7:87:47:d0:fb:92:bb:2e:7d:a1:
ce:c5:e9:04:57:65:6b:47:89:c0:0f:08:a5:bb:a6:f3:8c:89:
6e:73:54:05:0a:b8:6e:7e:3b:a7:d2:a4:54:cf:f0:1f:73:b6:
9b:92:3d:85:70:5b:45:46:b6:11:36:9a:38:75:cc:c4:b3:df:
ff:b6:5c:74:ee:99:da:d0:17:c3:49:74:c0:73:85:dd:3b:8b:
fb:73:50:e7:44:c4:86:89:b1:ba:b6:ec:20:63:ce:cd:29:27:
0d:92:bf:e5:41:72:51:99:92:44:71:65:8e:f5:44:07:f3:ed:
a7:4b:6c:95:d5:83:34:5b:f1:3f:70:03:ce:36:f6:32:f6:f0:
1d:ea:fd:33:e6:d2:ff:b4:51:eb:37:8f:e4:76:1c:c7:e3:54:
1a:35:27:de:30:96:37:06:6f:1f:b1:a7:d5:4d:5c:a1:fa:9d:
af:58:f5:8e:da:82:a7:6d:d7:6e:14:57:ec:c2:bb:5f:03:26:
9f:50:d9:8a:7b:57:2a:ae:56:c5:e6:8a:4b:90:ba:7c:ab:f1:
1a:fc:be:bc:bf:a4:bc:0d:e7:07:6e:24:0b:af:0c:18:bd:19:
39:a8:4e:88:f3:e9:b4:be:7a:06:fa:6d:c8:6a:52:d7:2a:8b:
af:89:26:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org