Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/K0hI9vi5Qd9T3FoMw26lUKMclYs.roa
File: K0hI9vi5Qd9T3FoMw26lUKMclYs.roa (raw, json)
Hash identifier: sOGXe5T8r2UGuKCQ4tCeFxDay3v58UQldm/9cjbfzDs=
Subject key identifier: 2B:48:48:F6:F8:B9:41:DF:53:DC:5A:0C:C3:6E:A5:50:A3:1C:95:8B
Certificate issuer: /CN=b68f940f1cc577f370f28428850dc7bf7418f121
Certificate serial: 010194
Authority key identifier: B6:8F:94:0F:1C:C5:77:F3:70:F2:84:28:85:0D:C7:BF:74:18:F1:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/K0hI9vi5Qd9T3FoMw26lUKMclYs.roa
Signing time: Thu 03 Mar 2022 07:14:09 +0000
ROA not before: Thu 03 Mar 2022 07:14:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16024
IP address blocks: 193.26.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65940 (0x10194)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68f940f1cc577f370f28428850dc7bf7418f121
Validity
Not Before: Mar 3 07:14:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b4848f6f8b941df53dc5a0cc36ea550a31c958b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a1:ab:77:e5:27:a1:99:32:40:e5:fa:ea:d6:
a5:b8:64:37:41:ab:ff:f0:8f:9f:b6:86:0f:e5:60:
b8:88:21:e7:23:56:6b:66:ea:30:0b:39:93:0b:23:
aa:fb:12:83:f0:40:da:5d:56:d4:70:f0:57:a0:2e:
16:0e:46:46:39:77:23:a0:2b:8c:0f:60:6a:25:41:
02:ba:4f:e9:47:b0:37:77:be:a2:22:3e:99:af:7a:
ce:65:83:b0:84:60:69:b5:d1:ed:a3:eb:cc:1a:5d:
fb:d0:88:23:b5:77:a7:50:03:26:15:d9:22:88:8c:
4c:c2:5d:9f:96:b8:11:63:36:12:84:a9:0a:a5:22:
0a:f9:5f:01:b0:7d:bd:17:c3:b7:22:44:0f:5a:45:
a5:bd:9d:00:ca:b4:65:73:6f:15:4a:6d:60:26:46:
73:79:da:dc:dc:31:e5:e6:c0:40:e7:e3:52:87:73:
e4:8c:79:67:d9:b2:6f:c8:a0:d2:85:3f:f5:4c:9f:
23:76:6f:f3:36:23:8a:99:a4:d2:78:fa:44:db:c6:
51:26:ce:28:d8:5e:5f:36:58:35:1f:86:fd:76:84:
ca:e2:03:d2:a1:a7:80:a8:7c:d9:f8:1a:e5:d4:15:
b8:5e:79:d0:6d:3a:f3:bf:be:2b:1c:4e:9d:fd:a0:
b3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:48:48:F6:F8:B9:41:DF:53:DC:5A:0C:C3:6E:A5:50:A3:1C:95:8B
X509v3 Authority Key Identifier:
keyid:B6:8F:94:0F:1C:C5:77:F3:70:F2:84:28:85:0D:C7:BF:74:18:F1:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/K0hI9vi5Qd9T3FoMw26lUKMclYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.125.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:fb:b5:23:6a:35:54:7b:24:6c:1d:b5:36:16:d4:80:77:1d:
97:86:70:f6:80:e7:cc:3b:3c:80:64:6c:f6:48:8a:7c:4c:f8:
e4:c3:81:b1:d2:76:1a:da:21:56:f8:10:bb:20:d8:3a:43:59:
18:e7:9f:dc:48:3c:b8:db:87:f8:4a:39:b8:4d:7a:93:87:7f:
7a:aa:8c:d2:cc:e4:a7:51:c1:cc:49:1c:f3:8c:f1:be:2c:b3:
f3:4d:38:89:60:39:6a:9c:d7:04:e4:07:58:e3:52:e0:a2:b0:
c0:02:98:88:73:cc:1e:89:55:be:ab:9a:6b:44:14:11:57:6d:
60:c0:6b:59:2e:b9:d8:d5:95:d2:77:ef:e0:96:a2:ad:ea:c0:
b6:82:ac:16:d6:bb:a3:27:20:17:50:83:2f:36:38:71:46:fa:
e7:14:b8:52:31:17:13:71:cf:36:dd:f7:07:e8:e7:50:9c:c3:
93:d0:91:91:ad:c9:29:89:2a:bd:07:07:73:3c:1a:55:af:1c:
63:ea:6c:33:7e:6c:d2:38:14:20:45:fe:ab:c1:5c:a3:6f:45:
49:1f:c8:88:cf:d6:f8:00:cb:53:c9:59:8a:62:2d:c3:27:52:
d6:48:9d:f8:af:ba:f7:2a:ab:cb:58:0c:e3:84:79:2a:39:f9:
97:68:21:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:27 2024 by rpki-client on console-ams.rpki-client.org