Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/A2Or9AJU0WLxUSEVlPmPEwHk5MQ.roa
File: A2Or9AJU0WLxUSEVlPmPEwHk5MQ.roa (raw, json)
Hash identifier: qMZUIaBKbrV5jm6vhcnuqtufepqgOYl7lw/CuMV3MhY=
Subject key identifier: 03:63:AB:F4:02:54:D1:62:F1:51:21:15:94:F9:8F:13:01:E4:E4:C4
Certificate issuer: /CN=5be5f1953e031d279864f3c3beff0bc675a00ee4
Certificate serial: 04080054
Authority key identifier: 5B:E5:F1:95:3E:03:1D:27:98:64:F3:C3:BE:FF:0B:C6:75:A0:0E:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-XxlT4DHSeYZPPDvv8LxnWgDuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/A2Or9AJU0WLxUSEVlPmPEwHk5MQ.roa
Signing time: Sat 01 Jan 2022 09:04:20 +0000
ROA not before: Sat 01 Jan 2022 09:04:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212640
IP address blocks: 193.163.54.0/24 maxlen: 24
2a10:6b40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67633236 (0x4080054)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5be5f1953e031d279864f3c3beff0bc675a00ee4
Validity
Not Before: Jan 1 09:04:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0363abf40254d162f151211594f98f1301e4e4c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f9:89:2d:8c:50:a2:15:5a:65:27:76:c1:67:
19:94:4f:02:8e:11:6c:4a:49:1f:db:7b:9f:19:06:
40:ec:10:9a:8c:f8:31:48:10:c8:33:bb:06:68:09:
fc:17:75:ea:ef:79:40:d5:21:7f:fa:0c:6b:da:51:
38:24:a4:a1:6b:81:c2:13:ff:a6:db:14:4d:10:e9:
30:83:34:d0:76:1a:b0:a4:2e:37:e5:29:5d:2c:42:
e1:99:eb:af:5e:02:3f:6e:c5:01:95:ed:41:2e:8b:
b1:ee:41:70:57:2b:c3:c9:9f:a9:04:f6:f4:47:b8:
19:ab:29:19:8b:c3:2f:cd:d2:6a:89:9e:6c:4b:e1:
21:17:bf:1a:f8:2f:95:4b:2c:dc:ec:6f:60:be:75:
ed:83:20:5c:14:e7:52:c9:8b:d9:9c:84:6c:62:d2:
d1:53:46:fd:c7:19:05:5a:02:96:8a:34:b5:c2:d1:
da:ad:d2:ea:cb:06:ef:54:2e:f5:6c:a8:5a:34:55:
e6:3e:cd:01:0a:ac:97:1a:15:68:8c:2b:e9:6a:7a:
0f:a7:5d:d8:4e:c8:70:50:95:62:82:d3:b4:5f:98:
ec:1d:40:0c:bb:55:f6:83:2e:72:af:f9:5f:5b:4f:
78:33:bc:ff:9c:f0:34:45:36:ec:78:df:11:5c:52:
5f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:63:AB:F4:02:54:D1:62:F1:51:21:15:94:F9:8F:13:01:E4:E4:C4
X509v3 Authority Key Identifier:
keyid:5B:E5:F1:95:3E:03:1D:27:98:64:F3:C3:BE:FF:0B:C6:75:A0:0E:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-XxlT4DHSeYZPPDvv8LxnWgDuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/A2Or9AJU0WLxUSEVlPmPEwHk5MQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/W-XxlT4DHSeYZPPDvv8LxnWgDuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.54.0/24
IPv6:
2a10:6b40::/29
Signature Algorithm: sha256WithRSAEncryption
91:c3:07:dc:d6:4c:65:f0:63:fe:55:92:e7:60:b2:f4:51:d9:
df:01:1b:72:3f:4e:2f:d8:ec:0f:70:c3:0e:46:32:2f:d2:94:
16:c9:cd:a9:4e:bb:48:a0:e7:fc:70:f7:49:66:9d:7c:07:d5:
67:df:29:6b:91:a1:ac:ac:11:23:b9:66:87:49:8a:e3:91:9e:
2f:01:af:86:97:46:04:ff:16:3f:e3:83:5f:4f:f5:d3:d3:ff:
32:15:77:f8:f8:4b:af:2a:b5:2b:41:c4:a4:ba:0e:5d:57:58:
94:3f:79:af:59:3a:76:7b:19:49:15:c2:74:8a:68:8c:22:f9:
cd:f0:5e:4c:03:8b:18:f1:39:ee:76:19:cf:ef:76:15:ba:7e:
24:b6:bf:10:16:e6:15:d0:06:cb:d2:f8:2f:ab:2d:02:fe:8d:
07:1a:d9:5b:fa:13:d9:b5:45:1a:f6:6b:1c:b2:a5:a8:1d:7f:
85:a8:23:e8:08:21:a9:01:83:98:e5:83:78:4b:d3:d0:f4:a2:
2f:13:b2:fc:cb:52:e6:d8:e9:b5:01:65:d9:78:d7:cd:ef:f8:
4a:a3:b8:5b:01:31:40:0a:99:e1:53:f5:a9:eb:7e:ab:e4:89:
73:7f:1a:a4:2c:eb:d4:56:79:7d:4e:bf:53:e7:9d:81:63:ef:
85:e9:66:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:49 2023 by rpki-client on console-fra.rpki-client.org