Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/S9vYdLaYFBf2NgcPBisZYg8pOC0.roa
File: S9vYdLaYFBf2NgcPBisZYg8pOC0.roa (raw, json)
Hash identifier: C7j/ARmKzK6J2t88BiAd+iw1GToZ0t+6fRnywXn/Qfc=
Subject key identifier: 4B:DB:D8:74:B6:98:14:17:F6:36:07:0F:06:2B:19:62:0F:29:38:2D
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 06089E30
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/S9vYdLaYFBf2NgcPBisZYg8pOC0.roa
Signing time: Sat 01 Jan 2022 07:02:33 +0000
ROA not before: Sat 01 Jan 2022 07:02:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41817
IP address blocks: 193.200.2.0/24 maxlen: 24
2a0f:97c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101228080 (0x6089e30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Jan 1 07:02:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bdbd874b6981417f636070f062b19620f29382d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:07:96:09:5c:cf:78:08:fb:38:d4:a3:86:be:
d9:55:2b:73:92:66:db:3b:ec:25:b6:d9:5f:dc:73:
82:5b:f9:68:08:45:3b:91:ce:8d:c9:a2:30:3b:ca:
09:b2:85:bc:ae:6f:fd:4f:50:bf:7c:55:af:8e:0b:
1c:78:13:61:35:a9:d5:df:b9:fa:33:81:c1:9f:bf:
be:03:30:28:f5:a7:26:e5:34:93:02:53:c3:08:f8:
ed:2c:a8:70:71:b5:bf:da:82:58:14:6b:f2:b2:fc:
37:3b:50:e6:34:50:11:d1:b6:fe:57:1f:ab:64:39:
ae:19:9e:02:12:fc:30:f1:b6:c7:7f:4d:4f:84:1e:
75:1c:20:58:b4:81:7f:ae:1b:f5:a4:7b:2d:78:86:
f1:83:cf:28:9f:5b:be:a2:85:f2:06:9f:a6:9b:58:
ec:13:73:f1:d8:a4:d9:78:3c:11:0d:24:12:6c:09:
6b:51:b4:4e:95:0f:ed:bf:a9:4e:fc:25:ca:e6:f9:
37:9d:2a:71:21:02:20:e0:90:ac:b6:a4:59:f7:93:
5f:88:f4:d1:4b:63:03:e7:f2:ac:17:b1:65:1e:74:
ae:c2:c9:71:f7:ec:e6:04:19:85:da:d3:e5:79:39:
cd:7b:11:b3:8f:b9:12:07:9f:8c:0a:f4:61:b6:23:
de:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:DB:D8:74:B6:98:14:17:F6:36:07:0F:06:2B:19:62:0F:29:38:2D
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/S9vYdLaYFBf2NgcPBisZYg8pOC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.2.0/24
IPv6:
2a0f:97c0::/29
Signature Algorithm: sha256WithRSAEncryption
65:7b:35:87:e3:34:6d:93:b6:ff:ee:65:b1:41:a1:42:fb:57:
71:b0:8c:0f:c2:23:66:6f:3d:77:aa:be:b4:97:11:57:fc:a1:
b1:9f:35:dd:2d:a1:df:02:c8:18:18:b9:af:f3:d4:b9:2d:10:
c9:0e:9c:b7:57:ce:df:d6:2d:5b:72:0e:39:1b:24:76:ca:51:
a7:31:b6:26:fc:10:f0:34:23:a1:3e:48:2c:cd:96:76:92:26:
bb:ef:36:5a:2f:19:8f:ea:88:5f:66:81:ac:af:fb:02:a4:b5:
b1:31:6b:80:5f:af:38:23:ff:e1:92:2f:65:a9:41:43:af:72:
4a:18:c7:7f:4a:4e:e2:f5:11:bf:fa:1a:e3:ef:8a:fb:09:45:
a5:1f:22:61:1e:bd:40:7e:a5:7b:32:b7:a1:9d:75:74:00:8d:
8c:a7:27:77:10:a6:71:36:57:8c:40:fa:98:e8:33:45:dd:a7:
6d:38:db:a1:ca:03:06:60:88:f4:74:0a:f8:73:c6:6e:2a:63:
77:78:be:55:65:5c:f5:22:b8:1a:b4:21:b6:9e:b7:57:6a:b3:
9e:09:8f:9e:a0:62:df:17:cb:18:b9:74:83:c5:60:81:28:22:
37:e1:08:e1:5c:95:18:9b:3c:9d:08:af:b7:6e:91:25:85:01:
45:88:b1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:42 2024 by rpki-client on console-fra.rpki-client.org