Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/HTz6zymx_w_boo8Nwi0rAGMsU-M.roa
File: HTz6zymx_w_boo8Nwi0rAGMsU-M.roa (raw, json)
Hash identifier: zSIofajeBiEcTcs51g64TWRK8JkI9V+0q3VXDIDzqR0=
Subject key identifier: 1D:3C:FA:CF:29:B1:FF:0F:DB:A2:8F:0D:C2:2D:2B:00:63:2C:53:E3
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 37040558
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/HTz6zymx_w_boo8Nwi0rAGMsU-M.roa
Signing time: Tue 08 Mar 2022 21:49:21 +0000
ROA not before: Tue 08 Mar 2022 21:49:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30890
IP address blocks: 195.28.2.0/23 maxlen: 23
193.19.192.0/22 maxlen: 22
193.19.192.0/24 maxlen: 24
193.19.194.0/24 maxlen: 24
193.19.195.0/24 maxlen: 24
193.19.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 923010392 (0x37040558)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Mar 8 21:49:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d3cfacf29b1ff0fdba28f0dc22d2b00632c53e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:49:9a:5d:bb:97:06:bd:43:b2:0e:e1:a0:56:
b7:b1:cb:67:e2:45:64:7b:47:de:0e:d4:71:4f:ce:
6e:d4:b8:31:a8:17:cc:73:be:51:15:be:97:0d:16:
25:50:c5:84:66:b4:9b:67:d5:87:7c:b1:8c:fa:60:
85:b4:8a:6f:57:f9:c3:f4:34:f6:16:fc:6f:6c:60:
f8:2d:93:9a:45:85:ea:e3:0e:ea:f3:a9:51:18:a7:
af:ba:5d:44:c5:e3:f2:ad:c1:31:6d:b7:42:54:9e:
41:07:1b:1b:ad:9e:48:d2:75:a6:de:bb:19:da:c5:
18:a0:96:34:a8:d1:5a:ff:29:57:f2:5a:c9:e1:f4:
37:9f:13:ea:35:80:eb:3a:11:a9:b7:75:ef:6e:07:
4f:b9:e8:a9:25:a9:27:20:d0:0d:4b:7b:0d:44:98:
b9:e1:03:05:0c:e1:38:d6:14:c7:15:d2:9e:4a:f5:
80:c7:9e:a9:bc:ec:12:09:4a:95:85:42:99:37:78:
80:ca:bd:69:10:a8:b3:ab:52:48:d4:3b:26:21:24:
2a:40:f0:db:bc:09:7d:fa:06:71:16:3b:e5:01:0d:
5b:74:c6:41:ca:48:af:07:2d:b6:45:d4:d6:98:71:
38:9f:68:68:1f:2e:ff:df:e7:2f:d7:8c:dd:03:ac:
26:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:3C:FA:CF:29:B1:FF:0F:DB:A2:8F:0D:C2:2D:2B:00:63:2C:53:E3
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/HTz6zymx_w_boo8Nwi0rAGMsU-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.192.0/22
195.28.2.0/23
Signature Algorithm: sha256WithRSAEncryption
53:d3:09:e6:1f:bc:6e:74:85:d8:50:87:13:88:66:19:cc:82:
9a:ad:1b:6f:8a:b9:9e:01:ed:d2:88:71:ba:d8:ab:12:71:57:
7c:0a:11:16:e0:76:67:31:c7:28:f9:a5:00:45:55:fc:76:44:
e0:0f:18:8c:29:2c:ac:df:34:c9:1f:a9:14:b3:16:9a:cc:a7:
c0:92:10:71:7a:fc:fb:99:df:cf:40:2b:11:47:88:25:fd:13:
2b:f9:f8:bf:ae:e3:cb:40:a5:ff:cd:78:1f:ab:f2:8b:93:f1:
3d:3e:4d:51:86:20:e2:07:73:ab:91:4f:c8:52:15:b3:c8:4a:
23:b9:f9:a9:1f:ff:37:0b:a9:3e:3a:a4:0b:6c:55:3e:03:3e:
fb:e2:6d:40:75:13:02:39:6d:ee:d9:59:bd:f9:77:53:d8:d0:
b0:0e:02:2c:15:b3:b2:a4:26:22:0f:2a:29:25:71:ff:19:b1:
52:49:30:b6:d8:a2:40:e4:82:48:99:64:57:f2:ab:4c:95:8d:
3c:5a:83:1a:39:68:e3:08:93:4c:7d:65:81:5e:8b:39:32:21:
a0:ef:eb:5b:41:0a:b6:69:2d:80:9a:1d:84:d9:ee:00:82:bd:
e0:2d:70:86:2a:f2:ec:b8:9d:03:a5:8a:61:1b:38:62:4e:22:
19:7a:d9:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:19 2024 by rpki-client on console-fra.rpki-client.org