Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/ioml6eJ17cRPPPp10eTVyw8mD6A.roa
File: ioml6eJ17cRPPPp10eTVyw8mD6A.roa (raw, json)
Hash identifier: Vk4fzlgHjWuobxnsEYJCD6P5yiE1Dvxfxoqxpd6hOR0=
Subject key identifier: 8A:89:A5:E9:E2:75:ED:C4:4F:3C:FA:75:D1:E4:D5:CB:0F:26:0F:A0
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 06ECF383
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/ioml6eJ17cRPPPp10eTVyw8mD6A.roa
Signing time: Sat 01 Jan 2022 13:02:51 +0000
ROA not before: Sat 01 Jan 2022 13:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.219.99.0/24 maxlen: 24
193.219.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116192131 (0x6ecf383)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Jan 1 13:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a89a5e9e275edc44f3cfa75d1e4d5cb0f260fa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7e:cf:c8:11:02:dc:ff:0f:f4:b4:b7:14:02:
d9:8e:ce:43:c7:9c:1d:e1:f9:cd:84:08:5b:ef:00:
d8:89:b5:47:55:6d:35:9c:9b:8e:02:2e:ac:2b:d1:
bd:34:16:3f:30:67:4b:81:46:63:aa:12:97:10:ce:
11:43:f5:f5:c1:52:7c:55:8d:c9:80:07:0d:78:51:
b0:ea:20:fa:9e:95:45:5a:9d:73:42:de:43:3b:1d:
9b:5d:2f:ad:d1:42:3a:b6:f3:32:37:20:62:43:54:
bf:e2:e3:32:55:35:4c:7b:1d:fd:e9:c1:85:1f:06:
cc:63:10:3c:9a:41:d1:02:b8:27:67:82:94:9a:08:
44:1c:6e:e5:66:03:43:1d:ee:6f:9d:dd:00:44:55:
a5:d1:e9:1e:a9:39:d1:80:3e:3d:1d:b2:f1:f2:e8:
5f:66:46:cf:8f:7c:3a:40:54:ec:bb:af:8e:3c:03:
3d:c2:54:40:fa:25:24:20:83:fd:ad:1a:1c:90:c9:
0f:a1:e8:28:eb:e6:c7:16:8e:05:2f:4e:54:e1:ce:
cd:cc:33:fb:06:c3:38:b4:d1:e4:83:3b:13:4a:e5:
e7:48:e0:f9:2d:f6:e7:2f:76:ff:9f:bf:30:35:13:
ba:3d:38:88:66:e0:84:3a:08:83:eb:92:97:90:0b:
f1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:89:A5:E9:E2:75:ED:C4:4F:3C:FA:75:D1:E4:D5:CB:0F:26:0F:A0
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/ioml6eJ17cRPPPp10eTVyw8mD6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.219.7.0/24
193.219.99.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:76:c5:83:8d:41:ef:6e:85:f1:60:af:5c:97:e4:60:ad:fa:
5a:88:14:fd:88:0e:84:f9:c9:52:8c:5c:54:8b:e2:ff:87:18:
b6:09:7b:9d:08:b2:e3:ff:21:b6:45:d5:f9:da:31:f9:b9:6e:
31:36:5c:15:79:9c:18:0e:ad:0c:68:47:05:3c:81:20:32:c5:
be:8a:5b:ef:13:cb:91:91:af:4b:9e:fc:e3:a9:f0:ed:7a:88:
57:fc:a1:db:d1:4c:5a:3c:5d:bf:8c:cf:92:f7:7d:c7:59:8a:
fa:95:04:19:3c:25:70:b5:b7:c8:c6:d3:5d:18:49:bf:d5:a6:
8c:bd:c9:f3:5a:24:86:82:c9:25:e5:5e:a5:75:9a:f3:f9:d6:
c5:f3:d0:84:61:43:8b:9d:0a:fa:aa:7b:a1:3f:03:23:6c:20:
ac:df:d2:3e:90:b7:a5:00:bd:35:c2:ca:03:83:ac:3a:bc:f5:
7a:17:ba:e1:81:95:d5:b3:46:cb:e9:e7:12:9a:a6:10:0a:4d:
d4:c4:40:81:10:45:06:15:2a:92:97:06:16:d8:f4:0b:a3:b8:
24:2c:65:b8:b9:91:6d:9b:f3:e1:41:ad:4b:26:b7:2d:6e:8f:
63:0e:1a:59:a9:55:51:fb:f7:34:86:79:5d:06:9a:38:18:ad:
4e:d3:93:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:15 2024 by rpki-client on console-fra.rpki-client.org