Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/INo-KLHuJwQLEXiBT0X8K16c44s.roa
File: INo-KLHuJwQLEXiBT0X8K16c44s.roa (raw, json)
Hash identifier: 96xz546Oe8Jc0XPPW5CVgkxqLVBrrhTZcgWHNIlQDoo=
Subject key identifier: 20:DA:3E:28:B1:EE:27:04:0B:11:78:81:4F:45:FC:2B:5E:9C:E3:8B
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 0183C5A91B795A57F04AF9113D753A2ADDD8
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/INo-KLHuJwQLEXiBT0X8K16c44s.roa
Signing time: Tue 11 Oct 2022 06:08:57 +0000
ROA not before: Tue 11 Oct 2022 06:08:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.31.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c5:a9:1b:79:5a:57:f0:4a:f9:11:3d:75:3a:2a:dd:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: Oct 11 06:08:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20da3e28b1ee27040b1178814f45fc2b5e9ce38b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b5:ea:f1:b7:ff:0e:3b:15:e4:4b:d1:77:6f:
82:eb:88:46:a4:b0:4c:7a:96:22:ca:cd:10:2e:ba:
5e:87:2d:c3:38:43:06:ce:41:d1:02:71:47:60:6b:
64:d1:08:91:7e:cf:ea:79:fa:64:39:77:d9:ec:e2:
92:ab:af:5a:e5:f4:d5:13:d5:ed:9a:b2:8b:de:15:
aa:2b:d5:5c:b8:a1:66:de:16:e6:b4:e9:88:07:c0:
77:9d:97:7a:7f:43:82:d1:80:86:70:b8:e7:a0:d3:
b4:c1:09:ae:9f:bd:7f:62:05:96:46:73:e5:87:ae:
e2:7f:9e:02:be:d3:35:6c:b8:9e:b9:d5:1e:91:d1:
c4:2d:c7:bc:69:71:f7:57:8f:d7:04:fe:1f:41:90:
71:e9:16:e5:df:32:db:ad:56:7d:b2:a6:44:ab:cf:
58:fe:e6:c0:92:a2:ae:a3:99:4f:4b:0f:6c:d0:c0:
73:13:fa:20:c2:a5:50:3a:c3:8d:7b:b4:64:c6:ad:
75:9f:12:d3:42:64:97:16:11:5a:1d:1e:e8:0c:c9:
16:f5:42:1e:b2:ba:0d:45:5e:6b:a3:ec:e3:1a:6d:
e8:0c:29:12:23:d9:2d:4a:41:16:0f:38:e1:b9:44:
c5:d6:04:26:a2:0b:99:39:bf:47:b5:7b:eb:5d:31:
aa:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:DA:3E:28:B1:EE:27:04:0B:11:78:81:4F:45:FC:2B:5E:9C:E3:8B
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/INo-KLHuJwQLEXiBT0X8K16c44s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.60.0/24
Signature Algorithm: sha256WithRSAEncryption
84:18:9e:40:ab:22:98:31:49:83:09:56:09:18:fc:6c:6a:6d:
c9:f5:23:35:bb:7f:21:f1:40:d5:e8:10:f0:a6:53:d9:ee:d5:
a8:b6:e9:66:f2:06:d4:69:dd:cc:ea:a2:a5:5c:1d:ef:11:99:
ba:07:3e:3a:72:04:59:9f:5a:25:4c:a7:d7:34:12:67:71:d3:
77:9c:31:3e:df:b8:81:3a:1f:19:a0:fa:1a:0c:22:07:e6:2a:
b0:62:7c:ec:e2:6f:c2:86:22:11:61:37:ae:cf:bf:99:29:f3:
ef:bf:fd:47:7d:a7:8a:90:7a:67:88:f8:ec:de:ea:0c:b9:c8:
0b:37:04:9f:29:1b:4b:9b:86:60:50:55:11:87:21:8a:17:49:
13:a4:5c:b0:ca:e2:99:55:c5:98:12:aa:d6:12:60:f2:9b:db:
23:0f:54:7e:29:5f:81:0d:3c:4c:64:e8:ae:e0:96:bc:23:38:
dd:0a:6e:9e:32:93:f5:26:e5:a4:fa:ce:cd:c4:b3:b8:d4:4f:
67:75:da:51:d3:3b:56:97:02:66:e0:77:22:7d:98:73:55:41:
48:94:cf:4d:a8:cd:dd:13:61:38:db:ee:a7:df:78:53:52:79:
05:4f:b6:21:96:a8:d0:75:c3:4c:03:9d:24:1e:09:53:55:03:
db:b3:b0:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:29 2024 by rpki-client on console-ams.rpki-client.org