Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/6f2b37-0d17-45ab-8282-ab4263ed40de/1/d0sNJQEso2QXTgAjRyZHesXLNB8.roa
File: d0sNJQEso2QXTgAjRyZHesXLNB8.roa (raw, json)
Hash identifier: 6dixlncaE1XGjjJXx+qSbEQSQQ4ehsvwg3lzM0X4lsw=
Subject key identifier: 77:4B:0D:25:01:2C:A3:64:17:4E:00:23:47:26:47:7A:C5:CB:34:1F
Certificate issuer: /CN=1c2b50daef3a0cbdb72b23ca3dbbefc1573583f9
Certificate serial: 01837A22DDFE0DF8062035251BDE3D2B6656
Authority key identifier: 1C:2B:50:DA:EF:3A:0C:BD:B7:2B:23:CA:3D:BB:EF:C1:57:35:83:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCtQ2u86DL23KyPKPbvvwVc1g_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/6f2b37-0d17-45ab-8282-ab4263ed40de/1/d0sNJQEso2QXTgAjRyZHesXLNB8.roa
Signing time: Mon 26 Sep 2022 14:10:48 +0000
ROA not before: Mon 26 Sep 2022 14:10:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50708
IP address blocks: 193.105.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7a:22:dd:fe:0d:f8:06:20:35:25:1b:de:3d:2b:66:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c2b50daef3a0cbdb72b23ca3dbbefc1573583f9
Validity
Not Before: Sep 26 14:10:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=774b0d25012ca364174e00234726477ac5cb341f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:45:3d:48:8f:90:a9:3b:bd:80:01:e7:2f:55:
3a:e4:5e:36:41:38:82:63:f9:07:b6:1a:f0:8a:c8:
a5:60:57:eb:d2:0e:2a:b8:b8:bb:75:f7:e8:b1:71:
e1:aa:25:ea:ee:f0:96:93:17:9f:42:1e:ac:40:16:
0b:e5:42:5e:e5:f4:e2:5a:b9:95:c3:f9:19:cf:41:
8d:4e:7a:ee:f9:78:31:67:5b:34:fe:3e:43:a2:55:
2b:a7:ce:ae:bb:63:6e:01:83:57:20:8f:bd:07:89:
33:af:fe:a3:13:1a:17:06:2a:11:f1:66:ac:37:69:
d4:f8:69:eb:25:46:ab:5b:e8:2e:bc:3d:e7:d0:b3:
34:b4:b0:2c:61:b1:35:c7:03:53:67:a6:55:7d:8a:
98:1b:d9:fc:05:8d:4a:e3:ec:26:4b:8e:72:b8:06:
4c:2f:d5:71:24:ba:7c:39:38:62:14:23:f3:9a:7e:
cb:b5:2c:a0:89:4e:65:e0:5b:e2:c5:38:50:4a:83:
b6:ea:6f:87:ca:eb:60:55:48:65:9b:0d:ee:82:bc:
b1:11:9e:c1:8e:b4:b0:e6:82:89:b8:98:fe:cd:64:
4b:33:db:33:cd:78:96:49:a9:fa:d5:de:a3:84:73:
e8:d8:30:05:d2:42:5b:0e:40:1a:04:a4:75:6a:1d:
f7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:4B:0D:25:01:2C:A3:64:17:4E:00:23:47:26:47:7A:C5:CB:34:1F
X509v3 Authority Key Identifier:
keyid:1C:2B:50:DA:EF:3A:0C:BD:B7:2B:23:CA:3D:BB:EF:C1:57:35:83:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCtQ2u86DL23KyPKPbvvwVc1g_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/6f2b37-0d17-45ab-8282-ab4263ed40de/1/d0sNJQEso2QXTgAjRyZHesXLNB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/6f2b37-0d17-45ab-8282-ab4263ed40de/1/HCtQ2u86DL23KyPKPbvvwVc1g_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.190.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:cf:4a:63:b8:9b:47:16:45:d5:23:b9:12:35:45:ba:a5:a2:
cd:92:ab:8d:a2:08:a2:1d:7a:da:67:90:91:38:c2:7d:f1:d9:
5c:f7:ce:8e:7e:b7:e9:2a:72:83:c3:76:b4:67:ca:65:f5:4e:
bb:76:75:12:66:e2:87:ea:cb:81:2c:3e:a1:dd:a6:b0:46:28:
00:86:d9:8c:73:df:c3:73:91:11:8f:46:72:d0:31:cf:9b:bf:
ce:7f:c7:ba:c3:a8:fd:e4:1b:8c:aa:0e:28:cf:77:a2:de:a3:
e8:71:b1:a6:c1:08:05:61:04:97:d6:1f:3a:4f:e3:91:55:f1:
12:17:28:f7:25:2f:b8:59:b6:30:8c:95:e2:07:0a:de:e0:0d:
91:2a:af:14:e8:30:1d:5b:30:bf:25:1f:c3:4e:7c:61:3d:91:
b9:7d:6f:95:e1:da:01:88:83:51:09:63:f8:87:27:d0:7f:6a:
8f:0e:c1:59:d5:87:70:f0:f6:fd:b8:f4:7a:a6:40:9f:98:6a:
e2:c2:48:0c:9d:32:59:ab:38:e3:ce:fa:39:28:6c:4e:0c:6f:
f9:87:76:10:2e:26:5d:f9:c0:c2:17:47:71:81:d3:ac:5a:28:
03:16:fc:24:b4:33:bc:20:4b:12:15:a6:28:7f:47:67:3e:43:
b1:32:43:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org