Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/bHNCO50minP4TnOG1dJTLXMQviI.roa
File: bHNCO50minP4TnOG1dJTLXMQviI.roa (raw, json)
Hash identifier: bBYOldNtrbSu8w4LJGwk+YZvocqcmj/nr4328EuhLnM=
Subject key identifier: 6C:73:42:3B:9D:26:8A:73:F8:4E:73:86:D5:D2:53:2D:73:10:BE:22
Certificate issuer: /CN=24a918f1b10ec1d660b1cfcb1bfe196c2feb06bf
Certificate serial: 06E33EB3
Authority key identifier: 24:A9:18:F1:B1:0E:C1:D6:60:B1:CF:CB:1B:FE:19:6C:2F:EB:06:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/bHNCO50minP4TnOG1dJTLXMQviI.roa
Signing time: Sat 01 Jan 2022 09:00:43 +0000
ROA not before: Sat 01 Jan 2022 09:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.16.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115556019 (0x6e33eb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a918f1b10ec1d660b1cfcb1bfe196c2feb06bf
Validity
Not Before: Jan 1 09:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c73423b9d268a73f84e7386d5d2532d7310be22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9f:88:fe:ca:07:4d:a5:be:4d:21:38:f4:3a:
4d:0e:34:70:bb:5f:53:1b:12:7d:eb:c4:4b:d3:9a:
e8:e2:76:ef:0d:57:1b:3d:b6:39:80:42:ce:43:61:
de:9a:07:66:15:6a:d0:a2:7b:31:60:8d:62:6a:2e:
c5:31:45:cc:e7:9c:69:39:d8:b1:20:7c:dd:c3:dd:
e1:2a:a2:53:92:2c:1e:33:30:58:ae:0d:6f:98:28:
d1:5b:72:95:7f:85:fd:eb:ad:e0:82:f1:32:d6:08:
2a:70:9e:1a:a0:cc:d4:b4:90:09:f4:43:50:10:59:
a0:35:fd:fa:53:ea:a7:72:f8:d3:8a:6f:3a:fc:0f:
3b:74:c7:c8:df:ff:4b:5f:ea:c0:9a:a0:63:8d:90:
10:2b:e7:a0:81:ce:bd:fd:db:4a:3b:41:2d:c0:bd:
a4:54:8a:da:0b:5b:db:2e:95:b6:48:9f:f3:06:85:
96:b6:f8:02:b5:f2:45:f9:2a:c7:09:01:cf:76:d4:
77:56:56:75:77:8d:2f:eb:7b:a8:17:54:03:a5:89:
bb:90:8f:7f:39:0b:76:10:55:45:f0:54:d6:d3:84:
64:e1:ab:9e:f1:37:3f:2a:94:b3:68:4a:42:72:d2:
3e:32:26:7e:9b:6e:4c:d9:26:a5:f4:1a:ff:b4:f5:
46:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:73:42:3B:9D:26:8A:73:F8:4E:73:86:D5:D2:53:2D:73:10:BE:22
X509v3 Authority Key Identifier:
keyid:24:A9:18:F1:B1:0E:C1:D6:60:B1:CF:CB:1B:FE:19:6C:2F:EB:06:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/bHNCO50minP4TnOG1dJTLXMQviI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.22.0/24
Signature Algorithm: sha256WithRSAEncryption
98:84:23:c7:4a:3b:ad:ad:4e:6f:27:c5:25:e3:66:74:e0:8e:
07:d8:55:f5:ad:e7:30:e3:11:31:c7:32:5c:71:f9:6e:e0:91:
86:5f:6c:a6:6c:20:ea:1f:8c:73:45:da:83:50:dc:4c:d0:ab:
4f:99:9f:5c:25:bd:10:37:4f:ae:c7:a1:83:ad:96:27:98:f2:
08:1e:bc:d3:23:c3:db:1b:a3:86:a9:fa:47:56:8f:8c:72:64:
94:fe:92:ab:84:0a:da:6b:75:4e:90:80:e6:63:35:a9:05:30:
fe:cc:52:f8:da:8d:f9:4f:e8:c1:34:0c:bf:0c:73:8f:ff:32:
cb:ba:ae:da:d4:14:ac:06:95:d6:8f:27:d2:b9:2b:41:ef:21:
79:f7:97:c1:8c:e1:13:7b:c5:3b:68:82:6a:08:c9:62:6c:b4:
47:e6:d9:3b:21:d7:92:9d:d8:44:a6:2a:fc:e4:38:ea:02:82:
fd:50:52:f9:80:04:aa:39:67:94:82:12:82:21:a3:a3:21:b2:
96:af:9b:51:b1:4f:f5:e9:c2:0e:44:af:e9:1b:16:d0:59:60:
d0:dc:a9:2a:fc:20:50:95:73:b2:9b:e8:78:83:b6:6f:4c:2a:
45:b6:17:92:e9:6f:75:27:51:ae:b9:4c:39:e7:af:0b:ba:a5:
d3:ab:f6:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:44 2024 by rpki-client on console-ams.rpki-client.org