Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/8RGNbzEzMH4KpeJ83NcZHFJva5I.roa
File: 8RGNbzEzMH4KpeJ83NcZHFJva5I.roa (raw, json)
Hash identifier: BgOS0800o6CApBYra9ThcjNIlz4ofX/tkZtwNMZSTr4=
Subject key identifier: F1:11:8D:6F:31:33:30:7E:0A:A5:E2:7C:DC:D7:19:1C:52:6F:6B:92
Certificate issuer: /CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Certificate serial: 04FF45F4
Authority key identifier: 4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/8RGNbzEzMH4KpeJ83NcZHFJva5I.roa
Signing time: Sat 01 Jan 2022 13:59:53 +0000
ROA not before: Sat 01 Jan 2022 13:59:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207741
IP address blocks: 193.192.0.0/24 maxlen: 24
212.102.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83838452 (0x4ff45f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f2f3bc99a79503e09757477e8ef643e11886c8b
Validity
Not Before: Jan 1 13:59:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1118d6f3133307e0aa5e27cdcd7191c526f6b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:89:99:aa:c1:03:7f:7d:83:16:3e:72:16:a2:
b8:cf:bd:cb:4a:a4:3b:3a:c9:38:d2:67:01:c9:9c:
77:c0:d0:c0:e9:94:f8:cf:7b:8d:a8:9c:3f:7e:57:
d3:5e:4d:3d:ba:f7:cd:4b:dc:45:6b:89:84:91:12:
b4:d3:56:e5:58:b4:cf:5e:32:0a:64:1a:9b:8c:10:
6b:26:9f:55:56:94:e2:d1:18:09:01:42:64:ba:ec:
8b:06:87:7a:ea:08:20:e1:76:bd:c1:16:c1:64:d0:
31:6a:1b:af:45:db:7a:da:cd:e0:1b:fc:0b:0c:b8:
80:e4:4a:4a:eb:db:b0:d1:9a:3f:dd:ff:fe:64:14:
ec:0d:8a:9d:8b:d1:9e:dd:39:7b:df:30:8d:95:ad:
a8:54:0e:69:df:09:a7:70:d8:b4:9f:37:a6:7b:b0:
59:de:61:26:b9:61:b3:75:1e:15:37:9e:33:15:b4:
75:c8:a5:41:d3:4f:e8:4b:c6:54:a1:b3:3d:dc:b2:
5b:76:27:5b:65:22:26:63:f7:41:1e:f6:64:27:66:
5d:d6:88:61:f8:09:23:3a:a7:d0:dd:92:07:3d:13:
93:92:d3:a8:1c:14:ab:f9:0b:33:35:05:f8:13:b9:
bf:38:90:79:93:a0:93:1f:9d:87:64:32:81:ee:c9:
26:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:11:8D:6F:31:33:30:7E:0A:A5:E2:7C:DC:D7:19:1C:52:6F:6B:92
X509v3 Authority Key Identifier:
keyid:4F:2F:3B:C9:9A:79:50:3E:09:75:74:77:E8:EF:64:3E:11:88:6C:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ty87yZp5UD4JdXR36O9kPhGIbIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/8RGNbzEzMH4KpeJ83NcZHFJva5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1e1ac6-fcd6-4ae8-ad77-51e4bba6bf5b/1/Ty87yZp5UD4JdXR36O9kPhGIbIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.192.0.0/24
212.102.117.0/24
Signature Algorithm: sha256WithRSAEncryption
72:dc:7d:ed:e1:9e:11:5d:f7:25:e0:16:62:4c:87:40:45:5e:
8c:e0:86:d2:53:c6:25:3d:43:9c:2f:f2:c4:92:20:84:42:85:
32:b5:03:ad:ba:1e:af:8d:f8:92:5a:26:e1:d5:ed:ea:30:f4:
b0:2d:3e:b9:bd:4a:30:f4:a5:3e:f4:47:f2:0e:44:5a:7e:84:
95:90:60:97:cc:c0:b9:ab:9b:de:a1:7d:d0:a6:48:fd:ad:cd:
33:0d:16:85:fe:d1:c5:d9:83:be:5b:1f:96:af:e8:78:e6:92:
f4:a3:ad:8b:84:50:91:f0:60:34:bf:2c:0b:46:6c:39:8a:56:
00:e3:d9:b1:a2:37:32:86:a7:81:32:da:8f:35:81:c2:4e:e4:
e4:11:3e:9f:c9:09:ea:01:b5:6f:1f:1e:8b:37:db:21:db:54:
f7:b0:7d:d3:bf:f7:42:84:01:5a:86:da:06:ab:da:d5:39:e0:
f9:11:a2:92:07:6f:25:25:cb:01:92:72:fe:fd:4f:2d:a3:03:
7c:94:60:0d:d5:21:e1:70:8f:26:88:17:5e:7c:12:39:ee:86:
3b:56:bc:bc:62:30:68:63:b5:b1:9c:9c:47:d6:e9:7e:2a:17:
11:c4:9f:9a:2e:bb:39:89:00:34:ce:49:71:55:3e:9d:ca:89:
fb:c6:69:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:02 2024 by rpki-client on console-ams.rpki-client.org