Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/5t6vgQQn1bTmZGmgbKxJQcHKAHY.roa
File: 5t6vgQQn1bTmZGmgbKxJQcHKAHY.roa (raw, json)
Hash identifier: 1xwhoihXnnWqop8xxQq3QS4BXv9vGoTEWXBOiN5jyvc=
Subject key identifier: E6:DE:AF:81:04:27:D5:B4:E6:64:69:A0:6C:AC:49:41:C1:CA:00:76
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01842CA83475AEB65C30AF3384E3E0D3B733
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/5t6vgQQn1bTmZGmgbKxJQcHKAHY.roa
Signing time: Mon 31 Oct 2022 06:08:51 +0000
ROA not before: Mon 31 Oct 2022 06:08:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9312
IP address blocks: 193.19.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2c:a8:34:75:ae:b6:5c:30:af:33:84:e3:e0:d3:b7:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Oct 31 06:08:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6deaf810427d5b4e66469a06cac4941c1ca0076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c9:ce:d0:38:c0:4b:34:a8:1b:ca:d9:93:a1:
9a:22:2a:29:3a:c9:85:b3:67:92:26:ac:38:eb:59:
8f:bd:c8:0c:6e:35:22:ed:b1:e3:0f:05:e0:90:27:
3d:52:b9:51:7d:8b:0e:f6:b0:14:91:cc:9c:42:2b:
dc:57:65:34:4b:25:39:7a:57:02:0a:eb:76:e4:e3:
8b:96:14:d8:96:a7:a9:78:cd:aa:f2:19:ef:dc:db:
f6:a7:3f:a0:b8:9a:5d:5e:09:8b:d6:f1:57:c0:42:
45:da:2f:25:65:61:d4:46:91:63:75:bb:11:10:29:
a7:ff:c8:1e:24:54:ef:38:ff:2e:46:52:8b:30:80:
f7:ed:5e:3f:2d:4d:60:ab:09:d6:6b:b0:ae:9e:22:
25:0d:92:98:25:53:3a:3e:25:03:4e:5d:d0:af:83:
78:65:c0:05:ac:33:94:e4:57:08:13:3c:95:d4:01:
02:92:d9:a6:31:78:2a:51:02:ac:0a:9b:7a:1b:27:
bf:4c:d2:1b:33:44:a6:b7:24:c5:d1:40:95:05:bd:
6f:04:d2:9d:af:ba:ab:3f:11:10:34:0e:a1:82:20:
a8:28:32:7e:19:79:45:81:70:12:3e:44:aa:54:c2:
46:05:a6:8d:51:57:f8:2e:7b:37:16:6c:9b:9f:50:
af:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DE:AF:81:04:27:D5:B4:E6:64:69:A0:6C:AC:49:41:C1:CA:00:76
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/5t6vgQQn1bTmZGmgbKxJQcHKAHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.108.0/24
Signature Algorithm: sha256WithRSAEncryption
54:44:de:b8:27:fd:eb:c2:0e:21:db:72:04:47:f4:39:50:bf:
ea:3c:05:4f:01:21:bf:92:74:86:dd:ec:bf:2c:2d:40:85:7d:
49:7c:05:f9:14:29:14:99:37:f6:cc:27:a0:db:48:b6:97:94:
80:ae:bf:5e:fd:65:9e:71:24:c1:f4:66:a2:85:0c:08:2b:74:
71:58:2d:c5:cc:57:04:64:9f:a4:dd:15:18:88:cd:43:43:fa:
44:92:fe:21:59:9f:0a:c5:9f:0e:16:af:48:79:91:40:d3:61:
49:0c:24:f7:e2:5c:71:6e:df:cb:85:9c:05:94:5a:89:2d:ac:
72:af:1c:07:51:98:0e:4f:dd:88:fb:05:7c:ba:1b:d1:89:a4:
dd:af:ab:87:a2:76:34:16:e0:ef:5c:fe:f1:a6:1c:c6:03:74:
c2:dc:67:4e:4f:51:9a:52:32:c5:0d:4e:59:15:25:59:52:c1:
3f:3d:56:c1:6c:1f:d4:04:25:5d:fe:71:2a:d6:8b:0f:df:fe:
b9:60:8e:f2:ed:0e:28:da:93:a6:4c:54:9e:3f:31:cb:87:22:
8e:3f:2f:1d:1c:59:ad:9d:9e:ef:47:e2:82:a5:90:99:3e:57:
31:59:c7:21:45:cc:39:3c:46:9a:df:42:07:ac:2f:73:90:f1:
8e:5a:b3:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:57 2023 by rpki-client on console-fra.rpki-client.org