Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/30a55d-9959-48e8-9a81-9ab0ff870d23/1/HNfO0nXoQcKX_62anK6BYzbjWYY.roa
File: HNfO0nXoQcKX_62anK6BYzbjWYY.roa (raw, json)
Hash identifier: Qm/9LtJ6Lx9wX2GgUZF9LYJkt2njpib5qRmbM5kSIe8=
Subject key identifier: 1C:D7:CE:D2:75:E8:41:C2:97:FF:AD:9A:9C:AE:81:63:36:E3:59:86
Certificate issuer: /CN=fb3d90a489e2d49c564e08a3a2f3445fb2c8d404
Certificate serial: 01D4B7BA
Authority key identifier: FB:3D:90:A4:89:E2:D4:9C:56:4E:08:A3:A2:F3:44:5F:B2:C8:D4:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-z2QpIni1JxWTgijovNEX7LI1AQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/30a55d-9959-48e8-9a81-9ab0ff870d23/1/HNfO0nXoQcKX_62anK6BYzbjWYY.roa
Signing time: Sat 01 Jan 2022 15:01:23 +0000
ROA not before: Sat 01 Jan 2022 15:01:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51050
IP address blocks: 193.38.140.0/23 maxlen: 23
193.39.6.0/23 maxlen: 23
2a0f:b580::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30717882 (0x1d4b7ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb3d90a489e2d49c564e08a3a2f3445fb2c8d404
Validity
Not Before: Jan 1 15:01:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cd7ced275e841c297ffad9a9cae816336e35986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fe:6b:01:9f:3e:fd:49:cc:a2:0a:89:1d:de:
a2:68:0c:d1:10:4b:08:3f:9a:50:bd:09:f1:b3:ef:
a8:a4:55:8c:1b:e6:1e:d3:d9:b8:0b:13:5a:ec:a3:
24:be:00:f7:7c:95:18:21:52:93:8c:3a:9d:fc:b3:
eb:16:5c:84:1f:1b:38:4f:f6:06:0e:9a:ff:95:3e:
b3:8b:50:95:17:4b:32:9a:de:92:b4:6d:9d:5a:49:
fd:2b:9b:4a:57:cc:1e:ef:49:9f:3e:9e:29:ca:63:
22:bf:76:17:b1:5b:35:c7:7f:99:77:ce:4b:64:15:
3d:ab:62:14:4a:b4:cc:f7:8c:e2:c2:f6:ff:05:36:
11:eb:fa:62:8f:89:64:0c:b7:d4:4d:7b:ff:d4:b3:
8f:66:58:aa:a5:e9:61:5e:47:bf:1f:55:f3:db:4b:
8e:2c:d6:c0:53:65:9f:29:5d:36:94:3b:fa:e1:d7:
cc:2c:bb:39:ce:04:48:fa:79:17:4e:7b:86:e0:b1:
e9:e1:d1:f1:24:8e:8e:4a:7c:d1:e9:f4:3c:a3:71:
bc:29:76:d3:fb:5c:4c:3d:d6:71:5d:b9:74:c1:78:
22:07:cc:b4:9e:d6:36:18:c5:63:13:56:ba:6f:8a:
9a:ef:85:22:7f:7f:b1:3b:56:a5:0c:e2:78:82:d9:
cd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D7:CE:D2:75:E8:41:C2:97:FF:AD:9A:9C:AE:81:63:36:E3:59:86
X509v3 Authority Key Identifier:
keyid:FB:3D:90:A4:89:E2:D4:9C:56:4E:08:A3:A2:F3:44:5F:B2:C8:D4:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-z2QpIni1JxWTgijovNEX7LI1AQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/30a55d-9959-48e8-9a81-9ab0ff870d23/1/HNfO0nXoQcKX_62anK6BYzbjWYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/30a55d-9959-48e8-9a81-9ab0ff870d23/1/1-z2QpIni1JxWTgijovNEX7LI1AQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.140.0/23
193.39.6.0/23
IPv6:
2a0f:b580::/29
Signature Algorithm: sha256WithRSAEncryption
65:d2:77:92:0e:ca:fa:f7:b3:1e:50:f1:db:4f:52:93:ba:09:
81:6f:f7:ad:d3:db:53:1d:4f:85:3d:43:8c:ac:fb:fe:b1:fe:
a9:f9:46:74:41:55:c6:68:68:9b:64:8c:1f:ec:91:43:40:bc:
db:9b:94:f2:d0:91:1a:62:08:b1:e5:46:82:38:cd:f5:8c:d8:
c8:9e:94:5c:90:85:73:85:65:ae:4a:5b:8d:be:87:29:9a:a3:
0d:44:dd:d0:cc:c6:d8:89:3e:cb:c1:8d:76:3e:6f:d2:f0:e7:
93:2e:5c:c4:b7:13:a4:e3:6b:00:4b:e8:9d:a0:bd:f1:42:46:
23:ee:f2:95:3a:ae:59:5c:61:c3:68:e1:00:ed:eb:df:7b:58:
f8:95:ca:09:46:c2:c5:0d:ea:19:b7:79:dd:75:b6:b8:8b:b4:
b1:c1:d9:ca:ec:c4:2f:d7:fe:8a:30:3b:94:98:08:92:00:80:
52:e1:74:f2:44:52:cc:bc:49:43:b9:86:38:b2:e5:c1:98:da:
34:50:70:10:04:5d:9c:34:7e:eb:1f:7c:7f:51:57:ae:c5:a2:
6c:31:48:61:cc:9e:26:3b:04:be:e5:6d:63:0e:95:89:39:99:
b1:bc:67:d2:9b:49:cc:70:f1:57:62:dc:d1:90:0f:c4:46:7e:
00:b0:cb:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:03 2023 by rpki-client on console-ams.rpki-client.org