Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/09CTKdFGVXSAu4G2ZRIAkewrVAU.roa
File: 09CTKdFGVXSAu4G2ZRIAkewrVAU.roa (raw, json)
Hash identifier: X4XJrMFE06mkm4UE5zTuZvfQeF532klCdn8D8tz1Cd8=
Subject key identifier: D3:D0:93:29:D1:46:55:74:80:BB:81:B6:65:12:00:91:EC:2B:54:05
Certificate issuer: /CN=1212f3d60b208cff09d05e49c6be4b16e8acd768
Certificate serial: 01833FAEAFCFB9F1EE51BA63D99CA70127B3
Authority key identifier: 12:12:F3:D6:0B:20:8C:FF:09:D0:5E:49:C6:BE:4B:16:E8:AC:D7:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EhLz1gsgjP8J0F5Jxr5LFuis12g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/09CTKdFGVXSAu4G2ZRIAkewrVAU.roa
Signing time: Thu 15 Sep 2022 05:45:56 +0000
ROA not before: Thu 15 Sep 2022 05:45:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400039
IP address blocks: 188.93.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3f:ae:af:cf:b9:f1:ee:51:ba:63:d9:9c:a7:01:27:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1212f3d60b208cff09d05e49c6be4b16e8acd768
Validity
Not Before: Sep 15 05:45:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3d09329d146557480bb81b665120091ec2b5405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:01:6b:6f:d8:83:40:db:a1:4b:b1:3e:6f:dc:
b8:e0:10:e8:7e:21:39:bf:f7:89:68:78:a5:ba:7e:
9b:98:63:45:9c:d5:b9:0d:42:77:66:35:9c:2f:95:
45:54:83:0c:a2:a6:b2:e7:96:ec:c5:c4:69:92:7e:
eb:82:6a:b8:c3:81:9d:8b:a4:3d:20:ab:9d:c9:56:
2c:f1:ce:37:c0:be:9b:dd:88:6c:6f:2e:fc:d1:6b:
a6:f1:80:3d:54:7b:ee:f8:f1:17:ea:3e:1a:d4:f2:
ad:78:54:2f:0c:cb:ad:7a:00:f1:b5:52:dd:97:1d:
50:b9:3d:27:30:e4:6e:cb:0b:bb:a3:d0:c2:90:20:
ee:65:83:4b:4a:b9:6b:f4:b1:73:65:49:3f:b4:9d:
01:2e:09:83:2a:33:de:70:45:72:d4:ff:67:d8:8c:
ac:61:52:f4:8b:dd:8c:91:6c:c1:23:87:93:58:70:
5a:de:93:53:33:ed:08:54:11:aa:93:2f:13:a3:e3:
0a:67:c5:37:e1:da:b4:ad:0d:ce:41:a7:3b:25:e2:
2d:71:bf:eb:b6:c2:42:13:98:46:99:95:68:7b:ff:
fa:95:15:17:27:f3:e9:b5:71:e1:17:78:16:99:fc:
09:d4:e8:0c:f4:b4:e1:23:8f:69:91:9b:81:f6:d4:
24:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:D0:93:29:D1:46:55:74:80:BB:81:B6:65:12:00:91:EC:2B:54:05
X509v3 Authority Key Identifier:
keyid:12:12:F3:D6:0B:20:8C:FF:09:D0:5E:49:C6:BE:4B:16:E8:AC:D7:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EhLz1gsgjP8J0F5Jxr5LFuis12g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/09CTKdFGVXSAu4G2ZRIAkewrVAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/EhLz1gsgjP8J0F5Jxr5LFuis12g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.137.0/24
Signature Algorithm: sha256WithRSAEncryption
10:f1:aa:35:55:89:76:05:18:37:38:6c:e3:24:84:41:55:b4:
1d:31:29:02:29:15:26:23:a3:75:b7:d4:f7:e5:6d:ea:4d:a9:
11:ba:4f:c2:11:21:32:f8:1e:30:c2:51:dc:c6:41:a9:db:04:
3e:05:3d:c7:1d:1b:39:e7:ad:99:7c:fa:8c:24:5c:ec:f0:71:
b5:8f:da:66:20:cb:8a:88:11:de:b6:cf:d9:01:3e:53:32:c6:
30:db:2c:64:17:d1:05:1d:5a:48:a7:93:f6:d6:20:6c:d6:ca:
19:ff:38:22:16:e7:79:5a:7c:0c:80:b2:6c:65:e7:f9:97:c3:
c1:be:88:3e:6d:32:80:e2:49:8f:ab:ab:86:8a:fb:7b:aa:55:
42:4c:59:57:e3:c6:41:2a:b4:68:47:1a:2e:34:56:a5:20:d9:
e0:49:a8:a8:f0:c5:6b:91:56:1f:3a:8f:03:60:0b:08:21:05:
23:cc:eb:d9:f0:fd:15:9c:3c:c4:ba:56:a2:d6:8a:cb:99:97:
bc:6a:85:e2:eb:31:e9:e9:be:33:a1:45:2a:fb:60:a7:b5:4f:
e4:5b:18:7d:27:d1:0c:45:f2:fc:6a:33:9f:0e:f0:85:3b:ab:
12:f5:08:62:65:f1:3d:49:28:13:ac:86:1a:0e:0f:48:a9:12:
99:0b:2f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:36 2023 by rpki-client on console-fra.rpki-client.org