Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d4501b-18ea-4280-85a4-9329f9179fda/1/j3tPf9m4m1Nd0gLF6U-IROM464I.roa
File: j3tPf9m4m1Nd0gLF6U-IROM464I.roa (raw, json)
Hash identifier: cnpK4Bb6L9JTwtIt0RQ95g5UPpSzeJz8TDGpxeW1V7s=
Subject key identifier: 8F:7B:4F:7F:D9:B8:9B:53:5D:D2:02:C5:E9:4F:88:44:E3:38:EB:82
Certificate issuer: /CN=4a97bc504f3075fb4f39236408c1c2d547b44c26
Certificate serial: 018562547A2D47CE5201CBA1BFFB341F7551
Authority key identifier: 4A:97:BC:50:4F:30:75:FB:4F:39:23:64:08:C1:C2:D5:47:B4:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Spe8UE8wdftPOSNkCMHC1Ue0TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d4501b-18ea-4280-85a4-9329f9179fda/1/j3tPf9m4m1Nd0gLF6U-IROM464I.roa
Signing time: Fri 30 Dec 2022 09:19:41 +0000
ROA not before: Fri 30 Dec 2022 09:19:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15580
IP address blocks: 193.108.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:54:7a:2d:47:ce:52:01:cb:a1:bf:fb:34:1f:75:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a97bc504f3075fb4f39236408c1c2d547b44c26
Validity
Not Before: Dec 30 09:19:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f7b4f7fd9b89b535dd202c5e94f8844e338eb82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:32:f4:bf:c0:73:b7:4b:2b:46:59:43:58:e0:
fc:8b:de:d9:b9:a7:fe:7a:a9:12:13:bd:1f:5e:bb:
6a:05:a3:29:11:df:3c:6f:35:66:58:a0:cc:3c:36:
96:21:fd:97:88:79:56:11:ef:1d:3b:2c:22:40:99:
22:89:a8:68:25:11:79:c9:dd:95:ad:70:c9:0e:15:
12:01:3c:eb:43:f3:7d:b6:0e:2f:c0:18:fa:d9:9d:
1c:8b:f2:36:94:d5:da:d9:d2:c4:05:46:95:d2:17:
c9:c5:04:1a:8d:c5:ab:6f:c3:ee:91:71:44:f4:03:
c1:5d:91:3e:d0:21:c2:83:6d:19:bb:d4:ad:8d:f3:
f0:f3:4a:6e:e5:6f:10:27:51:cc:80:96:23:a7:18:
08:e6:bc:2e:ac:c3:04:0d:63:90:16:d6:8b:71:93:
f6:10:b4:2c:ee:eb:d4:94:5f:a9:d2:4c:11:e5:08:
76:96:25:eb:37:b4:1a:c5:d4:7b:69:39:a9:3d:90:
99:59:62:ed:e6:44:b2:8b:a8:ea:c9:82:da:65:54:
48:fe:f9:9a:f6:5a:d7:b0:e1:65:e7:fd:a4:5b:c3:
d8:6d:3e:d2:db:84:84:06:d2:8d:19:34:b1:63:cd:
81:d8:51:a6:57:34:a0:a9:d0:d9:43:1d:23:ee:7b:
1c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:7B:4F:7F:D9:B8:9B:53:5D:D2:02:C5:E9:4F:88:44:E3:38:EB:82
X509v3 Authority Key Identifier:
keyid:4A:97:BC:50:4F:30:75:FB:4F:39:23:64:08:C1:C2:D5:47:B4:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Spe8UE8wdftPOSNkCMHC1Ue0TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d4501b-18ea-4280-85a4-9329f9179fda/1/j3tPf9m4m1Nd0gLF6U-IROM464I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d4501b-18ea-4280-85a4-9329f9179fda/1/Spe8UE8wdftPOSNkCMHC1Ue0TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.175.0/24
Signature Algorithm: sha256WithRSAEncryption
26:1e:0b:71:5c:8a:c1:d3:7f:6e:bb:5a:32:10:61:af:de:fb:
61:62:b0:0a:b2:8c:6a:7f:db:7a:93:e1:27:b0:b9:8a:32:96:
be:ea:e7:01:5a:83:14:f6:b1:ac:a2:04:04:9d:6a:bf:a8:50:
af:c9:ca:85:d9:c0:ae:2b:c5:17:6a:1d:57:32:cb:c5:98:fa:
17:9e:97:70:23:aa:b7:05:f2:88:14:5e:ba:f5:49:5b:21:e5:
37:e1:5e:2b:31:1b:76:2c:df:61:1f:dd:32:fa:94:00:c0:3c:
c7:09:d4:71:6e:31:35:a8:e0:a7:c9:87:3d:81:0b:82:53:6b:
41:c7:27:e0:fe:09:1c:73:5d:d9:9e:bf:ee:a3:6c:bc:57:c8:
a2:af:6c:66:f1:c9:2e:cb:d1:a1:1d:af:7d:85:8d:54:04:04:
0b:80:06:5f:cc:72:94:70:55:2f:be:be:2e:25:d8:62:d7:2d:
01:9a:f5:63:f2:34:90:2d:fa:0f:3e:bd:6b:e9:57:15:36:fb:
5a:cd:e2:59:b3:37:7e:7b:7a:77:64:d8:90:e5:ae:62:0f:0c:
a9:70:86:38:ab:14:3c:a2:d4:fa:d9:b8:b4:7d:97:ba:a6:d7:
1c:38:fa:d9:73:14:80:87:e9:ba:26:f4:56:da:36:0d:fa:8c:
81:6a:12:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:14 2024 by rpki-client on console-ams.rpki-client.org