Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/3a252a-af4b-4eea-acdb-2fdd1fd99657/1/3uBoDuc-L5ehLwQ6-qAAW5PotsQ.roa
File: 3uBoDuc-L5ehLwQ6-qAAW5PotsQ.roa (raw, json)
Hash identifier: KDgzVoN32HRqCRo8xud6Udjxc1s8bSr4LqIPUKdtAsg=
Subject key identifier: DE:E0:68:0E:E7:3E:2F:97:A1:2F:04:3A:FA:A0:00:5B:93:E8:B6:C4
Certificate issuer: /CN=003a0d14b03ea342ede3b2f49ad8caa2bf74e170
Certificate serial: 0A7E78A4
Authority key identifier: 00:3A:0D:14:B0:3E:A3:42:ED:E3:B2:F4:9A:D8:CA:A2:BF:74:E1:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ADoNFLA-o0Lt47L0mtjKor904XA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/3a252a-af4b-4eea-acdb-2fdd1fd99657/1/3uBoDuc-L5ehLwQ6-qAAW5PotsQ.roa
Signing time: Sat 01 Jan 2022 13:54:40 +0000
ROA not before: Sat 01 Jan 2022 13:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 193.84.192.0/20 maxlen: 24
193.84.192.0/19 maxlen: 24
193.84.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176060580 (0xa7e78a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=003a0d14b03ea342ede3b2f49ad8caa2bf74e170
Validity
Not Before: Jan 1 13:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dee0680ee73e2f97a12f043afaa0005b93e8b6c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a3:85:41:02:a1:d7:ee:77:ea:70:ba:0b:b7:
d8:77:50:d5:62:5e:ac:fa:fd:18:b3:6f:b0:f4:02:
2e:ab:fe:7b:95:c8:c2:e9:a6:63:fc:b2:4b:5f:d4:
fb:f0:7b:a5:8f:90:3d:19:e8:c3:e4:f2:ab:2b:74:
40:3e:f3:ec:0a:eb:03:82:5c:dc:d9:d2:4c:c9:a9:
8d:15:8d:91:7c:63:94:a0:99:a0:ac:9d:4c:3d:14:
1d:5e:01:31:8e:80:dd:8f:e1:f8:5f:20:dc:31:13:
8b:41:31:ab:5c:a1:58:15:df:b7:19:1e:18:e6:30:
af:88:73:10:f9:8a:4c:c2:75:bd:65:39:51:b4:c8:
78:d7:09:6e:b3:8b:39:0e:c7:a9:71:4e:a8:b5:f4:
4c:39:f5:a2:e3:5d:96:98:d0:bb:f7:9c:f3:67:06:
bc:27:e8:24:0f:61:b4:f3:f6:ee:76:02:0f:65:41:
b0:6e:de:b5:7d:81:8b:5e:c0:dc:ae:3d:3d:15:85:
fd:1a:f0:9d:46:66:75:08:7c:ee:96:1e:8e:fc:2d:
6e:8d:7c:7e:b1:79:5a:48:98:6c:0b:ef:6d:2b:46:
04:9a:b8:1f:5d:03:3a:7c:f8:72:5e:03:39:26:19:
cb:59:44:ad:01:0d:b6:fb:19:32:ed:ee:12:21:2f:
89:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E0:68:0E:E7:3E:2F:97:A1:2F:04:3A:FA:A0:00:5B:93:E8:B6:C4
X509v3 Authority Key Identifier:
keyid:00:3A:0D:14:B0:3E:A3:42:ED:E3:B2:F4:9A:D8:CA:A2:BF:74:E1:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ADoNFLA-o0Lt47L0mtjKor904XA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3a252a-af4b-4eea-acdb-2fdd1fd99657/1/3uBoDuc-L5ehLwQ6-qAAW5PotsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3a252a-af4b-4eea-acdb-2fdd1fd99657/1/ADoNFLA-o0Lt47L0mtjKor904XA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.192.0/19
Signature Algorithm: sha256WithRSAEncryption
17:00:eb:fa:2d:93:e9:59:05:68:bf:d9:9c:6e:87:6e:a5:4b:
e8:ac:a3:0b:35:98:26:ce:d5:d1:41:3b:74:59:a2:9d:e6:c4:
51:fa:bd:b3:5b:6a:8a:d7:93:ff:bf:6c:fe:79:72:b4:5e:5a:
36:69:3d:3a:e5:9d:81:55:21:6e:31:96:57:17:9d:9b:a8:fb:
47:89:c0:54:6b:1a:9a:24:d7:7a:f6:1f:93:90:34:55:e4:9e:
ba:98:9c:70:06:c2:92:f3:e5:1d:59:70:71:f8:02:61:9d:14:
c7:de:98:bd:86:95:9e:21:e2:33:20:b3:4e:63:86:3b:64:dd:
28:8b:72:a5:86:68:54:94:b6:44:88:33:19:af:e4:ba:09:61:
17:29:80:ba:93:20:c4:d5:2c:45:17:39:2f:5d:3c:fc:ef:8f:
1e:cb:05:6b:60:05:09:a1:07:64:50:62:ab:4a:8a:c3:50:53:
52:20:f3:78:89:e1:a7:af:11:cb:a7:a7:9e:be:b2:b6:d4:cc:
4c:87:15:c2:0a:9c:51:16:5f:f8:f5:0f:63:9b:55:d5:15:0a:
0c:44:d3:c2:3e:4e:19:95:cf:9b:53:60:81:83:16:0a:06:78:
5b:6a:64:7b:34:80:84:61:a9:af:39:d4:cf:34:78:ab:72:ee:
c2:77:96:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:46 2023 by rpki-client on console-ams.rpki-client.org