Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/R4HKvtj3pIkGgLeL75cjZq2ozqs.roa
File: R4HKvtj3pIkGgLeL75cjZq2ozqs.roa (raw, json)
Hash identifier: 463vP8cyRwWyGeoKzGFCIY+bhFJf59AiDX90PPk2yuk=
Subject key identifier: 47:81:CA:BE:D8:F7:A4:89:06:80:B7:8B:EF:97:23:66:AD:A8:CE:AB
Certificate issuer: /CN=ad442bdda2a35320a96d806bf168d5b84a76d426
Certificate serial: 0514C3EE
Authority key identifier: AD:44:2B:DD:A2:A3:53:20:A9:6D:80:6B:F1:68:D5:B8:4A:76:D4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUQr3aKjUyCpbYBr8WjVuEp21CY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/R4HKvtj3pIkGgLeL75cjZq2ozqs.roa
Signing time: Sat 01 Jan 2022 04:56:42 +0000
ROA not before: Sat 01 Jan 2022 04:56:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41099
IP address blocks: 193.9.15.0/24 maxlen: 24
193.9.255.0/24 maxlen: 24
193.16.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85246958 (0x514c3ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad442bdda2a35320a96d806bf168d5b84a76d426
Validity
Not Before: Jan 1 04:56:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4781cabed8f7a4890680b78bef972366ada8ceab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:50:76:7d:fd:32:87:cb:29:0a:2f:6f:53:d1:
83:24:d5:c7:e0:da:8b:f2:a0:e0:cf:ed:4f:c2:6d:
ad:17:b9:35:de:24:67:43:ec:d3:64:ba:b5:0d:69:
98:48:9b:6e:a4:43:97:9b:76:8b:15:6b:c9:12:ef:
d9:52:1a:b0:a7:cf:1a:76:d5:7f:40:07:06:9f:68:
64:2c:e5:82:08:a6:27:09:5c:04:9e:92:17:75:d9:
b3:cc:0d:12:ab:32:bd:df:a3:aa:5b:05:38:9f:51:
a2:60:d6:1a:c1:72:ee:40:67:61:4d:9d:ba:84:dc:
f0:e0:0e:b2:74:32:c2:b9:17:a8:76:01:25:1a:ad:
ee:45:34:12:a5:dd:8f:fd:94:35:ba:29:2d:c7:50:
4d:53:10:fa:2d:67:3d:80:78:1f:52:e4:61:7b:be:
78:cd:2c:80:41:70:99:e8:06:f0:48:a2:fc:02:28:
9f:19:12:4f:43:31:34:1c:6b:c0:fc:02:be:c8:5c:
65:72:26:66:d9:ef:2b:94:16:69:ce:75:37:da:3c:
71:ba:d0:56:e4:55:86:53:85:4c:97:df:7c:1b:d7:
45:92:e2:0c:af:b4:96:5d:cc:84:b5:b3:e9:4b:b9:
e2:a6:91:75:23:21:61:82:d4:dc:e4:11:41:87:72:
93:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:81:CA:BE:D8:F7:A4:89:06:80:B7:8B:EF:97:23:66:AD:A8:CE:AB
X509v3 Authority Key Identifier:
keyid:AD:44:2B:DD:A2:A3:53:20:A9:6D:80:6B:F1:68:D5:B8:4A:76:D4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUQr3aKjUyCpbYBr8WjVuEp21CY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/R4HKvtj3pIkGgLeL75cjZq2ozqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/rUQr3aKjUyCpbYBr8WjVuEp21CY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.15.0/24
193.9.255.0/24
193.16.0.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:df:45:a1:bf:34:2e:9e:b5:05:d0:48:aa:3d:be:fb:18:11:
a3:cb:a3:a2:b8:00:10:4d:42:04:61:38:52:d6:df:41:13:22:
90:de:4a:9c:64:3c:4a:9e:3d:cd:a4:1d:94:29:8f:b6:9e:c3:
0a:e4:2b:57:34:48:79:16:e9:cb:74:d1:fc:1d:7d:fb:ff:9f:
7b:3c:d6:13:93:c9:31:2a:42:d2:1c:c3:e5:ca:7a:bb:00:33:
18:e2:4d:7c:c3:3f:f9:a0:34:83:f4:b1:f8:e1:06:f2:a7:10:
b2:dd:0d:80:71:91:3c:bf:56:5d:e0:7f:10:73:92:0a:d3:85:
b0:00:cd:9a:38:fb:53:1b:e5:30:7b:84:11:85:cf:b2:40:f3:
bc:d3:2c:aa:cd:ee:83:b3:71:b6:2b:fb:63:33:57:dd:4e:11:
f9:fd:52:c5:70:33:2b:8a:d6:69:b1:1d:93:86:39:0f:53:a8:
ad:ae:c6:92:a8:50:40:1b:d7:91:3b:bc:43:5a:49:cf:37:7b:
45:66:69:e9:27:ba:dd:ab:12:53:36:9f:30:bc:50:15:05:05:
94:1b:b0:9c:e6:79:de:64:3d:26:de:14:86:33:3f:32:e3:f7:
39:03:0e:c3:ee:f7:b3:88:7f:76:c2:78:62:62:de:1f:bc:f3:
c0:c7:34:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:57 2023 by rpki-client on console-fra.rpki-client.org