Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/e22ef8-50b7-4046-9208-a475aebb08d5/1/dhEJXvV-Ka1zPfT169VnvbOF8yE.roa
File: dhEJXvV-Ka1zPfT169VnvbOF8yE.roa (raw, json)
Hash identifier: WgEFQvM1zq9qf+FRRDH8oUcVmV0IPS28WbtR93W0W/c=
Subject key identifier: 76:11:09:5E:F5:7E:29:AD:73:3D:F4:F5:EB:D5:67:BD:B3:85:F3:21
Certificate issuer: /CN=037b3df6d78399f031828556fcd90ebfdf4d0d2d
Certificate serial: 0405C925
Authority key identifier: 03:7B:3D:F6:D7:83:99:F0:31:82:85:56:FC:D9:0E:BF:DF:4D:0D:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3s99teDmfAxgoVW_NkOv99NDS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/e22ef8-50b7-4046-9208-a475aebb08d5/1/dhEJXvV-Ka1zPfT169VnvbOF8yE.roa
Signing time: Thu 03 Feb 2022 22:57:48 +0000
ROA not before: Thu 03 Feb 2022 22:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12732
IP address blocks: 193.34.122.0/24 maxlen: 24
193.34.120.0/22 maxlen: 24
193.34.120.0/24 maxlen: 24
193.34.123.0/24 maxlen: 24
193.34.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67488037 (0x405c925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037b3df6d78399f031828556fcd90ebfdf4d0d2d
Validity
Not Before: Feb 3 22:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7611095ef57e29ad733df4f5ebd567bdb385f321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cb:df:77:4e:17:71:a0:20:89:8a:9e:33:1f:
07:21:72:17:64:45:76:f6:39:f1:21:9c:a3:a1:dd:
90:86:c3:32:e1:b5:8a:c2:92:14:ee:1a:d8:d7:c5:
4c:32:db:1b:0c:c6:b2:3e:e0:9c:2d:27:c1:05:2b:
50:12:0d:55:dd:df:b1:2f:c7:40:03:f8:b9:6c:5e:
97:18:6a:f3:10:42:22:57:e5:46:86:df:90:3a:cf:
84:71:da:37:70:e0:ab:5d:00:a5:a1:1f:96:a4:ce:
0e:02:70:18:3a:5d:ba:87:4c:a6:71:78:2f:2e:a4:
4e:c6:51:cd:20:bc:60:e3:a0:00:e0:5a:90:2f:a2:
26:a2:2b:ee:61:39:71:3e:18:4c:b8:47:34:d4:ce:
49:d9:9a:0c:05:e6:32:1e:59:71:fa:d6:44:0a:b5:
4c:4f:b5:ad:c0:b5:82:67:50:c2:c2:f9:25:15:13:
43:a5:c1:7a:28:c8:a1:aa:53:d0:60:0a:a4:53:ff:
26:c7:87:b8:57:ed:61:d9:a9:23:2c:74:5b:b2:65:
df:d2:b0:42:11:66:6a:a2:04:39:e0:b9:df:f4:05:
3a:0a:50:8e:e5:c9:8a:5e:b0:4c:8b:39:0d:db:ec:
b9:e8:79:07:1f:e5:35:e8:20:76:45:0b:e2:74:f7:
1f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:11:09:5E:F5:7E:29:AD:73:3D:F4:F5:EB:D5:67:BD:B3:85:F3:21
X509v3 Authority Key Identifier:
keyid:03:7B:3D:F6:D7:83:99:F0:31:82:85:56:FC:D9:0E:BF:DF:4D:0D:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3s99teDmfAxgoVW_NkOv99NDS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/e22ef8-50b7-4046-9208-a475aebb08d5/1/dhEJXvV-Ka1zPfT169VnvbOF8yE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/e22ef8-50b7-4046-9208-a475aebb08d5/1/A3s99teDmfAxgoVW_NkOv99NDS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.120.0/22
Signature Algorithm: sha256WithRSAEncryption
cc:e2:fd:08:fb:68:b6:7e:ba:c5:9c:48:f2:60:90:46:f3:8d:
c5:98:fe:a2:28:9b:69:44:4f:9a:57:9d:5c:67:52:b1:78:c5:
61:40:e0:bd:8e:45:60:5c:c3:07:2d:b9:4f:a5:9d:a2:dd:9f:
ad:49:60:dc:93:e5:3d:df:02:b0:8e:af:62:d9:70:5c:76:a9:
6e:1a:40:b4:08:a9:bf:ba:ba:cb:cd:9c:80:c2:df:b0:52:b7:
07:b3:e8:c2:57:2a:fc:19:95:be:6d:6b:0e:9d:f0:47:07:2a:
f2:ef:9a:60:a8:7a:8e:ce:bc:af:93:d9:a0:db:f2:0e:31:08:
24:f6:89:ec:eb:4e:65:5a:e9:d5:d6:4d:af:32:22:b2:5c:95:
dd:84:7a:67:dc:3b:ee:8a:67:cc:86:2f:ad:3e:02:6f:3f:1a:
89:e8:ec:2b:bb:ca:45:2d:f2:8a:63:20:06:8e:f5:31:97:3b:
c6:d0:84:fa:36:dd:d1:40:b2:fc:c0:8b:b8:66:7b:75:6e:59:
b2:ae:33:f3:0a:95:32:e1:3a:f6:dd:99:02:2c:26:da:5b:0e:
6c:11:ab:75:1a:01:3e:66:cf:93:4e:ad:ac:d0:42:45:b1:4f:
ae:f9:01:bd:39:14:a2:7b:f1:b6:ba:cf:ea:6d:04:3a:d9:10:
33:17:01:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:57 2023 by rpki-client on console-fra.rpki-client.org