Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/9cWo8dQ4IANjRAHLJg4CegUdw0I.roa
File: 9cWo8dQ4IANjRAHLJg4CegUdw0I.roa (raw, json)
Hash identifier: jGe/8pZ4ozOAMS6ZzD//KmPOdQJZIr+jZTZXiT/yyxI=
Subject key identifier: F5:C5:A8:F1:D4:38:20:03:63:44:01:CB:26:0E:02:7A:05:1D:C3:42
Certificate issuer: /CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Certificate serial: 014E8BC7
Authority key identifier: EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/9cWo8dQ4IANjRAHLJg4CegUdw0I.roa
Signing time: Sat 01 Jan 2022 11:01:52 +0000
ROA not before: Sat 01 Jan 2022 11:01:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15943
IP address blocks: 193.102.58.0/24 maxlen: 24
193.101.120.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21924807 (0x14e8bc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Validity
Not Before: Jan 1 11:01:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5c5a8f1d4382003634401cb260e027a051dc342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e3:aa:c0:94:91:95:4c:78:9a:3b:8c:3e:f9:
19:f0:68:e2:4d:7e:f2:e9:21:89:43:63:b7:52:6a:
b0:a6:d8:87:79:fb:a8:02:3e:7c:ab:eb:80:8a:ac:
47:89:f0:8c:b0:ac:ee:1e:2f:37:f1:c3:89:9e:10:
a0:63:a7:e6:e1:c4:00:22:f2:34:8f:a9:0d:09:3d:
ad:c5:13:84:b1:cd:97:a9:ad:c3:0c:75:be:39:c8:
d2:7c:3d:da:c4:20:5e:60:76:e1:6d:dd:10:f2:32:
9b:1c:79:da:c3:6b:92:74:3c:f2:c0:e9:e3:e4:a2:
b1:2a:52:c6:09:00:92:a8:0a:1c:b3:fd:82:0d:81:
74:28:7b:80:ed:3b:5c:0c:bd:2b:83:ba:e6:e6:5e:
7a:10:93:dc:22:f5:61:4b:04:c7:02:77:cb:bc:11:
47:1d:15:00:bf:cc:d0:98:de:eb:1d:c0:ca:6f:26:
c5:4c:5f:96:fc:aa:64:12:8a:a0:4f:ab:f4:2d:c1:
ef:69:4b:e1:e8:4a:f8:98:f1:86:7a:65:2a:9e:28:
43:02:03:bc:dd:4a:0b:72:07:27:4a:a6:6a:e8:ac:
ac:38:23:ca:a0:c7:cd:8a:34:21:31:38:02:09:ea:
53:8b:b2:cf:6b:15:6c:a0:97:6f:5f:ab:3a:ec:36:
f5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:C5:A8:F1:D4:38:20:03:63:44:01:CB:26:0E:02:7A:05:1D:C3:42
X509v3 Authority Key Identifier:
keyid:EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/9cWo8dQ4IANjRAHLJg4CegUdw0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.101.120.0/23
193.102.58.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:1d:8d:e0:b1:1f:dd:19:56:c1:44:98:5f:af:90:fb:33:1a:
8d:95:8e:8b:84:2e:14:8e:f7:f9:de:57:a0:bf:4c:6e:e6:d0:
f9:cb:4e:96:86:47:ef:ea:81:b0:6e:1e:e5:30:bf:d8:b6:65:
55:7f:8d:3b:2c:67:8b:b1:b6:d0:27:f4:b9:9c:30:b6:d9:2c:
0b:b6:c9:b0:3c:3e:69:75:4b:f1:75:2a:67:31:53:f0:68:d5:
fd:80:2c:fe:99:9a:43:70:f3:47:96:a3:32:7e:e5:78:92:e3:
95:5c:82:ad:03:1a:38:8d:02:ca:26:6d:95:d0:7c:eb:1c:ce:
0f:75:a8:29:13:a7:70:03:4a:fb:e6:9b:42:01:ff:df:91:2b:
c8:da:a2:f6:26:e8:d0:2e:65:41:98:70:87:ca:8f:fb:18:9d:
f6:1c:18:a7:ad:07:4f:a3:31:bb:02:c1:fb:70:6c:69:1d:53:
14:4b:9a:36:66:85:70:59:f1:60:09:63:f5:84:0c:8b:db:a9:
96:15:48:b1:4e:c7:e2:0d:60:5d:8b:51:ae:24:c9:07:9d:ea:
43:8c:8c:69:c6:4c:52:ff:db:fa:78:ea:4b:d2:f2:0d:a7:37:
59:9c:74:e6:25:67:7a:48:14:f8:35:35:f7:16:05:5e:92:88:
46:bb:9a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:50 2024 by rpki-client on console-ams.rpki-client.org