Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/R_8RHusEAITcUWhrPPLe5n9W1b8.roa
File: R_8RHusEAITcUWhrPPLe5n9W1b8.roa (raw, json)
Hash identifier: IERu9h79ZJhsuBSI9mMVBkRkZpocEk0bsYyLjcLQ9wQ=
Subject key identifier: 47:FF:11:1E:EB:04:00:84:DC:51:68:6B:3C:F2:DE:E6:7F:56:D5:BF
Certificate issuer: /CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Certificate serial: 01D1CF05
Authority key identifier: 80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/R_8RHusEAITcUWhrPPLe5n9W1b8.roa
Signing time: Sat 01 Jan 2022 15:02:08 +0000
ROA not before: Sat 01 Jan 2022 15:02:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211391
IP address blocks: 193.3.57.0/24 maxlen: 24
194.105.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30527237 (0x1d1cf05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Validity
Not Before: Jan 1 15:02:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47ff111eeb040084dc51686b3cf2dee67f56d5bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6a:51:e6:6d:1b:b7:96:43:fd:1e:cc:2c:2c:
c1:37:84:dc:a3:61:0d:45:a9:df:1c:60:a7:c9:39:
c5:8a:85:c7:0c:94:c6:4b:aa:44:3f:88:d6:58:f6:
0a:9f:fb:02:78:e9:2a:6b:6a:89:34:37:13:44:ac:
ba:11:c2:ef:35:86:d3:9a:8f:d9:31:b5:68:5b:d0:
0f:15:ab:0e:b2:6b:1b:ee:53:1b:04:db:9d:9f:60:
64:dd:ed:46:1a:9b:0d:76:5f:8f:91:f5:73:ae:64:
a5:52:a0:46:48:eb:ed:f0:8d:41:19:7e:58:20:54:
5c:16:eb:51:93:a4:7f:d0:7a:f3:44:9b:58:22:8d:
c5:80:38:b7:99:59:c2:9e:5e:92:28:49:40:10:67:
53:bd:43:97:ba:1f:99:df:77:af:2b:b8:13:e3:e8:
87:cb:e4:b4:d4:b5:32:e8:20:9e:fc:80:7a:0a:ac:
7c:70:41:f0:77:d5:60:30:8f:dd:59:62:8b:64:8c:
45:1d:a0:53:d3:c0:04:6a:5e:03:41:e8:5c:dc:08:
bc:0c:eb:e2:71:aa:9b:b1:97:d0:dd:97:03:87:80:
fc:0b:43:14:55:67:a8:fb:02:3b:ee:8e:5f:06:6d:
02:db:f1:f5:12:12:2b:19:46:50:9f:9b:db:fc:ae:
66:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:FF:11:1E:EB:04:00:84:DC:51:68:6B:3C:F2:DE:E6:7F:56:D5:BF
X509v3 Authority Key Identifier:
keyid:80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/R_8RHusEAITcUWhrPPLe5n9W1b8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.57.0/24
194.105.36.0/22
Signature Algorithm: sha256WithRSAEncryption
49:88:8c:81:d5:36:cb:d4:ce:bf:09:08:85:94:fa:36:2f:0c:
37:40:a4:25:c7:e8:4f:2c:37:35:8c:57:39:75:6d:fa:37:83:
63:40:70:3e:34:21:23:75:e3:03:6a:6d:c7:2e:21:6a:28:bf:
45:3d:1c:a4:e4:e2:e0:a6:8c:ff:b8:75:3b:67:05:0e:bb:bf:
f7:18:88:01:26:c4:5b:32:b5:7a:88:b0:22:8c:2a:25:c4:c9:
e4:57:ac:67:a3:4b:76:76:93:a1:c9:a1:25:a3:f8:3f:4a:c7:
29:21:66:04:d9:5f:dc:54:3f:c7:e0:7b:95:a3:be:28:20:47:
22:dc:39:b6:60:e9:b0:f1:85:d2:1d:f6:ef:c3:3c:93:54:49:
d0:f0:7a:3a:2d:ea:6e:68:9f:b9:76:2c:a6:cd:0e:fe:2f:9b:
2c:4d:27:d8:0d:16:e9:6a:87:b4:b5:10:fe:47:8e:30:81:15:
ba:44:f5:63:16:ae:c2:6a:f3:04:c9:9a:0d:e8:19:ba:94:ca:
2b:e8:c6:41:61:a1:02:ec:a7:f5:29:50:ec:8c:8c:1f:e4:f3:
ae:7e:bc:40:00:b2:b9:45:a0:aa:99:72:87:3f:49:e2:c7:5e:
b0:8b:85:3d:d2:52:f2:ad:79:c2:42:33:03:ac:08:33:24:09:
be:45:ff:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:19 2024 by rpki-client on console-fra.rpki-client.org