Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/3miNIig_iT3fyf2LWFHACQo5i-k.roa
File: 3miNIig_iT3fyf2LWFHACQo5i-k.roa (raw, json)
Hash identifier: yVVJOFSz0mcoAafq8ONepk2qRBladWfwLHEJgrEZZzs=
Subject key identifier: DE:68:8D:22:28:3F:89:3D:DF:C9:FD:8B:58:51:C0:09:0A:39:8B:E9
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42710863
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/3miNIig_iT3fyf2LWFHACQo5i-k.roa
Signing time: Sat 01 Jan 2022 14:03:16 +0000
ROA not before: Sat 01 Jan 2022 14:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48904
IP address blocks: 193.180.96.0/23 maxlen: 23
193.180.98.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1114703971 (0x42710863)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de688d22283f893ddfc9fd8b5851c0090a398be9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:ad:85:f3:f5:fa:ed:d0:75:4c:7b:18:ae:6c:
a4:dc:8a:47:80:ef:c9:a8:ab:84:70:15:59:2f:bc:
65:66:e0:4c:82:f7:60:46:63:12:bd:a5:92:ab:da:
a6:3c:bf:4a:4a:d2:8a:94:5b:bf:be:35:34:51:8e:
21:0f:37:4a:e9:71:86:47:84:e5:b1:6f:b3:27:5d:
da:b4:45:ae:8a:9a:55:18:fc:a6:2a:59:df:51:47:
bf:ce:45:e2:95:08:fd:67:49:4d:06:8d:3a:08:a1:
25:b9:7b:b3:12:e3:40:14:12:46:3d:89:6d:9f:45:
59:8a:c5:7b:ac:17:51:bf:be:8e:39:c9:42:b4:1c:
28:b8:5b:3a:be:56:d7:4e:bc:90:4b:a8:b0:d4:8f:
9d:c5:cf:85:44:cc:69:b6:6c:7e:57:58:18:67:16:
de:a0:85:a3:54:7d:e9:d1:73:e0:51:a8:a0:3f:06:
ae:3a:34:02:c1:73:d7:6a:82:bf:7c:e9:bb:68:8e:
b5:bf:13:33:f5:c7:7e:fe:e1:73:bd:e7:ad:51:c4:
7c:3a:21:22:96:24:c1:46:c5:b9:0d:87:cb:4c:a3:
3f:be:70:b4:ef:96:2e:f2:eb:2a:b1:ae:49:16:25:
4a:14:04:31:26:f4:10:51:c2:bb:fc:9f:d3:53:52:
94:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:68:8D:22:28:3F:89:3D:DF:C9:FD:8B:58:51:C0:09:0A:39:8B:E9
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/3miNIig_iT3fyf2LWFHACQo5i-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.180.96.0/22
Signature Algorithm: sha256WithRSAEncryption
af:30:2b:83:e1:49:2c:2c:da:02:fd:ac:c7:d5:87:0c:fb:23:
f9:12:4f:b6:c3:2a:fa:21:0c:0d:82:f6:f1:d1:d2:91:5d:59:
a9:e4:6d:30:0a:ba:3f:44:ff:fb:26:cb:e0:94:74:a6:ef:7c:
d5:79:34:f1:61:ff:93:24:41:fa:78:9c:94:78:6b:1a:cf:52:
12:ce:ea:ef:b9:15:74:b7:90:be:5a:e7:e6:14:4d:20:78:2e:
48:40:f1:fb:01:ea:18:8a:2d:da:c6:21:53:dc:e0:98:39:23:
a3:9e:5d:48:40:75:41:98:70:54:8c:15:b1:0a:e7:19:01:75:
0d:1d:19:d8:72:ca:e4:55:de:da:b4:10:40:8a:f2:c9:c5:10:
d8:02:77:b3:99:e0:07:37:0f:3a:0d:52:d5:1d:7a:2f:a8:45:
49:49:90:a7:3a:20:56:da:32:ae:8b:82:af:d5:3d:fb:d2:35:
f8:e0:fa:4e:dc:f7:06:c0:2f:39:ed:c8:cf:1f:0a:c3:47:26:
9b:94:29:46:07:5e:98:5e:73:92:09:1b:1b:bf:b0:b3:17:2b:
8c:8c:23:fa:07:9b:d3:6d:a3:a1:7c:b7:74:b6:8d:55:de:47:
df:49:a0:11:1d:9a:96:67:0f:a3:d7:87:98:61:4c:ad:95:62:
e3:33:a7:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org