Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/BIY_thnElOHp1W_tSNE-M3qjhIE.roa
File: BIY_thnElOHp1W_tSNE-M3qjhIE.roa (raw, json)
Hash identifier: b2K/C6HdMj7eDTc/6jUI19RDUL78qgYPB2+YkWBUs5Q=
Subject key identifier: 04:86:3F:B6:19:C4:94:E1:E9:D5:6F:ED:48:D1:3E:33:7A:A3:84:81
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 4265FA17
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/BIY_thnElOHp1W_tSNE-M3qjhIE.roa
Signing time: Sat 01 Jan 2022 14:03:08 +0000
ROA not before: Sat 01 Jan 2022 14:03:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39651
IP address blocks: 193.234.87.0/24 maxlen: 24
193.180.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1113979415 (0x4265fa17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04863fb619c494e1e9d56fed48d13e337aa38481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:89:d5:d9:cc:10:50:3a:eb:2a:5c:31:e1:b1:
c3:8c:89:48:23:ba:c0:e8:11:2e:5c:47:ad:0c:a0:
b5:fe:d2:05:0b:14:38:e9:08:46:80:88:d9:9a:7d:
4d:9b:c2:ae:c5:cb:8c:4d:ff:34:1a:39:47:d3:08:
22:0c:69:dc:fd:2e:65:ec:f5:7c:d0:68:b1:c5:39:
00:48:18:9b:4d:4e:fd:19:ff:f6:c8:19:0c:e1:35:
b8:41:91:29:3f:c5:93:fb:c9:cc:f0:25:85:e9:9c:
a6:da:e3:c5:7b:33:5b:9e:79:5e:5f:b6:16:b8:90:
21:e4:95:77:b6:77:5c:52:cb:f1:59:b8:96:02:9a:
3c:1b:6f:93:a7:58:83:75:f8:5b:cb:ae:d8:08:88:
2c:75:fb:e8:fb:a6:f4:23:db:7b:38:6d:a9:ec:66:
80:6a:ef:cf:9b:83:21:f2:0c:03:74:e0:66:e6:ca:
a8:d2:bd:0d:51:17:57:01:0b:2e:56:39:1d:40:82:
2d:e4:1b:69:8f:e6:40:a2:a2:f3:48:ac:5e:24:a9:
b6:2f:94:1d:94:b5:f3:b2:5c:7e:2f:dd:22:c7:1a:
1f:97:2a:68:ca:55:02:76:03:bd:04:f0:e7:71:1d:
56:00:d6:85:8a:b6:e6:dc:27:db:a5:f4:20:bf:2a:
7e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:86:3F:B6:19:C4:94:E1:E9:D5:6F:ED:48:D1:3E:33:7A:A3:84:81
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/BIY_thnElOHp1W_tSNE-M3qjhIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.180.247.0/24
193.234.87.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:f0:51:1e:79:bf:c1:41:a7:0f:a5:cb:cc:58:f6:32:b1:59:
0d:90:24:74:e0:2e:42:15:0b:8c:b1:35:f1:14:50:21:b4:55:
8f:4c:96:23:bd:2e:8a:8b:c6:79:61:2d:20:d9:70:1a:fa:9e:
88:f4:60:e0:49:9b:16:fb:b1:16:e8:4c:97:87:b9:f5:00:8d:
4f:b1:95:26:27:9b:50:db:45:35:a9:2a:ab:d6:ac:2d:7c:0c:
c3:49:e7:53:83:b1:8f:e0:bd:55:0d:1b:c2:76:40:7c:a2:bf:
f8:88:84:7b:98:f6:22:33:c9:f2:0a:ea:5f:cc:97:05:8c:42:
72:0a:e7:de:1e:0c:13:62:e8:b5:bf:99:6a:b2:90:b8:2a:04:
0b:ba:d6:8b:ec:6a:90:43:0a:f3:f6:0b:b8:e4:37:af:25:49:
c0:59:00:90:20:81:ee:ec:cd:3d:d8:74:5f:eb:3c:d3:b0:a0:
15:f5:e8:76:c4:fe:91:0c:4e:fb:41:f3:b2:80:c9:60:ae:be:
15:1d:48:85:95:0b:fd:63:5a:af:07:70:c8:0b:17:a6:9d:02:
8f:39:08:a1:27:9b:3d:06:58:8c:f1:54:b5:21:3e:1e:1a:95:
51:56:87:40:d8:37:e8:bc:12:2b:c5:8e:8e:7c:d7:e1:0b:9d:
5e:e2:47:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org