Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/RJQcniaKIaK2VHtKXjpvlpYsQOg.roa
File: RJQcniaKIaK2VHtKXjpvlpYsQOg.roa (raw, json)
Hash identifier: UWhM+5sytEDXkaVBIqy4++kDfQxCedRTMhySgEuAh2M=
Subject key identifier: 44:94:1C:9E:26:8A:21:A2:B6:54:7B:4A:5E:3A:6F:96:96:2C:40:E8
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42892EFF
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/RJQcniaKIaK2VHtKXjpvlpYsQOg.roa
Signing time: Sat 01 Jan 2022 14:03:27 +0000
ROA not before: Sat 01 Jan 2022 14:03:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203426
IP address blocks: 193.235.52.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1116286719 (0x42892eff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44941c9e268a21a2b6547b4a5e3a6f96962c40e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:26:5a:23:a0:05:fc:5e:18:aa:cd:40:86:52:
e2:20:4c:94:99:d0:e0:85:c1:c7:f4:c5:ec:bb:87:
22:76:a9:f6:e2:85:4f:56:90:50:a4:1a:c5:bb:bb:
4f:0d:ad:d1:47:6c:f6:9a:86:c7:2a:61:a1:15:44:
01:79:24:73:b1:f7:d6:4e:18:74:79:3d:2b:3d:04:
ce:b7:c8:8b:26:48:ad:f9:44:85:aa:88:77:80:96:
fb:86:7a:01:b9:8f:51:31:4b:65:ea:a0:ca:30:55:
23:69:3e:e9:2d:34:f5:2d:1b:dd:31:a5:c4:da:ab:
e2:27:76:64:48:80:18:f1:69:ef:f2:40:65:2c:f8:
7c:09:8d:c7:da:87:46:f6:15:bd:3d:ce:0d:05:15:
91:99:49:a8:39:0c:22:0e:cb:7a:17:6a:71:9d:55:
1e:61:55:5d:01:55:60:2e:56:7b:a2:4b:d4:05:df:
1e:1f:e0:5a:55:36:ef:f4:fa:32:31:29:58:74:9d:
cf:39:73:5e:52:7a:d8:41:34:63:c6:fd:b3:55:d4:
ab:d9:0a:d5:bd:82:80:75:75:ef:4c:42:e8:83:67:
20:82:4c:35:b8:f8:7e:b5:97:6a:cc:25:b4:1f:b0:
bc:c5:c3:81:40:dc:06:d1:24:93:34:79:78:33:35:
eb:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:94:1C:9E:26:8A:21:A2:B6:54:7B:4A:5E:3A:6F:96:96:2C:40:E8
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/RJQcniaKIaK2VHtKXjpvlpYsQOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.235.52.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:e3:02:2b:09:4b:5b:d0:40:68:d4:b5:a3:5d:49:7a:d5:92:
a2:61:7e:3b:5b:d9:bd:0f:c9:17:35:fb:83:b7:38:1c:96:c6:
07:a5:ca:c8:03:43:0d:b9:5f:14:b1:23:68:36:32:ba:6d:87:
47:32:b2:67:43:26:89:0f:62:c5:72:bf:65:19:ef:cc:0d:db:
de:97:74:40:d8:13:a1:f5:b8:1d:50:d0:62:5e:a8:9e:a5:39:
8b:28:8b:a2:37:9a:96:12:01:f5:41:cd:8e:55:0b:97:df:ac:
41:65:18:0f:49:ed:88:59:e6:b6:03:0c:cf:58:2e:16:af:50:
66:cb:61:bd:41:39:69:f8:f5:56:cb:2b:00:0c:8b:46:b8:97:
45:3c:dd:b8:38:c8:c2:85:6c:68:02:4f:81:82:b8:83:83:55:
42:65:1a:4f:b5:73:b0:75:69:4e:4c:22:a7:3f:6f:d9:63:72:
c8:92:23:c5:54:c3:dc:7a:d4:ae:b6:55:1b:eb:10:33:f3:b2:
5d:d4:22:07:01:22:56:3b:ac:f8:18:be:1f:c2:06:af:bf:07:
ce:d0:02:8c:6c:82:ec:09:5c:7e:f5:70:b2:5a:4a:b4:ec:53:
55:a0:96:96:40:c2:c4:e3:78:8a:a2:80:f0:10:93:2c:fd:25:
99:b4:60:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org