Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/991c5c-783f-4106-9662-65f8732161a6/1/1cWhcNkhMVKxuHQCFGP0As17Qlw.roa
File: 1cWhcNkhMVKxuHQCFGP0As17Qlw.roa (raw, json)
Hash identifier: WlZmEyJhVlTCrQwcPh3iDoR0Vwg4OAiQSX8abTgMObg=
Subject key identifier: D5:C5:A1:70:D9:21:31:52:B1:B8:74:02:14:63:F4:02:CD:7B:42:5C
Certificate issuer: /CN=7087f88e18ba345f5db0b06a2a34d4486e4e6dc5
Certificate serial: 03226565
Authority key identifier: 70:87:F8:8E:18:BA:34:5F:5D:B0:B0:6A:2A:34:D4:48:6E:4E:6D:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIf4jhi6NF9dsLBqKjTUSG5ObcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/991c5c-783f-4106-9662-65f8732161a6/1/1cWhcNkhMVKxuHQCFGP0As17Qlw.roa
Signing time: Sat 01 Jan 2022 05:04:29 +0000
ROA not before: Sat 01 Jan 2022 05:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212202
IP address blocks: 193.163.73.0/24 maxlen: 24
2a10:9080::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52585829 (0x3226565)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7087f88e18ba345f5db0b06a2a34d4486e4e6dc5
Validity
Not Before: Jan 1 05:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5c5a170d9213152b1b874021463f402cd7b425c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1a:b4:1d:da:6f:33:9c:ef:e5:ed:9f:64:66:
22:79:26:25:a4:08:0a:92:f3:c0:40:52:30:1b:5e:
3d:ee:5f:f6:c2:a7:60:4e:c0:18:ae:d0:8e:3e:85:
b1:8b:e8:68:dd:52:80:c1:65:c3:c7:f2:80:36:bd:
1a:f3:9c:19:b2:b1:07:40:45:25:d1:2c:e4:3a:cf:
27:ed:d9:fd:9a:4f:89:03:0c:26:29:80:51:cb:39:
45:70:97:f4:b5:f4:db:d9:0e:46:87:fb:bd:ec:65:
4e:6f:ef:e7:08:1e:c9:b8:4c:96:30:40:3a:99:6c:
fe:40:4b:22:27:32:ea:78:0f:3d:31:8f:d4:9f:18:
ca:07:2c:c2:69:7a:75:5f:d9:89:b4:1d:4b:00:6d:
23:59:bf:2c:12:28:20:8f:cb:e8:d6:00:94:dd:85:
4f:b6:f4:ae:73:a8:ff:e5:f4:8d:d2:23:1a:a7:38:
30:2d:24:f3:8a:0c:68:69:7c:a7:92:b6:0b:d3:ca:
a4:0f:24:a5:d6:9c:d3:d5:0d:d1:3e:80:26:08:b7:
fb:e7:a5:74:b7:c3:02:21:ff:cf:9b:09:d7:d1:1e:
0e:04:42:3a:58:46:9a:cc:67:e5:ad:db:ad:9a:2f:
dd:95:1a:b3:6a:c6:d3:c8:6a:5b:b9:10:78:ba:d6:
5d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C5:A1:70:D9:21:31:52:B1:B8:74:02:14:63:F4:02:CD:7B:42:5C
X509v3 Authority Key Identifier:
keyid:70:87:F8:8E:18:BA:34:5F:5D:B0:B0:6A:2A:34:D4:48:6E:4E:6D:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIf4jhi6NF9dsLBqKjTUSG5ObcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/991c5c-783f-4106-9662-65f8732161a6/1/1cWhcNkhMVKxuHQCFGP0As17Qlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/991c5c-783f-4106-9662-65f8732161a6/1/cIf4jhi6NF9dsLBqKjTUSG5ObcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.73.0/24
IPv6:
2a10:9080::/29
Signature Algorithm: sha256WithRSAEncryption
38:66:8e:a2:8b:58:08:8d:36:da:c7:d9:2a:ef:71:09:27:21:
53:c6:17:95:13:89:dd:49:e3:74:48:aa:d0:a4:27:dc:06:3b:
5f:bf:8c:62:65:68:a3:f7:44:3e:a1:88:0c:1f:e2:f7:23:80:
70:02:c9:f1:cd:a0:86:49:37:c8:5a:8f:6b:cf:46:28:73:d7:
df:11:c4:64:aa:22:08:21:9f:29:c2:71:db:f2:1e:f3:6b:da:
34:db:fb:89:38:ce:93:ff:60:22:9f:65:7f:c0:c1:a1:b8:a5:
05:d7:8e:d1:0d:cf:c3:20:c0:b1:51:fd:01:8c:01:84:ac:3e:
c5:fe:ce:19:a7:20:22:75:61:83:7f:8e:2a:ef:92:1d:aa:e4:
ca:61:6f:ca:15:17:f8:9d:d0:80:fe:51:4e:f9:9d:74:4c:59:
22:39:c6:bf:ab:10:ff:1a:04:de:06:90:9e:65:ab:b5:c6:b9:
02:86:a3:6c:4c:4f:41:6f:11:80:95:27:2a:db:df:11:12:79:
be:bd:b2:60:a9:97:d2:08:f5:2b:a3:db:d5:c2:1d:4b:f3:ca:
a7:6b:9e:94:8a:b1:05:58:dc:db:03:c5:80:47:63:78:39:a5:
e8:1d:a4:00:43:82:66:3a:a9:3d:f7:ae:41:8e:7e:b1:1f:cc:
ff:fb:cd:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:36 2024 by rpki-client on console-ams.rpki-client.org