Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/65764a-dd8e-401b-b731-d9c5d26419b2/1/o_BPj0Gf7U2cMjVnixpCINMlOfg.roa
File: o_BPj0Gf7U2cMjVnixpCINMlOfg.roa (raw, json)
Hash identifier: WRsm0o2062GFZR6kITvkwJo+OgrZ1904qNbYypWgPQQ=
Subject key identifier: A3:F0:4F:8F:41:9F:ED:4D:9C:32:35:67:8B:1A:42:20:D3:25:39:F8
Certificate issuer: /CN=77292dc63718eebc704ab002ecb81d3d52d4d1c3
Certificate serial: 172EEDCB
Authority key identifier: 77:29:2D:C6:37:18:EE:BC:70:4A:B0:02:EC:B8:1D:3D:52:D4:D1:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dyktxjcY7rxwSrAC7LgdPVLU0cM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/65764a-dd8e-401b-b731-d9c5d26419b2/1/o_BPj0Gf7U2cMjVnixpCINMlOfg.roa
Signing time: Sat 01 Jan 2022 05:58:10 +0000
ROA not before: Sat 01 Jan 2022 05:58:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15542
IP address blocks: 193.176.104.0/21 maxlen: 21
2001:67c:460::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 388951499 (0x172eedcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77292dc63718eebc704ab002ecb81d3d52d4d1c3
Validity
Not Before: Jan 1 05:58:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3f04f8f419fed4d9c3235678b1a4220d32539f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5a:3c:7b:bd:94:66:1c:8f:0e:1a:38:d3:a8:
6e:27:93:81:c8:3d:21:00:33:c5:ae:1d:09:4c:16:
01:70:89:65:2d:24:3d:82:73:ce:56:89:12:3e:dc:
20:3d:20:1b:f6:e4:a2:63:a6:86:79:07:6c:f4:59:
dd:39:70:09:45:6e:dc:af:db:92:10:90:67:59:22:
fa:3d:94:1f:c1:7c:ed:d8:c4:8d:00:80:7d:6f:59:
94:e7:f8:d1:21:5a:ee:a0:93:70:b1:d2:48:3b:11:
2a:79:8c:6c:12:80:9b:53:71:9c:d7:67:07:55:be:
9f:e0:a2:f2:c5:e3:39:a0:39:7e:1d:0f:c2:c3:cb:
7a:60:70:6e:da:b6:15:8e:ab:90:e9:49:ce:77:ae:
89:a4:0c:cf:e7:4c:b3:96:cf:d2:fd:80:ba:fb:f4:
d1:12:ec:45:2f:d6:22:47:91:9a:68:0e:be:74:a8:
2b:7a:44:33:0b:df:c9:03:c0:7f:b2:45:f3:ff:af:
8f:83:5c:3b:6f:68:52:c2:99:1c:ba:36:e5:6c:f6:
dc:04:6f:eb:74:b4:9c:71:3d:77:42:83:12:7a:61:
5b:74:6f:88:76:b5:24:47:9e:a9:a2:09:46:4b:10:
ec:55:2a:68:b8:2e:98:ad:f7:88:6c:68:e8:f5:fc:
45:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F0:4F:8F:41:9F:ED:4D:9C:32:35:67:8B:1A:42:20:D3:25:39:F8
X509v3 Authority Key Identifier:
keyid:77:29:2D:C6:37:18:EE:BC:70:4A:B0:02:EC:B8:1D:3D:52:D4:D1:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dyktxjcY7rxwSrAC7LgdPVLU0cM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/65764a-dd8e-401b-b731-d9c5d26419b2/1/o_BPj0Gf7U2cMjVnixpCINMlOfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/65764a-dd8e-401b-b731-d9c5d26419b2/1/dyktxjcY7rxwSrAC7LgdPVLU0cM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.104.0/21
IPv6:
2001:67c:460::/48
Signature Algorithm: sha256WithRSAEncryption
b0:92:81:26:ce:94:96:c1:e0:fd:25:64:3e:66:cc:93:e9:a1:
be:69:04:36:19:67:8a:d7:83:3a:d2:1b:ac:11:8a:94:0f:c9:
ea:6c:9b:28:e4:df:16:4c:76:42:b0:59:99:0b:5f:d5:15:bf:
42:dc:c6:ec:a6:ac:74:60:2d:fc:68:d3:ae:af:c7:2d:a3:0b:
f8:02:2b:7b:90:de:c1:84:60:53:fe:2c:3d:99:ee:39:98:ca:
57:40:bd:99:f1:61:ff:7c:a6:dd:4e:ed:5f:e1:b1:b5:82:63:
9d:96:a9:59:72:d4:bd:0a:95:09:e3:b0:a6:fa:44:2a:05:c9:
0c:5b:4a:37:bb:25:9f:32:74:9a:d3:2a:d7:a8:25:ab:f9:34:
a5:94:a3:b0:85:dd:82:3d:49:b6:58:6e:45:d2:33:a9:e3:a7:
71:77:c0:d0:0b:69:9d:16:b8:d8:5a:e4:83:e2:bc:e5:d9:51:
21:4e:0d:e1:88:c0:86:9a:52:d7:6e:ee:50:69:62:5c:46:67:
aa:d4:e5:d7:5d:e7:e7:f2:de:dd:e5:bf:27:67:9d:89:4c:06:
f7:69:af:4b:4d:88:7a:2e:b5:ca:d2:eb:9d:74:bc:94:fc:44:
90:df:c9:0c:86:05:59:b9:fc:d2:8c:e1:ac:cb:ca:ca:a8:d4:
96:1e:61:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:05 2024 by rpki-client on console-ams.rpki-client.org