Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/aba260-0850-4460-8053-94ca9c165779/1/vCYwxSAvtQre3EStidnLmxi-29U.roa
File: vCYwxSAvtQre3EStidnLmxi-29U.roa (raw, json)
Hash identifier: aneR80G85gOz9U4bemzSbHs0SHC9cQc01yCOpkKYa1I=
Subject key identifier: BC:26:30:C5:20:2F:B5:0A:DE:DC:44:AD:89:D9:CB:9B:18:BE:DB:D5
Certificate issuer: /CN=11362f3cfb94b9223c78433197c4e0ca12dbd70a
Certificate serial: 5621
Authority key identifier: 11:36:2F:3C:FB:94:B9:22:3C:78:43:31:97:C4:E0:CA:12:DB:D7:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ETYvPPuUuSI8eEMxl8TgyhLb1wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/aba260-0850-4460-8053-94ca9c165779/1/vCYwxSAvtQre3EStidnLmxi-29U.roa
Signing time: Mon 24 Jan 2022 18:06:14 +0000
ROA not before: Mon 24 Jan 2022 18:06:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49788
IP address blocks: 193.0.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22049 (0x5621)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11362f3cfb94b9223c78433197c4e0ca12dbd70a
Validity
Not Before: Jan 24 18:06:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc2630c5202fb50adedc44ad89d9cb9b18bedbd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d7:00:3d:51:8c:4e:ea:3c:a0:1d:bd:8a:4d:
35:d3:7a:17:2e:e8:ad:d9:26:f3:6c:68:a0:64:f6:
38:4d:b6:f8:51:c4:7d:c6:8d:29:19:c8:e4:19:25:
3a:ab:4a:4d:f7:48:76:11:b8:ce:4b:c1:24:84:28:
db:77:c9:04:52:3d:f2:f9:85:4a:3f:78:25:07:69:
a6:1e:b4:13:5f:eb:97:95:e3:61:7f:75:fb:08:97:
fc:ad:ce:35:96:ad:7e:20:09:6f:50:c6:6a:d3:dc:
83:68:84:e8:81:06:e7:c6:37:3d:da:aa:cf:24:bc:
f6:db:e4:16:80:ef:b5:f2:18:0e:75:c5:b5:93:81:
4b:df:75:bd:21:fc:76:ae:3c:25:e0:43:2f:78:9f:
bd:9a:94:1f:ae:70:69:25:f9:ef:fd:b7:b4:68:bf:
72:07:6d:1d:a1:b4:3a:41:55:d0:2d:2b:15:bb:82:
96:38:45:25:f2:2f:a4:60:0a:c4:2b:8a:4d:c3:b2:
83:f7:0d:57:e5:1d:c8:eb:84:0c:5d:b4:b1:54:e7:
60:39:9b:5b:91:27:42:56:21:51:47:cc:e4:02:0a:
0e:ce:17:28:ba:99:14:ce:77:ed:f6:c2:7b:fb:bd:
43:f0:b8:93:ae:4c:5d:32:23:63:6d:35:f6:93:4a:
4e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:26:30:C5:20:2F:B5:0A:DE:DC:44:AD:89:D9:CB:9B:18:BE:DB:D5
X509v3 Authority Key Identifier:
keyid:11:36:2F:3C:FB:94:B9:22:3C:78:43:31:97:C4:E0:CA:12:DB:D7:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ETYvPPuUuSI8eEMxl8TgyhLb1wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/aba260-0850-4460-8053-94ca9c165779/1/vCYwxSAvtQre3EStidnLmxi-29U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/aba260-0850-4460-8053-94ca9c165779/1/ETYvPPuUuSI8eEMxl8TgyhLb1wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.222.0/24
Signature Algorithm: sha256WithRSAEncryption
47:1c:ec:b8:03:22:94:c3:25:45:6d:86:b9:e1:b4:10:0e:72:
67:77:be:b3:a9:94:45:d7:89:d9:8a:96:61:6b:93:04:8f:ce:
fc:86:88:c8:a3:5a:d7:61:7c:10:27:07:4e:e4:d7:e5:16:64:
cf:ae:11:87:a5:1f:3d:73:91:b5:e8:32:99:61:e2:96:fd:0b:
69:45:b4:48:25:18:8c:3b:4c:8b:1c:91:4a:a8:ef:53:3f:50:
e2:85:39:fd:c4:d9:52:fd:4e:0a:02:ce:d4:b6:a7:6b:ac:fe:
63:43:d3:34:cd:96:6b:d9:ff:5a:25:18:c3:64:33:f8:f3:5a:
b4:e0:f1:34:93:09:74:07:d7:6c:5e:d1:18:70:40:b5:bb:47:
a3:5b:5b:0a:d4:17:c6:07:1e:2b:3c:83:e7:d1:8c:b4:24:fc:
dd:f9:c0:8f:b8:f5:68:16:6e:e4:6e:62:11:5b:14:07:b0:b1:
04:25:c9:9b:02:b7:d2:f6:ca:01:d7:24:8c:43:c1:29:09:62:
69:b2:d0:46:35:22:94:a8:bb:79:a1:72:7e:3d:d1:09:8e:40:
8e:b6:f9:65:db:31:5a:e8:74:30:f3:40:bc:d4:d7:06:0b:2b:
8c:b4:31:d7:c2:fb:30:4d:3c:d6:96:f0:73:23:ea:55:4e:ed:
8a:c5:ff:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:53 2023 by rpki-client on console-fra.rpki-client.org