Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/waO2AFJ6BHcFveqIgTspFIRq2NI.roa
File: waO2AFJ6BHcFveqIgTspFIRq2NI.roa (raw, json)
Hash identifier: 5CqTktz+22zPdkm7o1DNW68tcPNvLnoLMoYAAGbJXQ0=
Subject key identifier: C1:A3:B6:00:52:7A:04:77:05:BD:EA:88:81:3B:29:14:84:6A:D8:D2
Certificate issuer: /CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Certificate serial: 0182A5AA43010D65F96481BC8267A9C7DB1C
Authority key identifier: 67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/waO2AFJ6BHcFveqIgTspFIRq2NI.roa
Signing time: Tue 16 Aug 2022 07:59:35 +0000
ROA not before: Tue 16 Aug 2022 07:59:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35608
IP address blocks: 193.19.111.0/24 maxlen: 24
193.19.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a5:aa:43:01:0d:65:f9:64:81:bc:82:67:a9:c7:db:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Validity
Not Before: Aug 16 07:59:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1a3b600527a047705bdea88813b2914846ad8d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:da:0b:f9:1a:e2:f0:67:6f:1a:39:24:43:b3:
6c:24:3e:20:6e:43:be:10:f9:63:33:7c:6d:00:c0:
fb:12:ce:e8:2e:9b:17:d5:92:3f:e6:f9:5e:06:5e:
d9:e2:0c:fd:8f:d8:ca:fd:cd:81:c0:01:0c:ee:df:
67:b4:9e:dc:62:aa:8d:91:5a:e7:a8:65:ad:6a:0c:
24:6c:50:10:58:6f:7d:0d:bf:c6:31:75:81:9b:34:
3d:b4:ce:fa:3d:d8:f2:34:bd:74:f5:37:db:d9:c0:
dc:43:c6:8f:f1:37:c8:c6:a0:58:c6:30:a5:43:bb:
cc:9e:ff:a7:61:e1:6f:a9:8d:d5:ae:ca:1d:73:55:
db:77:62:38:19:ac:97:fa:7b:ec:f5:94:49:b1:e5:
41:a2:9a:8a:33:e5:c2:8a:86:74:c8:60:94:d8:42:
78:e5:41:7a:5b:64:d6:44:98:48:ed:39:a0:6e:fe:
42:74:f9:8f:ae:81:c3:d9:a8:ba:60:c1:3d:b9:3e:
99:00:e4:32:9c:9f:f5:1c:89:53:62:c7:07:b4:70:
14:1a:0b:88:45:e5:ed:c9:7f:a1:c6:e6:f3:d1:de:
4f:33:79:6c:29:9d:15:d0:7f:30:ac:76:8a:b9:ff:
41:cb:a5:e9:ac:bd:84:db:f9:6a:d8:e8:fa:4b:c8:
06:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:A3:B6:00:52:7A:04:77:05:BD:EA:88:81:3B:29:14:84:6A:D8:D2
X509v3 Authority Key Identifier:
keyid:67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/waO2AFJ6BHcFveqIgTspFIRq2NI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.110.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:d6:d8:18:7f:22:38:71:d4:0e:e6:5f:08:eb:b0:fc:99:09:
26:84:89:d6:05:32:48:3d:b3:4d:0e:ab:34:c5:75:ef:cf:46:
c0:9a:91:cf:db:41:7e:80:f3:82:c6:92:28:ac:0a:97:df:d8:
10:d0:ba:c1:db:5e:07:e2:38:03:39:71:e5:17:ef:e1:6d:4b:
2d:72:5a:f1:89:b1:4f:fa:68:40:1b:ec:0e:a4:cd:cd:f9:fd:
be:2c:bc:a4:c7:55:90:e1:08:23:97:24:70:60:c8:dc:14:4a:
ce:a2:05:18:94:20:d7:26:57:ea:8e:d0:17:bd:6e:19:d0:90:
32:d8:9a:3f:c1:fc:73:52:fa:c8:8c:09:96:e5:2f:44:08:f6:
36:76:bf:be:c5:b1:51:d4:fb:f2:b5:c9:46:f3:ec:64:21:46:
94:1e:b8:78:0f:b6:d2:04:68:a5:f9:15:3a:d8:08:8f:9d:21:
7a:3c:74:8a:bf:1b:a3:9f:f1:b3:27:c4:26:29:20:47:7c:ce:
ec:5b:55:c5:d4:cb:39:63:b4:0b:b2:07:c1:11:52:04:b0:a1:
38:59:32:de:8a:c4:19:24:57:51:08:d1:ee:37:cf:7a:f9:46:
21:b5:4f:bb:96:cd:dc:3e:f6:26:7a:cb:2a:35:97:62:98:8c:
a2:7e:17:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:55 2023 by rpki-client on console-fra.rpki-client.org