Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/f4ca1c-35dd-4cb1-84fa-8115cafd38ce/1/h9sBdorFS557P8IW-IfLQIFgD6M.roa
File: h9sBdorFS557P8IW-IfLQIFgD6M.roa (raw, json)
Hash identifier: /CQjysSe+zzhcTNJH4QcF9NzK2R48U7lHwateG+LeAA=
Subject key identifier: 87:DB:01:76:8A:C5:4B:9E:7B:3F:C2:16:F8:87:CB:40:81:60:0F:A3
Certificate issuer: /CN=b0bd68e370e7ec25bec8e01497b2138d95dc6ebc
Certificate serial: 021E0E
Authority key identifier: B0:BD:68:E3:70:E7:EC:25:BE:C8:E0:14:97:B2:13:8D:95:DC:6E:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sL1o43Dn7CW-yOAUl7ITjZXcbrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/f4ca1c-35dd-4cb1-84fa-8115cafd38ce/1/h9sBdorFS557P8IW-IfLQIFgD6M.roa
Signing time: Thu 28 Apr 2022 09:36:12 +0000
ROA not before: Thu 28 Apr 2022 09:36:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33906
IP address blocks: 193.200.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138766 (0x21e0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0bd68e370e7ec25bec8e01497b2138d95dc6ebc
Validity
Not Before: Apr 28 09:36:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87db01768ac54b9e7b3fc216f887cb4081600fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cc:e7:95:2e:03:87:bf:5a:99:da:c4:5e:d5:
cb:d5:cc:97:5c:ba:1e:e1:8c:68:b5:78:e2:de:7d:
71:fa:8b:15:df:36:14:3d:71:1a:98:65:c4:de:cf:
18:8b:16:4b:7e:02:97:fb:f6:b4:5d:76:31:02:d3:
ac:61:0e:e6:03:93:1f:24:b6:b1:c4:21:da:56:0a:
be:c2:81:58:b8:0b:24:4f:b5:fb:b1:28:37:63:9a:
d9:f4:2b:32:5b:40:a3:e3:5d:38:c2:db:eb:e1:c4:
6f:32:9f:64:f7:82:37:37:e2:68:dd:ef:66:ff:32:
f3:6c:c2:c2:3f:70:48:49:ab:7a:c5:d2:12:0c:7f:
b4:0d:13:48:2a:19:19:d4:44:e8:30:0f:fc:d9:cf:
ee:d4:6a:65:01:a3:a1:62:15:d9:2d:a3:6e:23:89:
74:96:f2:4b:fd:b4:11:50:61:e4:4e:44:71:7d:22:
b7:1f:da:e5:63:15:70:c5:69:22:50:e9:22:77:fd:
fd:5b:39:e5:eb:ac:a1:d3:c0:2c:91:85:ee:36:c1:
a2:bd:09:7f:f3:08:b5:af:d8:b7:bc:60:71:ec:d4:
fa:ef:23:e7:dc:30:10:f8:c0:52:46:40:47:4c:9c:
a7:ae:b3:f9:d8:cc:ce:f9:e6:e8:cc:3d:fa:1d:87:
94:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:DB:01:76:8A:C5:4B:9E:7B:3F:C2:16:F8:87:CB:40:81:60:0F:A3
X509v3 Authority Key Identifier:
keyid:B0:BD:68:E3:70:E7:EC:25:BE:C8:E0:14:97:B2:13:8D:95:DC:6E:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sL1o43Dn7CW-yOAUl7ITjZXcbrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/f4ca1c-35dd-4cb1-84fa-8115cafd38ce/1/h9sBdorFS557P8IW-IfLQIFgD6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/f4ca1c-35dd-4cb1-84fa-8115cafd38ce/1/sL1o43Dn7CW-yOAUl7ITjZXcbrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.141.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:94:e6:6f:5c:e6:6a:3e:7e:cf:e0:59:f7:94:e5:33:9e:4a:
ec:74:e5:e6:73:c4:ba:cb:0d:01:78:16:70:c4:f4:7a:6d:bb:
d3:3d:79:54:63:8d:63:62:74:d8:1d:39:e9:80:d7:76:2c:83:
e0:98:e8:37:4f:a4:7b:08:54:37:c7:18:c6:05:a2:b7:f3:80:
d3:2a:ea:92:a2:fc:f1:cd:1d:ff:f1:28:7f:4d:d9:d0:c0:79:
c1:0c:01:5d:84:6b:b6:37:7b:c4:fd:d8:66:66:55:5b:c6:0e:
af:f4:2a:c8:de:82:e9:86:18:5c:a7:c2:1d:a5:3a:79:bf:8c:
40:0f:71:45:a4:97:a9:ee:9b:f4:69:6c:23:1c:54:f6:19:7f:
cf:e4:74:73:e4:67:83:14:65:e7:bd:c6:0d:5b:96:35:c4:31:
5e:4a:b2:43:a5:49:3e:06:d5:79:44:27:e1:0a:2b:51:93:35:
a9:a4:58:35:7e:ce:32:72:81:f2:88:5e:82:af:7d:9a:99:64:
e9:45:fa:50:53:5d:f4:19:cb:85:b8:99:ca:24:8e:d8:4b:b3:
bb:e2:ee:fc:da:f2:96:52:7e:58:9d:04:2e:39:66:73:7c:89:
a1:9a:53:94:d9:6c:85:87:2b:a5:36:c1:eb:2b:2e:f7:99:69:
6c:05:94:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:02 2024 by rpki-client on console-ams.rpki-client.org