Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/9ea68f-743d-47da-b71c-709fbe84cdfb/1/I8OTQkvQmwbi80PtbbOqfwQBtXo.roa
File: I8OTQkvQmwbi80PtbbOqfwQBtXo.roa (raw, json)
Hash identifier: 7blw1fYTdFFV2D+jTbyV45ceV6mSJ0f7fx/K00OK1B8=
Subject key identifier: 23:C3:93:42:4B:D0:9B:06:E2:F3:43:ED:6D:B3:AA:7F:04:01:B5:7A
Certificate issuer: /CN=9c8a1876fddc2b63748b457b770b79a7e66e793c
Certificate serial: 084835CF
Authority key identifier: 9C:8A:18:76:FD:DC:2B:63:74:8B:45:7B:77:0B:79:A7:E6:6E:79:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nIoYdv3cK2N0i0V7dwt5p-ZueTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/9ea68f-743d-47da-b71c-709fbe84cdfb/1/I8OTQkvQmwbi80PtbbOqfwQBtXo.roa
Signing time: Sat 01 Jan 2022 13:01:42 +0000
ROA not before: Sat 01 Jan 2022 13:01:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209585
IP address blocks: 193.16.97.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138950095 (0x84835cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c8a1876fddc2b63748b457b770b79a7e66e793c
Validity
Not Before: Jan 1 13:01:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23c393424bd09b06e2f343ed6db3aa7f0401b57a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9f:bb:15:ac:78:68:a6:11:95:5c:34:55:75:
8d:33:97:6d:18:56:8e:5c:e7:c1:43:4b:cd:7a:50:
8d:d3:a7:58:5e:45:d1:b4:3b:7c:06:a4:eb:58:4d:
cb:46:a8:af:38:a2:01:b9:22:b8:da:3a:a4:4d:61:
e2:68:ad:8e:40:b8:ae:f4:a5:45:fb:30:71:c7:c5:
96:ed:83:2c:f9:99:0f:04:6b:28:1f:34:c2:36:5c:
f0:34:5f:3f:1e:c8:c9:09:84:12:a9:2a:11:15:4b:
8e:fb:8d:1d:83:25:a3:cb:5b:69:56:7d:a0:a4:95:
1c:18:fb:63:9f:3a:b7:e1:10:df:4d:cd:8e:42:80:
a7:ff:72:26:b1:96:af:6b:95:d4:10:d0:76:75:74:
c1:a4:d2:d2:4d:16:73:68:f7:b0:de:6f:03:f2:23:
14:fc:34:0c:66:7f:ae:92:ad:82:fd:5c:5f:88:79:
32:67:29:b1:5d:c6:a2:d0:d5:55:61:06:d5:9e:ee:
51:52:ff:8c:9d:58:9c:5d:dc:d6:5e:93:18:3d:cb:
85:3f:cb:c2:1d:4a:5e:08:3c:03:d7:df:b8:4e:0d:
3a:8c:b3:ec:99:d7:46:93:d6:fd:86:bf:22:92:b9:
fb:48:68:3f:33:a9:83:d1:ea:c5:d5:ea:09:12:58:
fe:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C3:93:42:4B:D0:9B:06:E2:F3:43:ED:6D:B3:AA:7F:04:01:B5:7A
X509v3 Authority Key Identifier:
keyid:9C:8A:18:76:FD:DC:2B:63:74:8B:45:7B:77:0B:79:A7:E6:6E:79:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nIoYdv3cK2N0i0V7dwt5p-ZueTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/9ea68f-743d-47da-b71c-709fbe84cdfb/1/I8OTQkvQmwbi80PtbbOqfwQBtXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/9ea68f-743d-47da-b71c-709fbe84cdfb/1/nIoYdv3cK2N0i0V7dwt5p-ZueTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.97.0/24
Signature Algorithm: sha256WithRSAEncryption
96:fc:5f:a0:74:ad:d9:10:50:a2:f5:57:4a:04:fa:f4:da:b1:
8f:fe:93:7e:e1:60:f6:4e:94:d8:4b:94:2d:84:94:73:66:45:
e8:ba:f1:54:50:de:7e:b4:01:79:8e:af:08:3f:db:77:68:28:
50:5a:c0:aa:da:0f:4c:67:20:d2:43:05:70:b7:d3:d8:06:86:
16:55:b0:ca:71:6c:3c:59:dc:dd:49:43:ae:87:83:27:e0:49:
c6:7c:5c:bc:83:cc:8e:b4:47:1f:de:00:0e:df:5e:e7:0f:4c:
24:46:d8:55:ec:0f:86:64:d4:d6:4d:f6:09:16:3a:bd:a4:59:
cb:8b:56:ce:17:b5:79:ff:5c:8f:5c:60:33:0a:b0:ad:75:19:
42:4e:b8:04:c4:08:97:fd:f2:80:10:86:e0:87:00:f3:61:8d:
54:f0:31:1f:08:c3:bd:0c:e5:fd:78:8e:ce:a7:f3:b5:1c:a3:
18:6c:46:a9:26:36:0b:c7:20:27:83:55:41:68:03:cc:06:9b:
b5:7f:55:fd:e1:70:d0:5b:63:6c:9e:3c:0a:59:2d:eb:a5:4a:
0c:46:6d:c4:12:7d:07:6f:da:05:f8:b4:4c:dc:dd:db:ff:6a:
23:cf:ed:df:96:30:63:a1:39:ce:56:0d:11:20:1e:aa:03:aa:
c1:cc:ff:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:29 2024 by rpki-client on console-ams.rpki-client.org