Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/1-BoxEfYFKymLBbN47cCWQZlQMDQ.roa
File: 1-BoxEfYFKymLBbN47cCWQZlQMDQ.roa (raw, json)
Hash identifier: +6C+Cl1Cb4Qchm8CVYmjZrGbQn3XwxNU1UxN21OxEuo=
Subject key identifier: F8:1A:31:11:F6:05:2B:29:8B:05:B3:78:ED:C0:96:41:99:50:30:34
Certificate issuer: /CN=74c7f8e91b81fe6487307c5226eb044f92396cea
Certificate serial: 12C8112F
Authority key identifier: 74:C7:F8:E9:1B:81:FE:64:87:30:7C:52:26:EB:04:4F:92:39:6C:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dMf46RuB_mSHMHxSJusET5I5bOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/1-BoxEfYFKymLBbN47cCWQZlQMDQ.roa
Signing time: Sat 01 Jan 2022 16:06:50 +0000
ROA not before: Sat 01 Jan 2022 16:06:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33915
IP address blocks: 193.176.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 315101487 (0x12c8112f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74c7f8e91b81fe6487307c5226eb044f92396cea
Validity
Not Before: Jan 1 16:06:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f81a3111f6052b298b05b378edc0964199503034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:02:d8:43:ed:94:0d:79:71:90:7d:15:e6:bb:
51:46:fd:c9:a2:b5:cc:05:2f:35:3f:8a:ec:ec:06:
1d:f1:69:b7:a9:3f:ba:41:cb:e1:f1:7d:37:1b:9c:
ee:d1:65:5d:13:0c:47:96:a0:f6:ba:b5:45:d1:a7:
45:9a:ba:bc:c0:cc:41:c5:bb:94:f4:9b:5c:5a:55:
f5:94:9a:e2:47:8f:17:33:33:a8:1d:94:9e:4c:3a:
4e:c3:7c:82:fe:0d:bd:b2:4d:af:47:84:b4:7b:46:
0f:01:09:45:bc:29:a1:81:70:2a:27:fd:f5:af:58:
c7:b2:8b:d5:ee:5e:8a:94:bd:31:a7:56:35:9e:6d:
8e:bd:c3:b8:bd:19:88:b3:49:52:e6:0d:54:61:29:
7b:e4:a8:bc:2b:b6:4a:fa:1c:e6:e0:35:a7:02:b3:
c3:cd:e1:45:92:f4:27:95:fb:7d:b1:7d:10:be:a2:
c9:15:82:41:f0:84:f0:af:ba:57:b0:ca:64:73:cc:
50:17:1d:c5:da:21:bf:d8:62:71:be:eb:d3:b1:a9:
6f:27:38:4c:f9:f2:89:90:58:10:9e:1e:d7:bb:27:
7f:d1:99:75:f3:05:bd:c9:51:75:54:42:9e:b8:ee:
34:d3:27:af:84:40:4e:63:d7:b1:7c:8a:8a:a6:de:
94:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:1A:31:11:F6:05:2B:29:8B:05:B3:78:ED:C0:96:41:99:50:30:34
X509v3 Authority Key Identifier:
keyid:74:C7:F8:E9:1B:81:FE:64:87:30:7C:52:26:EB:04:4F:92:39:6C:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dMf46RuB_mSHMHxSJusET5I5bOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/1-BoxEfYFKymLBbN47cCWQZlQMDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a9c6ac-f9a2-4462-8aaa-8b64f7c3a76e/1/dMf46RuB_mSHMHxSJusET5I5bOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.136.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:dc:a7:f1:c0:b6:0d:c8:6c:51:b7:4e:59:e9:e6:ce:9b:18:
2d:88:b7:63:aa:20:da:c0:de:e9:0f:2f:ba:08:41:5e:e8:23:
d5:67:e6:5f:3b:c1:86:de:94:bf:4d:ac:2a:29:85:45:57:ac:
c5:85:84:99:ba:b0:45:b4:ca:46:ab:bd:46:7c:8f:3c:f9:65:
05:77:cb:e4:54:49:c8:82:94:f9:93:4d:72:0c:fd:1e:94:23:
6e:88:5f:87:79:51:68:d1:89:c4:04:80:7b:53:11:92:78:0f:
19:d3:78:ad:9c:a3:d7:cb:51:74:97:5b:29:94:18:06:eb:22:
c2:a8:e7:d3:5d:33:8e:51:de:ee:5e:c3:ea:e2:97:17:d0:f6:
4b:2b:e9:e3:40:ce:c3:b3:98:95:09:85:3c:84:4c:11:35:d0:
ec:df:0e:dd:d9:0d:fb:8b:ad:07:dc:e5:80:4f:3c:a8:39:2b:
9d:07:36:78:20:27:27:8a:ee:fa:49:b1:68:39:75:6c:8a:68:
0b:0b:27:13:4a:da:80:83:5b:e9:ef:8d:69:0a:13:0f:aa:aa:
e5:d1:7c:04:89:72:51:f2:40:08:63:d2:cd:67:46:da:8b:db:
dd:5c:0e:d0:63:fc:40:a1:37:66:c4:2e:da:6a:6d:d3:49:f1:
c8:46:84:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:03 2024 by rpki-client on console-ams.rpki-client.org