Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/cf7d93-a076-49ff-9baf-5a37af43904c/1/BH1w0a7eCcwrzPNyU5lYk9y4c1E.roa
File: BH1w0a7eCcwrzPNyU5lYk9y4c1E.roa (raw, json)
Hash identifier: SAzGdctceH/23i2AxeijnI4H7ZPtS0qmORTNJoybeD8=
Subject key identifier: 04:7D:70:D1:AE:DE:09:CC:2B:CC:F3:72:53:99:58:93:DC:B8:73:51
Certificate issuer: /CN=eecc4cf37241ced1467c918aa276d388b0a82ed5
Certificate serial: 2A8D467C
Authority key identifier: EE:CC:4C:F3:72:41:CE:D1:46:7C:91:8A:A2:76:D3:88:B0:A8:2E:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sxM83JBztFGfJGKonbTiLCoLtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/cf7d93-a076-49ff-9baf-5a37af43904c/1/BH1w0a7eCcwrzPNyU5lYk9y4c1E.roa
Signing time: Fri 17 Jun 2022 07:53:44 +0000
ROA not before: Fri 17 Jun 2022 07:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35489
IP address blocks: 93.93.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 713901692 (0x2a8d467c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eecc4cf37241ced1467c918aa276d388b0a82ed5
Validity
Not Before: Jun 17 07:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=047d70d1aede09cc2bccf37253995893dcb87351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a2:b5:d5:84:d2:30:47:99:27:7f:8c:68:cd:
53:94:cb:96:e6:f8:31:3c:47:76:23:aa:49:fd:15:
1e:c7:c3:ca:01:01:15:4b:1c:b5:3c:85:1b:a7:be:
3f:06:0d:9e:48:41:09:27:89:8a:7b:10:9b:51:62:
42:2c:4c:1f:ba:b2:43:db:b2:c0:5f:a7:76:f5:03:
90:e0:57:fb:71:7c:cc:ca:0f:e4:8f:44:68:39:68:
f6:00:99:47:47:91:5a:a4:49:e5:9c:fc:e5:81:36:
98:46:c0:34:17:c7:0e:2e:a7:7c:9c:aa:1d:f1:44:
e8:1a:89:f5:42:cb:74:0a:68:60:ee:d7:bc:d4:1a:
a9:e3:28:38:af:6c:e6:8b:ef:39:82:8f:db:53:d9:
1b:32:0f:06:cb:8f:39:35:11:28:12:db:6a:42:33:
6a:d5:1f:bf:0f:f8:f7:5e:34:28:ed:9a:53:2f:45:
39:c4:9e:e6:10:a1:ec:05:e2:c3:aa:bf:33:d8:9d:
5a:c7:63:d3:05:44:20:49:3a:8f:f6:81:54:c5:08:
f1:c5:ba:55:0b:db:1e:c2:3a:51:8b:58:f8:7b:3c:
c0:e9:d8:96:e4:58:ce:2c:0f:9b:24:3b:15:6a:7f:
f6:0e:99:2d:7e:7f:cb:b0:44:2c:b3:cf:f5:65:c0:
a8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:7D:70:D1:AE:DE:09:CC:2B:CC:F3:72:53:99:58:93:DC:B8:73:51
X509v3 Authority Key Identifier:
keyid:EE:CC:4C:F3:72:41:CE:D1:46:7C:91:8A:A2:76:D3:88:B0:A8:2E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sxM83JBztFGfJGKonbTiLCoLtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/cf7d93-a076-49ff-9baf-5a37af43904c/1/BH1w0a7eCcwrzPNyU5lYk9y4c1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/cf7d93-a076-49ff-9baf-5a37af43904c/1/7sxM83JBztFGfJGKonbTiLCoLtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.93.9.0/24
Signature Algorithm: sha256WithRSAEncryption
67:05:20:05:91:e7:74:7d:fe:d7:e0:1f:b2:08:9d:d5:43:17:
21:7b:eb:d8:54:db:f3:5b:c9:46:ea:c3:7d:36:60:2b:1d:5e:
96:47:da:19:6b:3d:b7:45:9a:11:8a:66:23:97:ac:c0:ba:ec:
96:3f:c7:57:e1:9a:9a:63:07:bf:f4:18:4d:b9:d6:5d:d6:92:
9b:5c:12:82:2b:47:5e:72:43:ab:09:f2:c9:b5:58:75:e0:35:
8a:9f:f1:84:50:42:34:34:24:53:27:be:ab:01:09:10:80:73:
3a:fc:80:77:8f:c4:79:5f:fa:65:28:53:1e:56:6f:30:c3:5e:
c6:e7:6f:8d:f1:ad:8a:4a:ab:6e:16:0f:d0:a6:43:dd:16:82:
5c:d4:85:7f:19:44:3a:d5:6b:07:51:73:e6:62:d0:c6:ee:c1:
45:38:bf:81:01:9a:e7:da:b5:72:20:52:63:b4:9b:eb:b8:10:
5e:23:5b:4b:87:8a:1a:b2:13:55:eb:cd:0b:f2:af:9d:39:0e:
67:6c:60:d7:3e:7d:eb:96:61:93:ab:fa:83:82:a7:e0:88:03:
67:42:3f:66:c9:06:d4:06:d1:0d:46:73:70:c2:d3:d7:1f:e1:
f1:94:17:92:97:46:31:0f:1b:11:80:5d:0b:72:f0:88:35:81:
9d:db:96:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-fra.rpki-client.org