Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/jHE1FHABiiyXRjt8Aq-uleCsCRs.roa
File: jHE1FHABiiyXRjt8Aq-uleCsCRs.roa (raw, json)
Hash identifier: epAcr3Rnlr2COKij4Ci0V8AWMetpr9/C4+96sFTiGuM=
Subject key identifier: 8C:71:35:14:70:01:8A:2C:97:46:3B:7C:02:AF:AE:95:E0:AC:09:1B
Certificate issuer: /CN=dbcc2bbaf3e0d4342a014f8b70f873cee9a8cac5
Certificate serial: 0D697863
Authority key identifier: DB:CC:2B:BA:F3:E0:D4:34:2A:01:4F:8B:70:F8:73:CE:E9:A8:CA:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28wruvPg1DQqAU-LcPhzzumoysU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/jHE1FHABiiyXRjt8Aq-uleCsCRs.roa
Signing time: Mon 11 Apr 2022 10:44:47 +0000
ROA not before: Mon 11 Apr 2022 10:44:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205198
IP address blocks: 193.16.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225015907 (0xd697863)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcc2bbaf3e0d4342a014f8b70f873cee9a8cac5
Validity
Not Before: Apr 11 10:44:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c71351470018a2c97463b7c02afae95e0ac091b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f1:dc:1b:9e:7c:35:12:71:74:bd:96:7c:bf:
71:10:ec:3f:3e:94:01:e8:d9:92:3f:b2:79:6f:08:
01:a6:82:3f:99:67:c2:43:51:7c:84:5d:64:dc:a5:
af:a7:8f:e7:44:a2:cd:0b:d9:91:60:b1:f8:00:6a:
b5:06:1a:c9:8d:40:55:e6:9f:e2:84:81:dc:e6:c2:
2e:ca:8e:52:fd:53:69:c1:21:b5:35:9e:e9:51:b1:
fd:50:c1:e2:00:0c:ff:ad:a3:f3:79:8e:0d:57:0a:
a0:fc:36:64:b6:c0:d3:26:44:92:01:d2:6a:b0:af:
80:c9:8c:ba:ec:fb:b3:be:d1:bf:65:8d:8a:9c:f3:
1f:eb:62:9d:68:00:c5:4d:40:4f:e7:2c:f2:8b:06:
cd:29:6b:e4:10:92:0f:78:fe:68:51:2d:7c:3a:5d:
43:e1:82:da:d3:de:40:1a:98:20:5b:a3:c5:a4:1a:
07:bd:8a:d7:98:d9:41:62:ab:95:74:17:5c:8f:90:
d4:23:3b:f3:83:13:aa:75:20:d4:f1:e1:20:19:a1:
61:be:a8:2a:5a:28:3b:5b:34:63:aa:58:f4:d5:e6:
03:53:f8:a0:a1:3a:4a:a5:ad:0c:21:3b:1e:34:40:
3a:a3:24:6b:6e:7c:e1:60:90:29:8f:0b:78:ee:1c:
55:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:71:35:14:70:01:8A:2C:97:46:3B:7C:02:AF:AE:95:E0:AC:09:1B
X509v3 Authority Key Identifier:
keyid:DB:CC:2B:BA:F3:E0:D4:34:2A:01:4F:8B:70:F8:73:CE:E9:A8:CA:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28wruvPg1DQqAU-LcPhzzumoysU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/jHE1FHABiiyXRjt8Aq-uleCsCRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/28wruvPg1DQqAU-LcPhzzumoysU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.234.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:cb:40:7a:07:42:0b:71:64:af:68:af:40:5f:90:ca:67:d0:
b8:3e:a0:c1:24:7e:76:9c:d4:3c:fc:98:e8:41:da:f0:f5:11:
0e:6f:4a:09:86:98:a6:2f:53:9a:29:fa:cc:a4:79:44:df:5f:
2b:25:dd:cb:d6:b0:8d:70:a9:a2:db:ae:1c:3b:e3:41:8a:4e:
65:62:2c:c7:d9:52:cd:f2:d4:2d:fa:25:29:95:6b:f2:b0:f8:
f5:e6:b3:1c:e6:99:70:e1:55:d5:90:42:ec:ee:e9:0b:c4:8c:
a6:4e:e6:d2:9a:04:22:44:3f:0c:f7:ab:4b:10:e9:bd:c7:ec:
13:6d:a6:e3:49:65:09:96:ce:c9:a4:e3:ea:5d:32:3a:2d:75:
ba:47:81:34:ca:c7:bf:a4:d8:2f:ba:53:47:14:de:06:a1:18:
0a:33:16:a8:ce:42:3b:4e:69:d8:51:de:3c:8d:c5:e2:68:fb:
ae:08:6f:18:dc:a5:a4:50:3f:e8:99:21:47:10:88:a2:64:fb:
97:42:25:2d:7e:d2:22:2a:36:47:b5:da:a0:1f:b9:29:92:b3:
1b:aa:6d:01:fc:09:45:76:ed:fc:0e:1a:4e:a8:39:46:1c:e9:
69:1f:11:33:69:39:3f:2b:40:9c:18:66:05:c4:a4:a4:b0:ea:
80:5f:e2:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:40 2023 by rpki-client on console-fra.rpki-client.org