Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/NhBHcSEn0V0eOG_lDjxqSxBTu8A.roa
File: NhBHcSEn0V0eOG_lDjxqSxBTu8A.roa (raw, json)
Hash identifier: 100kwFCG7Lf+rCkv1b9ugOJf4xuKuxhhl9BN6Pvfn7k=
Subject key identifier: 36:10:47:71:21:27:D1:5D:1E:38:6F:E5:0E:3C:6A:4B:10:53:BB:C0
Certificate issuer: /CN=0b5caf262fdbfcc5ff30e28a5104646e27a89262
Certificate serial: 082D9DF4
Authority key identifier: 0B:5C:AF:26:2F:DB:FC:C5:FF:30:E2:8A:51:04:64:6E:27:A8:92:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1yvJi_b_MX_MOKKUQRkbieokmI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/NhBHcSEn0V0eOG_lDjxqSxBTu8A.roa
Signing time: Sat 01 Jan 2022 02:53:52 +0000
ROA not before: Sat 01 Jan 2022 02:53:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39686
IP address blocks: 193.247.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137207284 (0x82d9df4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5caf262fdbfcc5ff30e28a5104646e27a89262
Validity
Not Before: Jan 1 02:53:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=361047712127d15d1e386fe50e3c6a4b1053bbc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:40:0b:0e:49:e7:3a:0a:33:a3:4f:a1:dc:ef:
d7:99:8c:b4:a3:16:7b:85:28:41:4a:35:fa:df:75:
0a:a2:4a:e5:a0:b3:fa:56:b0:38:b6:c0:4c:8f:e7:
55:71:f7:44:f6:13:3c:a6:e9:75:c1:64:47:22:18:
6b:ce:5f:1e:fb:5f:99:ac:28:be:80:94:e8:9f:9f:
8a:07:67:ba:a3:44:f2:12:9b:39:bb:e9:25:85:1a:
0e:35:39:64:cb:12:62:69:14:46:c7:02:9e:49:b0:
c8:a0:1d:3a:fd:37:14:59:37:a0:74:91:17:0e:7a:
f0:96:65:a4:66:5d:97:53:cc:60:85:a9:dd:50:92:
6e:6a:b8:05:65:5a:87:16:85:95:92:d6:43:c7:0d:
c7:64:58:de:4c:74:29:ad:3a:b4:87:24:72:ef:5b:
dc:2e:0f:11:42:2d:78:6e:e3:01:ee:71:34:98:94:
59:ca:76:77:e3:b2:57:f2:9c:90:ec:0b:13:5d:c4:
28:1f:92:50:0f:a6:36:46:2c:c8:aa:4e:1d:8c:e0:
df:19:eb:a1:7d:a5:27:3a:d7:6c:f2:3b:b9:96:41:
58:cd:fc:34:71:55:19:72:d7:f2:de:59:9f:0a:73:
74:5a:df:c2:03:c2:22:be:fb:e3:ff:65:ca:ef:47:
c3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:10:47:71:21:27:D1:5D:1E:38:6F:E5:0E:3C:6A:4B:10:53:BB:C0
X509v3 Authority Key Identifier:
keyid:0B:5C:AF:26:2F:DB:FC:C5:FF:30:E2:8A:51:04:64:6E:27:A8:92:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1yvJi_b_MX_MOKKUQRkbieokmI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/NhBHcSEn0V0eOG_lDjxqSxBTu8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f4b8e9-686d-41be-9891-df1e95d7edd9/1/C1yvJi_b_MX_MOKKUQRkbieokmI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.198.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:ad:cb:e1:43:8d:88:1e:be:62:ab:c9:6e:94:7b:83:fe:f7:
5f:5a:f3:e9:f2:37:19:e6:f9:62:63:22:6d:1f:cb:03:62:11:
18:a5:f2:f3:d9:b0:3e:00:e9:9b:79:dc:b7:75:a7:56:f0:24:
ed:f9:2f:98:da:14:d1:c0:66:45:06:26:2f:b4:14:e0:ad:ff:
a7:16:49:03:e0:cb:a0:7e:2c:d3:9a:49:1d:6c:36:60:e2:f3:
1b:6f:1f:a5:e5:5b:7f:34:e9:e3:34:8e:92:be:b5:ba:8d:0e:
c3:f0:91:d6:ea:ab:8e:bd:13:0d:0a:98:a5:38:10:64:32:07:
08:5b:98:7e:9a:bf:25:30:63:5a:4f:b1:f1:98:56:4b:06:44:
3e:76:d3:00:cf:df:47:11:a4:25:6b:14:0f:6d:e0:3e:c9:6c:
d9:a4:d9:28:8c:a3:c0:2f:0d:ae:95:0a:e9:b7:64:09:4c:40:
eb:9d:46:6a:e8:e4:77:4f:7c:58:3c:24:3b:df:81:5f:2c:51:
57:cb:92:1a:3a:f0:d9:d3:98:81:9c:f6:9a:3d:39:87:dc:fa:
cb:b1:e5:38:0e:2f:57:b9:5f:12:2f:b9:6a:c0:98:d8:49:b5:
e4:d1:bd:16:0b:74:4f:30:74:3f:01:f2:14:bb:9d:4f:d7:c8:
00:21:71:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:17 2023 by rpki-client on console.sobornost.net