Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/92b4d6-b924-4b31-94d7-23616c79ae02/1/s4ihdC6VBoRsnS1ALABvWHuBGjU.roa
File: s4ihdC6VBoRsnS1ALABvWHuBGjU.roa (raw, json)
Hash identifier: R+opvoUhZbz7OY1EtcALPwIQgpWqc2q0NKauDREqEuI=
Subject key identifier: B3:88:A1:74:2E:95:06:84:6C:9D:2D:40:2C:00:6F:58:7B:81:1A:35
Certificate issuer: /CN=82e472a2b87ff1682d362f0dde418e9311ac0464
Certificate serial: 053E4566
Authority key identifier: 82:E4:72:A2:B8:7F:F1:68:2D:36:2F:0D:DE:41:8E:93:11:AC:04:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/guRyorh_8WgtNi8N3kGOkxGsBGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/92b4d6-b924-4b31-94d7-23616c79ae02/1/s4ihdC6VBoRsnS1ALABvWHuBGjU.roa
Signing time: Sat 01 Jan 2022 14:06:32 +0000
ROA not before: Sat 01 Jan 2022 14:06:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35588
IP address blocks: 193.169.146.0/23 maxlen: 23
194.213.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87967078 (0x53e4566)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82e472a2b87ff1682d362f0dde418e9311ac0464
Validity
Not Before: Jan 1 14:06:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b388a1742e9506846c9d2d402c006f587b811a35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8a:82:e2:2a:54:d0:0b:6b:12:7b:6f:21:9a:
1e:95:4d:a9:9c:55:c6:db:3e:92:f2:b3:13:e2:6c:
6e:ab:5e:e0:9a:ed:4c:b4:98:f3:81:9c:7d:6c:3e:
40:64:b8:b6:8e:bb:a9:34:ba:39:c8:c8:fe:e3:70:
b3:8d:18:35:76:bb:2d:95:9f:be:13:ad:3c:cd:e7:
0c:d5:99:12:2a:ce:e3:5f:f8:19:67:6b:68:c5:d3:
ec:6a:89:24:b8:ee:0c:d2:e1:96:66:d9:35:3e:2c:
6e:7b:7e:2d:69:2e:f2:c2:8e:ad:8a:cc:5d:ee:8a:
e9:47:df:b3:fa:43:09:45:2d:0b:56:fd:c6:e9:1e:
49:a2:1b:7d:70:9b:4b:23:8b:e0:74:25:03:e8:2d:
a9:44:5d:02:16:d4:6d:37:9d:5f:ac:9f:de:f3:e3:
35:2a:6d:9c:1e:b5:bb:49:69:ed:39:94:f6:39:7c:
62:fc:9d:af:7a:c9:11:24:74:0f:97:1b:69:fe:6e:
7d:75:5c:7f:30:71:5d:58:9d:c3:c1:e6:7f:9f:7c:
cc:55:c6:12:43:a6:16:a7:b8:69:ca:bc:11:c1:53:
ed:de:c1:b4:6e:51:87:9d:4d:db:0e:f5:dd:19:6b:
0f:76:38:b1:44:d0:0a:5d:7e:2c:0b:01:26:91:c0:
c1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:88:A1:74:2E:95:06:84:6C:9D:2D:40:2C:00:6F:58:7B:81:1A:35
X509v3 Authority Key Identifier:
keyid:82:E4:72:A2:B8:7F:F1:68:2D:36:2F:0D:DE:41:8E:93:11:AC:04:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/guRyorh_8WgtNi8N3kGOkxGsBGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/92b4d6-b924-4b31-94d7-23616c79ae02/1/s4ihdC6VBoRsnS1ALABvWHuBGjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/92b4d6-b924-4b31-94d7-23616c79ae02/1/guRyorh_8WgtNi8N3kGOkxGsBGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.146.0/23
194.213.23.0/24
Signature Algorithm: sha256WithRSAEncryption
29:05:bb:f6:3c:f9:a5:99:18:d1:f1:9f:18:f1:35:b3:92:62:
6e:0e:22:27:66:b3:30:3f:c5:80:3e:73:04:5c:3e:86:17:9f:
dd:6c:87:d7:b2:2b:cb:ad:b6:1f:e4:c3:88:88:4c:d3:ba:38:
9c:be:cd:0d:6c:f5:e1:27:d2:8e:09:b0:8d:ad:62:3e:9f:c2:
ae:68:2c:d9:30:f5:7f:9e:e6:28:5f:bc:12:4e:23:05:53:97:
0f:f8:25:f7:23:75:dc:1a:a7:ae:8b:c0:b4:4c:c9:71:82:7a:
fe:5f:2f:ec:b5:25:66:60:b5:c1:14:a2:ee:7c:dc:d5:dc:98:
88:03:4d:fd:46:71:0e:a7:a9:28:a7:8c:d8:a3:fe:56:f0:40:
76:9b:c6:5a:7c:d4:4b:65:63:bd:db:c6:b6:27:25:a4:68:0f:
45:d9:5c:40:d2:b7:04:63:a1:c8:d7:5c:d5:b5:72:92:e4:85:
eb:ad:9c:dd:c7:97:9c:2f:d2:69:0b:4a:51:94:3b:fe:01:aa:
e9:5e:84:be:d1:e7:91:46:c5:6f:dd:76:d1:bc:de:a6:8e:b3:
1e:eb:9a:03:02:00:34:a1:9a:3e:58:01:2b:a5:e7:61:a6:17:
b8:66:9c:5b:b0:90:d2:c5:48:66:14:ba:cd:81:ec:0d:b7:6f:
5f:0f:f8:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:43 2023 by rpki-client on console.sobornost.net