Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/nuUOgfPGr6UWtLVT0c6puPFvDrk.roa
File: nuUOgfPGr6UWtLVT0c6puPFvDrk.roa (raw, json)
Hash identifier: DH6Z0ir2gkV32/Pb0e+jYR0qBiIZU6CddnoRRaH/ZB8=
Subject key identifier: 9E:E5:0E:81:F3:C6:AF:A5:16:B4:B5:53:D1:CE:A9:B8:F1:6F:0E:B9
Certificate issuer: /CN=a640c751ebfb4807d84622e806cb3d0b9dd81069
Certificate serial: 129254A3
Authority key identifier: A6:40:C7:51:EB:FB:48:07:D8:46:22:E8:06:CB:3D:0B:9D:D8:10:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkDHUev7SAfYRiLoBss9C53YEGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/nuUOgfPGr6UWtLVT0c6puPFvDrk.roa
Signing time: Sat 01 Jan 2022 15:58:25 +0000
ROA not before: Sat 01 Jan 2022 15:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212801
IP address blocks: 193.108.164.0/24 maxlen: 24
2001:67c:58c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 311579811 (0x129254a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a640c751ebfb4807d84622e806cb3d0b9dd81069
Validity
Not Before: Jan 1 15:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ee50e81f3c6afa516b4b553d1cea9b8f16f0eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0a:25:47:5a:21:77:9b:46:ca:8b:7f:4a:51:
43:0d:e7:f9:60:13:77:63:fd:ae:6b:39:2e:b9:2f:
96:81:bf:59:cf:40:94:8f:53:71:49:50:17:ba:9a:
df:77:20:13:bb:68:9d:48:ad:12:19:6b:c1:0c:a9:
27:b7:d6:d6:51:06:4b:0b:d6:3b:b7:3c:97:d9:98:
2f:72:be:4a:57:7f:ae:2c:34:7c:04:e9:f2:9f:1b:
88:d3:4a:04:58:90:50:e4:a7:e8:64:f7:64:0e:e4:
29:a4:2c:49:d2:61:ec:bc:2e:61:45:87:5b:2e:42:
a5:6c:d0:cd:54:ac:36:a7:a8:00:8c:4a:9b:be:9e:
0d:96:b1:f9:60:3d:03:29:4d:c9:4b:02:a6:f8:73:
9a:40:37:ae:8c:eb:ad:1f:62:c4:b7:44:e4:7c:61:
95:cd:33:76:ba:6e:09:d9:d7:ea:71:69:0c:4f:7e:
d0:f5:ee:e6:65:a0:c5:ad:af:df:b7:5e:d2:83:72:
e5:b3:bf:01:4c:19:ab:c9:eb:d4:a5:b4:28:45:36:
70:07:b9:bb:c4:c9:d5:22:09:6c:11:5d:f4:c3:0d:
0a:ec:8d:51:7f:07:08:26:88:7c:c3:41:fb:13:7d:
ff:f7:36:6a:41:8d:a3:e6:8b:71:e9:cd:78:56:3c:
4f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:E5:0E:81:F3:C6:AF:A5:16:B4:B5:53:D1:CE:A9:B8:F1:6F:0E:B9
X509v3 Authority Key Identifier:
keyid:A6:40:C7:51:EB:FB:48:07:D8:46:22:E8:06:CB:3D:0B:9D:D8:10:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkDHUev7SAfYRiLoBss9C53YEGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/nuUOgfPGr6UWtLVT0c6puPFvDrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/pkDHUev7SAfYRiLoBss9C53YEGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.164.0/24
IPv6:
2001:67c:58c::/48
Signature Algorithm: sha256WithRSAEncryption
ac:3e:3b:a7:80:6a:7f:67:08:15:12:de:75:82:ea:a2:4f:85:
e7:9f:e9:ca:f6:61:39:aa:5a:68:72:4c:0a:00:01:2e:de:a2:
de:1c:4a:68:22:1a:df:af:31:a4:13:85:fb:4a:aa:ae:03:2c:
45:13:8e:34:fc:c3:a7:99:84:c2:01:ff:88:11:70:03:d2:ed:
97:af:b1:dd:be:a9:07:d0:ff:8e:ea:71:1f:02:a4:01:ae:b5:
d0:2a:2c:80:03:eb:c1:ed:58:04:38:07:d1:79:d3:03:15:56:
da:5a:7e:30:48:bf:a5:9c:f7:39:38:ac:9b:66:91:3d:15:ac:
8a:9b:52:a9:ab:16:15:26:c3:a3:6a:4d:06:bd:6e:33:fd:6a:
99:7f:4c:ee:0e:ac:fa:84:f5:ae:ca:df:fd:87:f3:06:f1:8c:
e3:0b:32:0b:30:ec:c1:e6:fe:c6:36:f5:7f:db:ea:d8:f4:d1:
60:ab:7e:6d:a9:e8:90:94:c0:28:c1:4b:6c:8f:66:96:0a:a9:
c2:86:94:b8:75:cc:09:45:8e:13:e8:c5:95:0b:e0:27:8d:e5:
de:8a:3e:1a:b0:34:f3:c4:ca:0d:f6:6f:f7:33:d2:e4:4c:e1:
eb:9f:d6:0b:e3:6f:a0:c3:95:de:b3:fe:5b:c5:3a:79:bb:e2:
28:e9:08:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:03 2024 by rpki-client on console-ams.rpki-client.org