Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N-ttGXzq5a2f8nmSAvN9GT0EXfk.roa
File: N-ttGXzq5a2f8nmSAvN9GT0EXfk.roa (raw, json)
Hash identifier: 6ewGYdmzYm6tPx6dIYP0dpl6im0fJCJhPWtn+qmU8JY=
Subject key identifier: 37:EB:6D:19:7C:EA:E5:AD:9F:F2:79:92:02:F3:7D:19:3D:04:5D:F9
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33D6EF37
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N-ttGXzq5a2f8nmSAvN9GT0EXfk.roa
Signing time: Sat 01 Jan 2022 04:55:29 +0000
ROA not before: Sat 01 Jan 2022 04:55:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5474
IP address blocks: 193.140.111.0/24 maxlen: 24
193.140.108.0/24 maxlen: 24
193.140.109.0/24 maxlen: 24
193.140.110.0/24 maxlen: 24
2001:a98:100::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 869723959 (0x33d6ef37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37eb6d197ceae5ad9ff2799202f37d193d045df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ec:c5:09:72:ea:15:4f:20:12:23:5e:0d:4d:
37:93:0a:bb:83:55:09:c0:f7:76:fe:ff:35:f4:81:
39:97:d7:73:e4:a1:1e:c4:05:13:7b:89:3d:f0:7a:
6c:6d:61:bc:13:84:3d:69:33:e4:21:d9:6e:7c:b3:
91:ea:3a:b4:0d:36:8f:57:61:d6:ef:78:47:c1:87:
ba:34:ba:eb:7a:35:ed:9b:ec:6d:63:d8:da:b5:d2:
17:c2:ce:9a:8f:f8:6d:8c:bb:e0:0b:fb:aa:93:9b:
d4:e4:94:95:42:ab:e8:72:5b:f3:f2:96:c4:3d:2f:
1b:8c:48:8a:c8:81:a2:33:89:17:6c:f4:bb:cb:47:
6a:76:13:0f:63:10:ad:6f:dd:1b:37:96:b1:6f:94:
39:14:88:b1:7e:f1:d1:3b:1d:0f:ad:78:da:bf:ba:
77:5a:52:1e:94:2c:f4:da:d6:34:2a:0c:19:68:05:
e9:f5:1f:aa:3a:df:8f:e3:b6:a9:1c:d0:fc:27:37:
ee:28:d6:1b:55:db:3b:b1:b9:1d:8f:7f:fa:44:17:
b5:2c:f2:1f:bb:1d:07:7a:47:01:e3:67:e2:ea:28:
7d:1c:92:31:ad:62:5d:a5:64:69:26:e9:dd:1a:b0:
bf:34:27:b2:4f:45:1a:21:6d:9b:13:bf:03:0e:06:
3b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:EB:6D:19:7C:EA:E5:AD:9F:F2:79:92:02:F3:7D:19:3D:04:5D:F9
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N-ttGXzq5a2f8nmSAvN9GT0EXfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.140.108.0/22
IPv6:
2001:a98:100::/48
Signature Algorithm: sha256WithRSAEncryption
7c:9c:46:91:b9:7d:e4:41:2f:38:de:91:e1:00:32:5c:ce:ca:
d4:2b:67:59:1a:46:33:eb:07:2d:40:91:49:73:be:24:64:f3:
aa:7b:25:c4:7a:7c:18:ec:be:15:b0:c4:a6:57:d8:88:1e:32:
db:6a:fd:06:cb:32:91:39:b2:9e:50:63:de:fd:21:f7:c5:22:
a8:39:5c:a3:14:b7:63:ea:1f:c0:f3:3c:6f:6d:9a:b0:8a:46:
2b:c9:c5:3b:67:98:23:a0:2e:37:b1:17:11:d7:a7:b1:42:bf:
97:5d:39:a5:d5:86:3b:aa:19:c9:c1:a5:5b:0e:ee:a1:69:d4:
cb:29:d1:69:8f:ae:ff:1c:70:16:db:e1:09:ed:52:ee:55:98:
78:2d:30:24:2b:f7:74:0d:c5:2b:b5:96:ce:49:73:63:10:20:
b1:67:8e:ea:44:10:f9:fe:b1:f7:15:3d:28:73:a0:c8:d6:76:
55:54:bb:3e:4b:4c:b2:b1:45:11:94:8c:c7:8b:43:0f:d1:74:
93:92:f9:88:21:cd:07:08:02:e9:22:b4:25:97:43:9a:83:57:
7f:5b:12:6e:58:e1:ab:11:41:f1:45:4b:48:95:5e:1a:55:26:
28:77:01:8a:24:58:1b:39:89:1a:08:04:2c:d2:53:45:be:7a:
35:98:25:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:01 2024 by rpki-client on console-ams.rpki-client.org