Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N9rzVPRZrtdFVDVyVLL-9ZV8EGU.roa
File: N9rzVPRZrtdFVDVyVLL-9ZV8EGU.roa (raw, json)
Hash identifier: i9XVEuuN94hNEr/Vy9nUAXnlNGrmfdbJadu8nOSXi14=
Subject key identifier: 37:DA:F3:54:F4:59:AE:D7:45:54:35:72:54:B2:FE:F5:95:7C:10:65
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33E17C21
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N9rzVPRZrtdFVDVyVLL-9ZV8EGU.roa
Signing time: Sat 01 Jan 2022 04:55:33 +0000
ROA not before: Sat 01 Jan 2022 04:55:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34478
IP address blocks: 194.27.148.0/24 maxlen: 24
193.140.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870415393 (0x33e17c21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37daf354f459aed74554357254b2fef5957c1065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c4:13:69:26:06:f7:65:0b:57:64:06:10:66:
0d:a7:e9:12:29:1f:99:ff:af:a6:2a:af:f2:2a:3a:
35:e5:4f:5e:04:fe:a4:71:70:f0:a2:07:2a:7c:92:
e0:d7:6a:0d:7e:e3:43:cc:f7:5b:f1:c3:a1:16:6b:
be:46:54:08:28:6b:62:95:67:36:f5:85:84:36:35:
6f:e7:c8:cc:55:3f:c8:ac:79:8b:86:bf:e9:ce:44:
da:a7:da:77:86:dd:1e:16:35:80:b3:bc:36:00:17:
ef:70:6e:7d:d2:5c:03:e2:44:ac:64:b2:52:a5:e4:
8e:9b:1b:f5:93:a3:b2:6b:6a:4d:43:26:87:4e:f9:
bf:56:be:3f:dc:94:e2:8c:7c:dd:56:6d:23:fa:d9:
c4:9c:38:55:5a:7a:d5:7d:93:37:5a:3d:bf:89:2c:
9c:dd:b0:8b:ca:0a:f1:22:07:61:21:97:5c:0c:1b:
4f:3b:a7:30:4c:9c:50:09:e1:39:5f:c4:2d:b5:35:
10:79:74:a7:d5:13:1e:08:fa:6b:9c:cd:ed:ed:f1:
9c:c5:f0:f4:1a:54:08:7c:96:03:40:63:81:24:3a:
5f:ea:70:21:7e:bd:ce:05:54:1b:6e:dd:02:84:b8:
9f:ea:a7:6a:d8:fe:91:c1:be:99:be:1a:13:2d:c4:
41:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DA:F3:54:F4:59:AE:D7:45:54:35:72:54:B2:FE:F5:95:7C:10:65
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N9rzVPRZrtdFVDVyVLL-9ZV8EGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.140.71.0/24
194.27.148.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:85:d1:71:53:38:ac:ff:ff:0e:28:e2:60:43:fd:19:01:fd:
b3:4c:05:6f:88:e0:89:7e:64:40:8e:ea:b5:42:7f:92:36:b2:
72:33:e1:ae:f0:65:48:8d:ab:bf:b9:bc:9a:a9:70:1d:b6:2f:
2a:45:73:ee:a8:c8:05:bc:21:c1:7b:e1:9e:5f:29:1e:b1:44:
84:42:ae:f2:b4:54:e0:83:fc:d4:51:16:1c:82:61:60:d0:4b:
01:09:f1:7b:05:91:26:a5:72:05:88:4c:98:55:ff:fc:5c:5f:
9c:83:8e:68:7d:0a:3a:b8:05:9f:82:e9:0e:46:65:80:9f:72:
3f:9d:0e:7b:8a:d5:59:95:ec:82:bc:ef:42:c3:aa:38:a0:93:
f2:9b:47:9d:8b:f0:f1:b7:8a:9a:b4:19:f9:ff:f0:7a:d6:ce:
d6:c6:16:ff:da:18:11:46:68:72:cf:36:9f:29:5a:0d:be:4d:
ce:47:4b:0c:8d:29:30:d3:43:2e:c6:35:ea:54:f0:e6:99:24:
a3:d9:85:c3:59:07:6c:f2:18:ba:71:1f:f3:02:da:90:29:72:
73:31:4d:26:a5:7d:c6:0b:70:bf:09:95:21:b7:69:20:83:86:
e4:02:6f:03:29:83:42:55:6a:a6:c8:fe:80:ea:e5:00:a2:1b:
b9:e4:c8:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org