Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/6387c8-c248-425f-ba40-cd6555fcd82e/1/n7jUPlQ9LdA2Drtkv54540sQlgc.roa
File: n7jUPlQ9LdA2Drtkv54540sQlgc.roa (raw, json)
Hash identifier: 7Smi+C0zH4ClzubJ0Ou28xYDGFj6/MmOp4rO70FgA28=
Subject key identifier: 9F:B8:D4:3E:54:3D:2D:D0:36:0E:BB:64:BF:9E:39:E3:4B:10:96:07
Certificate issuer: /CN=d5c65cda4b630f72bf640d16b41f72f5a0f9d751
Certificate serial: 16A9
Authority key identifier: D5:C6:5C:DA:4B:63:0F:72:BF:64:0D:16:B4:1F:72:F5:A0:F9:D7:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1cZc2ktjD3K_ZA0WtB9y9aD511E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/6387c8-c248-425f-ba40-cd6555fcd82e/1/n7jUPlQ9LdA2Drtkv54540sQlgc.roa
Signing time: Sat 22 Jan 2022 21:42:32 +0000
ROA not before: Sat 22 Jan 2022 21:42:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34964
IP address blocks: 193.189.146.0/24 maxlen: 24
2001:67c:21f8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5801 (0x16a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5c65cda4b630f72bf640d16b41f72f5a0f9d751
Validity
Not Before: Jan 22 21:42:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fb8d43e543d2dd0360ebb64bf9e39e34b109607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:dd:e2:a4:80:99:72:da:24:a4:be:8a:8b:fa:
2f:e6:28:af:43:06:79:12:9c:86:92:85:42:10:54:
b6:cd:5a:df:ab:31:ea:13:98:96:0e:2b:3f:a8:b5:
22:0e:73:9c:6f:14:db:9c:fd:89:d7:6d:14:9e:d2:
ba:86:9e:e4:ca:8e:79:29:e6:35:3d:1e:c7:56:6b:
47:30:d3:f1:16:35:e7:bd:7f:c0:0e:8d:73:62:ad:
b6:ca:2c:4c:17:c1:f8:e5:83:01:93:fd:ab:47:b9:
45:77:09:69:2d:c4:ed:23:39:57:98:26:d9:02:4a:
cd:79:45:b8:8d:74:8c:93:02:99:63:03:01:bd:86:
99:29:3e:15:86:7d:a6:7a:a3:30:44:74:28:a3:da:
d0:bc:e1:ae:d4:90:3b:74:23:a5:6b:d3:21:6b:6d:
47:34:86:a4:cd:1b:75:bc:fa:2b:46:79:8e:a7:0b:
94:65:15:8b:66:8e:bd:81:2c:4c:9f:65:88:bb:72:
7a:fa:94:2c:51:7e:54:71:af:e1:97:42:e3:90:d9:
ee:3d:77:ad:61:d4:26:26:e2:e2:3c:5c:47:cd:76:
89:5a:99:bb:ce:46:81:7a:28:bc:1c:e5:2d:68:11:
62:ed:6b:1b:5c:18:57:42:d2:f4:32:f6:c5:b9:5b:
d6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:B8:D4:3E:54:3D:2D:D0:36:0E:BB:64:BF:9E:39:E3:4B:10:96:07
X509v3 Authority Key Identifier:
keyid:D5:C6:5C:DA:4B:63:0F:72:BF:64:0D:16:B4:1F:72:F5:A0:F9:D7:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1cZc2ktjD3K_ZA0WtB9y9aD511E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/6387c8-c248-425f-ba40-cd6555fcd82e/1/n7jUPlQ9LdA2Drtkv54540sQlgc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/6387c8-c248-425f-ba40-cd6555fcd82e/1/1cZc2ktjD3K_ZA0WtB9y9aD511E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.189.146.0/24
IPv6:
2001:67c:21f8::/48
Signature Algorithm: sha256WithRSAEncryption
44:52:8a:f7:80:ac:96:48:22:b6:bc:3e:dc:c8:82:d2:5e:b3:
ee:17:ef:ff:4b:3b:52:c8:0d:3c:af:9e:1a:fd:1c:1c:30:f3:
7f:59:7a:b2:2e:8b:72:b3:75:39:34:65:73:8e:d3:1d:2f:db:
83:d8:b5:09:43:d0:e0:a0:5d:23:01:ab:64:89:78:a0:76:81:
15:d3:de:6e:af:ac:c4:3a:a0:1a:83:9b:74:20:9b:28:bc:71:
66:53:80:4b:96:22:74:8a:26:f7:e6:d6:ca:f4:42:de:9a:61:
33:75:93:7f:73:49:c3:b2:34:25:79:de:ed:46:fd:3a:c2:d1:
c9:d7:dc:b7:af:aa:0e:33:82:25:9a:f2:d1:ee:15:e1:53:ee:
93:c6:36:24:8d:bc:93:6f:d9:0e:1b:59:b4:71:cc:ef:50:ab:
de:28:6c:76:2d:30:77:db:55:9f:b9:64:01:b8:19:e8:3c:cc:
69:c0:f5:bf:38:28:a5:a0:57:cc:85:4a:96:d2:16:ef:63:bd:
0c:42:fd:2f:e7:99:6e:3a:79:93:12:d6:81:48:5c:c5:42:0e:
81:b2:6a:0f:86:ee:b7:b9:c1:aa:0b:7c:54:7c:05:49:94:2c:
a8:c6:cf:38:06:f1:8f:f5:97:a1:fd:96:7f:cb:fb:c6:2d:6d:
33:f5:0c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:07 2024 by rpki-client on console-fra.rpki-client.org