Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/nT5RloaeuSdn_4VXtm7TFsKSYR8.roa
File: nT5RloaeuSdn_4VXtm7TFsKSYR8.roa (raw, json)
Hash identifier: 9MUQ3mEwrcZCYJsRYb8pRjKnNK10a1MRyK9g1CERw5c=
Subject key identifier: 9D:3E:51:96:86:9E:B9:27:67:FF:85:57:B6:6E:D3:16:C2:92:61:1F
Certificate issuer: /CN=3ca6a9d4b59246b4e33614e1a4b591b6118e8a15
Certificate serial: 0293A9A2
Authority key identifier: 3C:A6:A9:D4:B5:92:46:B4:E3:36:14:E1:A4:B5:91:B6:11:8E:8A:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKap1LWSRrTjNhThpLWRthGOihU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/nT5RloaeuSdn_4VXtm7TFsKSYR8.roa
Signing time: Sat 01 Jan 2022 10:01:18 +0000
ROA not before: Sat 01 Jan 2022 10:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212404
IP address blocks: 193.163.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43231650 (0x293a9a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca6a9d4b59246b4e33614e1a4b591b6118e8a15
Validity
Not Before: Jan 1 10:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d3e5196869eb92767ff8557b66ed316c292611f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:95:e7:eb:81:7b:a6:29:54:f1:84:45:cf:a8:
81:96:1b:69:fe:ad:e5:c9:ca:af:0c:f6:cc:0c:20:
ce:22:60:e5:6e:72:70:f0:1b:90:ca:ef:c3:4c:dd:
14:3f:af:87:99:82:7d:e4:84:5c:21:f0:a1:e9:ff:
e9:4b:4e:bc:86:f0:38:ee:67:d5:14:c5:b7:9e:2e:
9a:2e:b5:a8:26:54:56:50:59:f5:eb:4f:2f:d4:89:
c3:7b:1f:72:49:2c:64:24:8e:81:59:b7:12:b3:08:
c9:02:91:22:ac:b5:6c:6b:15:b6:35:b2:1c:da:f9:
fa:5d:c0:68:60:a7:68:86:8f:13:10:ba:cb:66:d0:
6f:42:20:c7:8b:67:53:40:ae:f4:0c:61:76:34:b0:
f8:84:9f:9a:f2:fa:c0:39:86:99:b8:1f:c3:fc:57:
06:82:d1:44:72:75:87:8e:ab:9d:1c:1c:9d:d2:eb:
a3:83:dc:e4:6a:c6:f5:b3:bc:8a:98:97:19:aa:fb:
93:98:1d:03:e0:c4:9d:a8:d8:4b:c1:d8:ff:a0:17:
41:4a:92:b1:4e:63:6e:0e:16:9b:bc:9a:b7:08:65:
eb:ee:0d:1b:6d:8a:9f:7a:a3:89:5f:0d:8b:c2:d9:
30:ee:62:84:cf:63:ca:3c:f9:9b:f4:e6:dc:75:75:
97:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:3E:51:96:86:9E:B9:27:67:FF:85:57:B6:6E:D3:16:C2:92:61:1F
X509v3 Authority Key Identifier:
keyid:3C:A6:A9:D4:B5:92:46:B4:E3:36:14:E1:A4:B5:91:B6:11:8E:8A:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKap1LWSRrTjNhThpLWRthGOihU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/nT5RloaeuSdn_4VXtm7TFsKSYR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.112.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:f0:e5:92:c6:88:6a:55:0f:c2:6c:74:3e:7f:75:63:44:76:
c4:85:41:af:01:8b:1b:d0:e0:9a:a9:cf:a9:06:64:00:41:e5:
7f:fc:ce:fb:95:04:de:20:00:1b:05:99:3e:2f:ed:7f:69:11:
ed:83:74:b5:4e:80:22:b6:62:7f:e3:ce:ca:82:4d:33:bb:11:
65:fa:4c:3c:50:9b:88:2d:01:ee:68:85:f2:2f:5f:b9:46:ea:
f5:b4:f2:5d:69:28:42:9a:28:e0:25:be:1c:87:4c:bd:4d:8b:
f2:23:19:dc:cf:1e:9f:25:40:3f:8c:65:44:f3:bc:e1:89:45:
5c:aa:9c:35:c6:73:1b:54:a8:a8:ff:40:2c:1d:94:2a:1d:f9:
cc:10:07:92:d2:e2:a1:02:f6:d6:7d:f9:7d:99:c5:3a:32:e2:
b7:94:0b:fb:41:b7:c8:54:3f:07:4b:b6:11:e7:f2:0b:da:47:
89:03:33:59:38:3b:18:04:26:54:95:5f:00:d0:44:20:4d:42:
ea:8b:2d:c5:fd:71:53:b6:31:23:f5:a0:db:30:08:05:9e:ef:
91:12:e2:99:01:26:99:28:c6:66:09:af:81:2c:7c:db:a1:98:
42:3e:41:a4:be:78:c1:ef:d6:90:ff:14:11:c9:12:62:1a:7b:
b6:53:f4:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:52 2024 by rpki-client on console-fra.rpki-client.org