Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/de494f-5129-49f9-929e-970c83e96cbc/1/NWdqrgsCb38cFav_pE3KYBEN2eE.roa
File: NWdqrgsCb38cFav_pE3KYBEN2eE.roa (raw, json)
Hash identifier: CLy9n2DalmuN+B8jT6Qmwc6EwsnO5FUXDI8EOiaO7zU=
Subject key identifier: 35:67:6A:AE:0B:02:6F:7F:1C:15:AB:FF:A4:4D:CA:60:11:0D:D9:E1
Certificate issuer: /CN=f8aa7e47b91a6295cbf718c1f2ddb0a25c276eb2
Certificate serial: 03E92F99
Authority key identifier: F8:AA:7E:47:B9:1A:62:95:CB:F7:18:C1:F2:DD:B0:A2:5C:27:6E:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Kp-R7kaYpXL9xjB8t2wolwnbrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/de494f-5129-49f9-929e-970c83e96cbc/1/NWdqrgsCb38cFav_pE3KYBEN2eE.roa
Signing time: Sat 01 Jan 2022 14:58:48 +0000
ROA not before: Sat 01 Jan 2022 14:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57926
IP address blocks: 195.46.39.0/24 maxlen: 24
2001:67c:2778::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65613721 (0x3e92f99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8aa7e47b91a6295cbf718c1f2ddb0a25c276eb2
Validity
Not Before: Jan 1 14:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35676aae0b026f7f1c15abffa44dca60110dd9e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:5d:1b:6e:22:ef:aa:30:a4:b1:d9:04:4b:be:
bc:70:49:44:8e:da:fe:70:15:1e:8c:81:59:24:c0:
09:d3:7b:a8:4b:91:f1:22:3d:20:c1:9a:ab:07:ac:
d9:02:d2:dd:4c:a4:f2:9a:97:1a:e8:af:b2:74:be:
d3:1c:85:b4:0a:2a:22:06:59:60:d5:34:af:75:61:
83:2b:d0:a8:3e:69:75:e6:1b:1e:32:55:09:7e:ad:
0d:c7:84:84:c9:80:18:77:ac:20:76:99:63:65:31:
15:ef:fa:04:a2:5b:ae:b6:f1:6d:4f:83:a0:c5:5c:
0d:c3:d6:3c:23:53:64:52:fc:a3:f9:14:dd:9b:1e:
79:b6:d0:a9:be:1d:30:21:3b:63:59:bb:e3:4a:0d:
aa:f7:eb:94:82:b3:ce:97:5c:25:8a:0c:6a:f4:36:
5b:95:74:e2:fb:48:fe:81:f8:09:4e:d7:4b:e8:00:
65:6a:f5:0c:db:0f:9e:d4:da:24:5f:bf:77:90:ce:
0e:b3:93:30:ff:70:67:bb:83:42:f9:9b:fb:dc:cf:
9f:ca:13:fd:fc:b3:57:47:56:18:cf:2d:ab:0b:51:
f7:96:d2:9d:2f:ff:df:1a:0d:31:4f:11:b3:ef:4b:
54:82:87:ae:0a:1e:1c:79:57:91:b7:af:c0:30:a1:
89:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:67:6A:AE:0B:02:6F:7F:1C:15:AB:FF:A4:4D:CA:60:11:0D:D9:E1
X509v3 Authority Key Identifier:
keyid:F8:AA:7E:47:B9:1A:62:95:CB:F7:18:C1:F2:DD:B0:A2:5C:27:6E:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Kp-R7kaYpXL9xjB8t2wolwnbrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/de494f-5129-49f9-929e-970c83e96cbc/1/NWdqrgsCb38cFav_pE3KYBEN2eE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/de494f-5129-49f9-929e-970c83e96cbc/1/1-Kp-R7kaYpXL9xjB8t2wolwnbrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.46.39.0/24
IPv6:
2001:67c:2778::/48
Signature Algorithm: sha256WithRSAEncryption
23:a7:b1:66:28:84:dd:63:25:3f:cb:97:be:e6:83:01:33:95:
1e:b0:0b:dd:6f:eb:52:cf:2b:0e:48:f0:c4:cd:94:29:3d:10:
90:65:0c:9c:b4:cb:7f:aa:32:be:e5:7b:93:b2:2a:09:90:2c:
95:44:43:e1:41:0a:9a:c5:b4:ed:a5:b6:3c:2e:4d:e6:b7:79:
f6:fa:eb:87:84:3b:73:74:4f:51:15:e4:02:3e:3a:4a:cc:5b:
84:aa:e1:f1:0e:30:56:74:ae:3f:eb:f0:86:32:ba:c9:fd:16:
7d:eb:65:b1:34:d0:75:2c:70:97:0c:1c:8a:42:a2:e0:60:1f:
23:59:20:40:1f:ab:81:53:e5:a2:10:37:7d:19:fc:b5:ae:40:
93:85:a1:fb:ff:dc:9b:3a:2b:db:bf:ff:0e:a0:00:94:b3:7e:
10:f7:ba:b7:86:44:ce:06:57:f5:62:ea:32:61:eb:d3:b0:b6:
08:b8:3d:b6:7f:d9:0c:f3:54:24:41:54:e9:8b:f2:7a:7c:70:
b8:68:a8:a5:46:8e:d9:08:ec:91:52:77:3c:76:d4:60:21:16:
c4:c2:21:9e:12:63:cc:76:da:fc:31:df:75:cf:c4:a0:83:41:
85:a7:b1:d1:45:ff:11:d3:4e:f8:63:3b:24:37:d8:19:8f:69:
21:bc:9f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:55 2023 by rpki-client on console-fra.rpki-client.org