Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/njPx4R_RpBjPp_F9meB4zHTbkjo.roa
File: njPx4R_RpBjPp_F9meB4zHTbkjo.roa (raw, json)
Hash identifier: txD3pzr0sNWyrXx06iRrfX1cBncffiTpVLLI9UIxNPg=
Subject key identifier: 9E:33:F1:E1:1F:D1:A4:18:CF:A7:F1:7D:99:E0:78:CC:74:DB:92:3A
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 0473E5A1
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/njPx4R_RpBjPp_F9meB4zHTbkjo.roa
Signing time: Wed 02 Mar 2022 10:06:09 +0000
ROA not before: Wed 02 Mar 2022 10:06:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202600
IP address blocks: 194.181.44.0/24 maxlen: 24
194.181.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74704289 (0x473e5a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:06:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e33f1e11fd1a418cfa7f17d99e078cc74db923a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a0:aa:11:99:f8:e8:d8:0e:4e:7e:f2:76:6f:
7f:bf:cf:8d:8a:4e:e5:ad:83:97:e7:5e:6c:b7:26:
30:c8:00:6d:59:49:97:58:d6:a5:62:d3:e5:39:29:
8d:ed:a1:b9:d9:fe:dc:ed:b3:c4:16:12:7f:58:4c:
06:db:16:af:54:96:77:38:a9:f3:a2:ff:3e:6d:03:
40:24:0a:a4:f1:10:6e:15:3a:1c:bc:a3:69:85:e0:
9d:18:5d:5e:3b:10:da:f5:68:d0:e2:f7:7c:2d:de:
b0:4c:66:52:c9:f6:af:70:0d:75:1f:e3:42:63:ee:
5c:bc:32:f1:1b:76:9c:8a:3f:4b:98:7b:d5:fe:3e:
a5:61:31:72:3c:c3:d2:4c:a6:8b:74:ff:4a:7a:16:
a4:6a:46:63:db:82:dd:f8:1a:c0:8a:71:2c:dc:01:
75:96:cc:fd:41:9a:05:5a:3a:a4:a8:9d:b0:0e:fc:
c4:61:e6:52:10:99:2e:af:33:ac:45:c4:c3:4a:20:
37:ff:81:ea:a9:d8:70:33:69:9c:19:08:25:53:36:
e7:b0:fa:7d:27:40:70:26:bb:7d:c9:0e:77:d1:72:
d0:07:b4:77:01:d9:31:80:84:a4:e4:69:8f:ab:b7:
a4:a6:fd:4e:ef:bd:fe:42:cd:fc:99:cd:74:24:1d:
3e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:33:F1:E1:1F:D1:A4:18:CF:A7:F1:7D:99:E0:78:CC:74:DB:92:3A
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/njPx4R_RpBjPp_F9meB4zHTbkjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.181.43.0-194.181.44.255
Signature Algorithm: sha256WithRSAEncryption
08:b3:eb:33:c5:29:bc:46:59:76:a2:3f:0e:1b:3c:79:59:7e:
4b:3f:5e:43:c5:a1:8b:48:a8:72:57:7e:bd:21:df:3f:ad:10:
95:68:36:f6:d2:e6:00:82:fe:d3:b6:e6:22:58:10:d5:4f:37:
34:ab:2f:05:99:0c:a6:e0:4f:74:7e:5b:0c:b4:5c:91:f9:6d:
72:0e:3b:0e:46:20:1c:1d:f5:20:bd:7c:07:8f:40:2e:a1:c8:
3b:05:94:65:20:76:c4:eb:01:3c:5a:48:83:1d:39:96:1a:65:
bc:75:90:86:56:a6:67:bc:18:d7:e1:5d:31:d5:5f:5d:76:83:
f9:26:e4:43:8f:7e:5b:63:b3:e3:b8:0a:4a:11:a9:bd:fa:df:
fa:01:06:0b:69:ec:5a:60:2d:53:28:59:77:ac:5d:f6:ab:81:
08:89:2f:6f:b2:e4:d5:9e:fb:c2:c0:9a:6a:a3:b2:99:81:ed:
84:e6:14:bb:1e:c6:96:0e:f2:89:9b:1a:92:d4:91:62:2e:99:
7b:0f:9b:19:53:e0:87:17:11:b5:db:e2:03:ff:fc:a8:e8:0c:
68:e7:09:b8:15:dc:e8:f3:24:44:40:f4:3b:bf:8a:a9:48:77:
e7:24:d2:93:21:54:b3:99:28:62:90:d0:29:d2:47:b4:65:78:
ed:37:3c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org