Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/18b6da-b02e-40b1-97ae-d7399292019a/1/N_I00a07dAuWFvuwHNvW1j58W0A.roa
File: N_I00a07dAuWFvuwHNvW1j58W0A.roa (raw, json)
Hash identifier: YPQtN2nqYM5fXfwuwBZZ/NH3mE0AB9dxNMBRMz4duKE=
Subject key identifier: 37:F2:34:D1:AD:3B:74:0B:96:16:FB:B0:1C:DB:D6:D6:3E:7C:5B:40
Certificate issuer: /CN=9ededf47822aee27da28d34dab1fe7a3c60a6aaa
Certificate serial: 07B3C202
Authority key identifier: 9E:DE:DF:47:82:2A:EE:27:DA:28:D3:4D:AB:1F:E7:A3:C6:0A:6A:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nt7fR4Iq7ifaKNNNqx_no8YKaqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/18b6da-b02e-40b1-97ae-d7399292019a/1/N_I00a07dAuWFvuwHNvW1j58W0A.roa
Signing time: Sat 01 Jan 2022 08:59:45 +0000
ROA not before: Sat 01 Jan 2022 08:59:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47787
IP address blocks: 176.221.32.0/21 maxlen: 32
185.99.232.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129221122 (0x7b3c202)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ededf47822aee27da28d34dab1fe7a3c60a6aaa
Validity
Not Before: Jan 1 08:59:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37f234d1ad3b740b9616fbb01cdbd6d63e7c5b40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b4:5d:d1:9c:f9:35:b5:42:8e:f5:e7:5f:90:
0b:87:fd:02:a2:fb:94:07:4c:f1:ef:71:30:fa:64:
c0:f8:03:8c:4c:45:a0:93:bb:6a:1a:7a:af:99:80:
5c:66:57:47:1a:26:31:a9:03:b7:c5:c9:13:a3:bb:
89:7c:61:91:f9:da:87:8e:26:be:b8:64:7e:3f:6f:
f1:70:38:37:c6:42:3c:28:44:3b:5a:36:0c:e2:5b:
6c:33:90:b3:2a:0e:de:48:be:21:ec:f2:89:73:3e:
5c:44:5f:bd:24:dd:d4:b4:a2:90:1f:c1:cc:81:6a:
78:80:d5:75:77:7f:9f:5e:4b:de:1e:cd:06:ae:56:
f1:34:9f:63:dd:ba:5f:f4:75:74:bb:d0:99:34:0f:
44:66:8e:d5:39:dc:21:ec:f4:86:2b:f0:4a:1b:c7:
0b:25:71:e9:89:a0:67:f2:6e:99:27:79:8f:0d:94:
31:0e:13:b0:76:3b:5d:b1:3a:86:23:88:c6:65:c4:
46:9a:0d:70:94:45:e1:ec:7f:41:59:21:0a:7a:f0:
a6:b1:d6:ae:bd:69:79:cd:d5:93:c5:3b:62:0e:a1:
9e:a6:b1:c8:5b:4c:68:19:9a:00:bf:69:ae:b2:85:
d3:e1:6d:4a:8a:b0:90:78:3c:7a:4c:e4:3b:b6:1a:
3d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F2:34:D1:AD:3B:74:0B:96:16:FB:B0:1C:DB:D6:D6:3E:7C:5B:40
X509v3 Authority Key Identifier:
keyid:9E:DE:DF:47:82:2A:EE:27:DA:28:D3:4D:AB:1F:E7:A3:C6:0A:6A:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nt7fR4Iq7ifaKNNNqx_no8YKaqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/18b6da-b02e-40b1-97ae-d7399292019a/1/N_I00a07dAuWFvuwHNvW1j58W0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/18b6da-b02e-40b1-97ae-d7399292019a/1/nt7fR4Iq7ifaKNNNqx_no8YKaqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.221.32.0/21
185.99.232.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:5c:a2:ad:c4:a4:bf:21:33:b6:c1:cd:1f:27:64:1a:fe:92:
64:d9:bc:9e:a3:71:63:bf:7a:a2:76:65:51:02:bf:e9:b4:a8:
96:bd:8f:a4:87:96:e7:f9:ab:45:1f:75:0a:09:3a:06:e6:e8:
e0:10:4d:0e:d5:be:2c:8f:4f:7b:93:ef:1f:2d:af:82:ca:66:
37:74:b8:a0:8d:81:f8:ba:03:20:f3:f2:82:53:04:3d:62:09:
22:8b:ea:7e:72:29:d6:70:d0:a6:27:4f:8f:43:34:29:cd:04:
cc:16:ac:56:1f:55:ad:2d:f5:a2:35:9a:f7:c7:ea:66:06:74:
84:74:df:63:d8:a2:2c:bd:d5:cb:64:86:f1:3a:92:62:7e:63:
4c:af:63:5b:1f:e5:28:67:19:e7:a4:ec:44:83:be:a1:94:7f:
b9:69:64:57:e7:70:1b:ef:1f:97:f9:68:6e:d0:78:02:4a:22:
20:08:90:2e:48:8e:cd:fc:87:18:fc:4e:f5:ed:8f:aa:0f:01:
6e:8e:66:03:fe:98:c2:7a:59:98:b1:69:ef:e8:3b:54:5d:e1:
cd:da:5a:9f:4d:d8:8a:1a:ee:54:1b:17:80:78:9a:3f:bc:8c:
bd:25:da:8c:10:59:f1:08:1d:a6:8f:80:80:d5:b3:6b:66:43:
6e:88:5c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:11 2024 by rpki-client on console-ams.rpki-client.org