Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/njQrZ3XFvgar7yDk3_liWnURW4g.roa
File: njQrZ3XFvgar7yDk3_liWnURW4g.roa (raw, json)
Hash identifier: yXhOh+33R9HeS4q+SuyM39Efcu/ohQlPJzVQr7WC/vQ=
Subject key identifier: 9E:34:2B:67:75:C5:BE:06:AB:EF:20:E4:DF:F9:62:5A:75:11:5B:88
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 395EC8A3
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/njQrZ3XFvgar7yDk3_liWnURW4g.roa
Signing time: Thu 12 May 2022 14:09:47 +0000
ROA not before: Thu 12 May 2022 14:09:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203912
IP address blocks: 178.175.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 962513059 (0x395ec8a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: May 12 14:09:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e342b6775c5be06abef20e4dff9625a75115b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:94:54:d2:4a:db:86:45:21:36:88:de:39:9b:
de:77:6e:36:a0:f5:9d:76:16:69:e6:43:ed:36:92:
c0:ee:13:0c:77:65:30:13:d7:4d:1c:9c:c8:8e:fd:
c4:0c:36:8f:6d:a8:4d:2c:4e:c1:1c:6b:c3:ff:f5:
34:1c:c5:67:fc:fc:be:40:85:39:a6:24:c6:48:ca:
91:d0:81:54:ce:7c:6c:03:57:3f:dc:95:40:2c:95:
c7:cc:f2:ef:ad:67:37:71:d2:a3:42:02:a8:f3:29:
31:f1:86:42:9b:bd:da:e3:95:03:04:0d:83:c1:cb:
12:e0:75:e9:57:27:59:ca:f1:be:aa:c2:dd:ec:4f:
1f:9f:46:82:ef:0f:b4:d0:ba:e1:53:fa:3c:a4:3f:
52:ac:5d:c1:3a:dc:02:2e:da:11:bf:aa:3d:51:e8:
5a:c3:52:0b:2d:1b:85:bf:98:b3:0f:fb:f5:aa:d7:
cf:ab:20:9a:c2:8f:4e:6f:07:7f:b6:33:2a:34:f7:
08:21:14:f3:c1:6a:35:20:a7:bb:a1:49:5d:fa:03:
4d:91:5a:6a:8e:a6:9c:e3:60:39:f3:77:aa:47:73:
46:0f:61:40:55:7f:29:1d:76:1b:0b:69:3b:f8:3b:
e8:90:83:16:00:4e:fe:6d:9d:2e:6e:8f:5e:50:1f:
22:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:34:2B:67:75:C5:BE:06:AB:EF:20:E4:DF:F9:62:5A:75:11:5B:88
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/njQrZ3XFvgar7yDk3_liWnURW4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.153.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:36:17:46:6c:74:b2:cf:ed:95:57:bd:e1:a5:3f:0d:0a:e3:
5e:c9:9c:c5:5d:57:ae:0f:7d:e4:a1:b1:39:0c:ce:58:b8:19:
d4:97:88:9a:8a:5c:41:99:84:97:93:22:be:91:c2:51:24:c6:
06:d9:7d:5b:ca:60:2f:f3:85:14:cc:91:0e:f3:51:71:bf:b3:
d7:b6:a7:c3:44:18:ee:28:0d:3d:cb:dd:24:23:bb:4d:9f:36:
01:54:74:e6:47:fe:e7:f4:2b:13:55:ab:23:72:0f:2e:91:40:
b8:87:e1:9b:49:a9:ff:35:d5:40:27:93:9d:0f:ff:50:98:ac:
29:69:2f:6a:c7:b8:3d:25:f2:f1:c5:b9:72:f2:e5:1a:dc:52:
cf:76:88:03:52:8c:72:db:f5:dc:4e:c9:6d:5c:f1:36:f7:49:
fa:78:36:a0:af:20:2e:91:ae:c9:e0:83:2d:6d:f2:e2:b6:ff:
75:34:b0:81:4a:35:6c:76:7e:3f:8c:df:c5:b8:03:bf:bf:12:
ec:22:1f:40:52:6d:cb:cd:4b:cf:0a:50:72:c8:66:ed:0c:56:
9f:00:c1:da:ad:0e:a5:e5:07:cc:a4:7a:45:ab:cf:2c:db:d6:
96:bf:5c:e5:ee:b5:e4:24:d9:17:88:d5:26:a0:82:c0:c8:91:
8d:b2:2d:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-ams.rpki-client.org