Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/nFeBzIW1q_nxKezpggViV18belo.roa
File: nFeBzIW1q_nxKezpggViV18belo.roa (raw, json)
Hash identifier: qv0laAS8QxQxl+ACFPFfEbpTfkYvJicP8ZP9DB98ZR8=
Subject key identifier: 9C:57:81:CC:85:B5:AB:F9:F1:29:EC:E9:82:05:62:57:5F:1B:7A:5A
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0D23864C
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/nFeBzIW1q_nxKezpggViV18belo.roa
Signing time: Wed 04 May 2022 07:01:41 +0000
ROA not before: Wed 04 May 2022 07:01:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 194.163.88.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 220431948 (0xd23864c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: May 4 07:01:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c5781cc85b5abf9f129ece9820562575f1b7a5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:41:f0:c9:db:67:b5:05:2e:07:0a:6d:06:03:
9f:54:d8:87:73:86:e9:c0:6e:f1:5e:2c:3c:23:77:
5c:55:4a:bd:cd:f8:d1:65:8a:14:b5:e1:bc:41:04:
fb:e5:d3:b2:96:bd:4d:8f:e6:5c:23:c0:4e:2c:27:
67:54:1c:69:75:e7:84:eb:73:93:7f:0a:90:ae:ce:
7a:5c:eb:82:43:15:e8:10:8b:86:79:ee:e2:5b:c5:
2a:7f:08:6f:00:f7:43:de:00:92:b4:35:fc:db:10:
97:d8:60:ba:92:da:ef:ac:3a:9c:b4:97:47:54:5a:
3b:87:76:5e:b3:06:de:9d:5d:8f:f0:36:04:c2:20:
ef:47:3e:9b:19:bb:36:e6:b1:e4:df:c1:52:83:e4:
8a:78:1d:7e:fd:5e:85:06:95:b9:33:2e:51:93:4d:
4a:45:c3:69:24:bb:46:e0:cb:38:fc:b2:6d:99:b0:
4a:d3:d7:6a:ee:fe:d9:ea:a8:62:0f:ad:ca:00:1c:
0e:18:dd:d1:61:26:c0:35:5d:a6:d1:fb:10:c0:7f:
d8:4b:4c:00:f7:16:b5:ba:ad:f7:44:9c:69:e3:ea:
b5:f6:f0:d0:12:a2:02:41:c4:c4:d2:ca:89:55:fa:
cd:57:4c:6f:a7:69:f7:e5:d8:07:f6:90:c8:ed:86:
33:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:57:81:CC:85:B5:AB:F9:F1:29:EC:E9:82:05:62:57:5F:1B:7A:5A
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/nFeBzIW1q_nxKezpggViV18belo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.88.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:78:67:6c:83:bf:80:ad:23:ec:fb:5a:72:f0:9f:10:ce:24:
d8:da:f7:2d:9c:cb:35:bf:ee:63:ab:b8:d6:25:c2:ca:f0:ae:
dd:d9:50:d9:bc:a3:41:99:55:b4:a6:c0:9a:85:23:cb:6d:0a:
48:e2:97:84:ed:1a:11:10:1d:ad:3d:98:e1:f9:3a:d3:ec:d1:
05:ca:a7:72:0e:e2:74:fb:7a:08:63:eb:e3:22:d8:4b:97:8b:
f6:a2:a9:74:80:d8:f2:cd:a1:54:12:b3:e7:8b:d0:d0:bf:df:
a0:40:23:9e:6a:b5:ee:e3:01:91:f9:e5:50:f9:91:c4:d5:93:
39:80:5f:e2:d7:4d:83:80:cd:89:09:72:af:9d:c8:2d:72:5e:
a7:74:a8:ec:3c:cd:2a:7c:46:f1:1f:fc:3d:62:18:59:19:44:
0b:33:56:9d:77:75:38:13:2a:47:e3:64:2e:43:38:c2:6a:0e:
3b:52:50:be:97:c3:5b:a7:14:6a:db:db:ce:8d:e5:df:81:c9:
0f:5c:80:92:2a:7d:f4:f5:0b:b3:6b:d5:6c:52:89:31:80:9b:
d4:57:40:ef:8c:d1:c2:42:a9:70:65:bc:e5:02:8c:41:8b:57:
49:91:b3:4b:34:2a:44:ec:83:7f:6d:90:ad:9d:fb:b9:67:e7:
ef:33:71:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org