Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/nb1gRD7thpdQ7VXvPCt5ZbjaIrU.roa
File: nb1gRD7thpdQ7VXvPCt5ZbjaIrU.roa (raw, json)
Hash identifier: 8McYjr08P1EPYGr8k/Tc7/ZkW8rDkOizOgcJKiP8U50=
Subject key identifier: 9D:BD:60:44:3E:ED:86:97:50:ED:55:EF:3C:2B:79:65:B8:DA:22:B5
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2C9908EB
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/nb1gRD7thpdQ7VXvPCt5ZbjaIrU.roa
Signing time: Sat 01 Jan 2022 04:59:32 +0000
ROA not before: Sat 01 Jan 2022 04:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24724
IP address blocks: 193.111.37.0/24 maxlen: 24
193.111.38.0/24 maxlen: 24
212.91.8.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 748226795 (0x2c9908eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9dbd60443eed869750ed55ef3c2b7965b8da22b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5f:e7:12:fb:9d:3c:35:3f:9e:56:fb:d2:45:
a4:a0:cb:2b:9f:b9:ef:96:2e:cf:e0:7f:90:fe:a6:
15:4f:49:dd:50:4d:72:29:39:99:da:b3:db:e2:7c:
c0:03:da:85:eb:85:f5:7d:2c:6c:57:7c:1e:0b:d3:
4b:d6:1c:57:b8:84:ed:61:da:21:92:fd:3d:64:38:
e4:00:e3:f4:2a:1f:04:cd:b0:89:fa:12:b8:c1:72:
78:0e:46:57:cb:53:4d:08:a8:fe:7a:6a:52:49:78:
79:c3:1d:76:ac:dc:d3:6f:a5:ff:29:a8:cb:4e:c5:
70:3b:98:25:dd:c5:41:8a:4e:6c:2b:1b:ec:87:cc:
c8:a9:dc:8d:37:42:8e:96:7b:3f:c8:54:bb:c8:82:
5a:fc:7a:f8:57:c2:3d:3b:4b:f8:85:0a:08:b7:be:
7b:53:89:ac:20:eb:1e:0b:ac:e9:f5:1c:ab:86:d3:
8e:f0:77:c7:75:6c:48:a5:5b:30:df:72:45:5f:39:
4d:65:10:2d:e7:60:58:39:39:c8:4e:3f:0a:50:7b:
2c:3d:03:f4:24:a4:66:eb:74:5f:79:83:75:c2:da:
e2:75:47:90:4c:d3:4c:4f:12:d2:97:e7:a5:93:36:
a4:71:24:fe:36:a9:22:9f:d2:40:17:ce:71:87:74:
29:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:BD:60:44:3E:ED:86:97:50:ED:55:EF:3C:2B:79:65:B8:DA:22:B5
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/nb1gRD7thpdQ7VXvPCt5ZbjaIrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.37.0-193.111.38.255
212.91.8.0/23
Signature Algorithm: sha256WithRSAEncryption
53:25:72:cf:f2:b0:60:10:e2:4e:b7:0f:20:3c:58:a3:59:59:
80:b9:6d:58:e1:66:ab:fe:e0:a6:05:86:ff:06:08:18:1d:8f:
ee:46:16:a1:b9:6a:77:49:ea:87:cc:6e:fa:9a:27:a2:34:b2:
53:02:ed:76:d9:34:31:98:76:53:ad:5a:4c:31:7a:76:1d:ef:
8f:9a:c3:59:34:dc:a8:83:3b:b8:67:a5:46:1b:64:37:a3:37:
27:34:7c:22:bb:ae:b6:36:72:0c:26:24:60:45:07:f0:5c:93:
a6:77:4f:b1:fb:5a:54:48:9d:4b:ff:d0:90:1b:d9:2d:c1:7e:
86:e6:2b:c1:e7:8c:e9:7c:fa:14:ab:31:d9:b2:41:cf:71:cd:
24:56:37:37:3d:ac:0b:cd:ff:7d:a8:74:8c:ad:6e:a1:3e:a6:
f2:75:dc:33:27:7f:23:38:c6:b5:6e:dc:d2:58:56:db:d7:e6:
98:b2:36:59:81:b4:4c:c3:80:30:9c:dd:40:e7:e6:76:9a:99:
d5:75:8d:4c:86:cd:d8:37:cd:a1:22:1c:4f:b7:76:83:54:4c:
a6:38:b6:35:3f:73:45:16:5e:38:8b:31:c2:df:dd:18:6d:65:
d8:80:5e:9e:02:b3:45:22:c3:63:2c:de:f3:41:06:94:a1:da:
22:6e:88:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:57 2024 by rpki-client on console-fra.rpki-client.org