Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/NmuqFqvWqMJ_HXjQJhM_QchW2m0.roa
File: NmuqFqvWqMJ_HXjQJhM_QchW2m0.roa (raw, json)
Hash identifier: hmeowvSJ2R9wB1zLRUn98ikz0YpNMp2sZtSYj6BUxJE=
Subject key identifier: 36:6B:AA:16:AB:D6:A8:C2:7F:1D:78:D0:26:13:3F:41:C8:56:DA:6D
Certificate issuer: /CN=be132774bbf8f4aa1f2c2fc317872199861ac904
Certificate serial: FC8526
Authority key identifier: BE:13:27:74:BB:F8:F4:AA:1F:2C:2F:C3:17:87:21:99:86:1A:C9:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vhMndLv49KofLC_DF4chmYYayQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/NmuqFqvWqMJ_HXjQJhM_QchW2m0.roa
Signing time: Mon 07 Mar 2022 17:31:22 +0000
ROA not before: Mon 07 Mar 2022 17:31:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.9.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16549158 (0xfc8526)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be132774bbf8f4aa1f2c2fc317872199861ac904
Validity
Not Before: Mar 7 17:31:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=366baa16abd6a8c27f1d78d026133f41c856da6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1d:f6:74:1d:f4:70:55:b7:05:a0:03:7b:68:
3e:93:63:bb:ee:f8:08:4d:75:83:fe:94:f6:a7:0a:
41:af:f1:38:3c:7a:74:2e:5a:a5:3e:15:d5:32:ce:
59:3f:1d:d0:ba:2d:8d:1e:7d:33:4e:64:40:56:ed:
cc:05:39:28:55:2e:6c:0c:22:f4:e4:02:23:36:73:
0b:30:4a:8c:5f:33:53:7f:56:e4:0e:b4:8a:66:dc:
cf:d1:e0:f0:c3:fb:98:71:97:f2:04:99:10:03:82:
0c:b2:96:cc:cb:6c:82:20:45:1b:2e:8c:41:59:ce:
d9:6b:fd:21:58:6f:9f:ae:58:cd:4a:92:49:c2:dc:
38:25:cd:7a:e0:7a:e5:dc:ad:c1:12:6a:d1:32:ca:
17:e1:58:64:a6:23:41:d1:3d:c1:72:7b:20:42:13:
fd:c6:01:a4:f0:7f:6f:c9:f5:c8:e3:a9:2f:28:52:
f6:88:11:10:2f:72:8c:69:e4:eb:3f:69:42:12:ed:
4a:b8:84:9f:a9:70:ef:4d:bd:fc:39:ef:3d:6e:f7:
c1:6c:a1:fa:c0:81:7a:fc:2b:93:66:88:bf:04:71:
45:ab:40:ce:ec:7a:e0:5e:e3:ce:00:8a:2d:33:24:
9b:b8:d0:3d:72:09:7c:72:ca:58:6c:f7:7a:0a:b3:
dd:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:6B:AA:16:AB:D6:A8:C2:7F:1D:78:D0:26:13:3F:41:C8:56:DA:6D
X509v3 Authority Key Identifier:
keyid:BE:13:27:74:BB:F8:F4:AA:1F:2C:2F:C3:17:87:21:99:86:1A:C9:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhMndLv49KofLC_DF4chmYYayQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/NmuqFqvWqMJ_HXjQJhM_QchW2m0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/vhMndLv49KofLC_DF4chmYYayQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.25.0/24
Signature Algorithm: sha256WithRSAEncryption
45:d5:fa:83:2b:49:57:e7:f2:2c:69:0b:ca:44:e6:e1:be:75:
e8:63:c1:94:b9:ef:c5:fe:c1:96:b9:ae:f5:bb:ab:b0:00:a0:
9b:37:c6:06:1c:b3:0f:74:8a:f8:3d:a3:d4:15:f0:a9:d8:f4:
6c:22:7f:70:7b:cf:10:c1:20:ea:8c:09:f0:cf:25:fd:32:8c:
d3:42:3a:af:7f:1b:9d:93:5b:af:77:d3:e5:5a:37:75:a9:ef:
08:da:1b:37:7b:b9:2d:71:aa:22:01:c8:6a:08:33:ba:56:5f:
94:12:5c:74:fd:86:3c:94:02:2a:8c:2a:b1:7a:f2:67:ec:cd:
a8:1a:87:fe:1f:0d:c5:ed:a5:32:6e:4f:eb:d7:0c:24:a2:2f:
4d:3e:d8:9f:bb:01:4e:e2:bc:48:da:9c:c2:a1:2a:05:b3:ec:
5c:5e:bc:f3:34:b7:bd:1f:7b:96:94:95:f7:41:ae:74:80:23:
53:5c:51:f3:a8:f1:94:57:f2:8e:54:c0:e2:41:4e:07:e0:f2:
53:43:af:83:d0:cf:b3:95:66:e9:d0:0d:e5:9d:50:c4:93:8d:
eb:78:f0:df:fb:03:fc:6a:c3:a9:77:94:85:da:46:93:8a:e0:
56:f2:25:95:16:41:86:84:0d:51:c1:7d:02:63:49:86:eb:cb:
f0:7d:94:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-ams.rpki-client.org