Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/NDWEtGoP_tO_gsCl_EbZKDkx3RU.roa
File: NDWEtGoP_tO_gsCl_EbZKDkx3RU.roa (raw, json)
Hash identifier: 9sWJoK0wKlDZM2n0NOq/lK9OLw6Gw7shVkBUJloVE/8=
Subject key identifier: 34:35:84:B4:6A:0F:FE:D3:BF:82:C0:A5:FC:46:D9:28:39:31:DD:15
Certificate issuer: /CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
Certificate serial: 053831
Authority key identifier: 22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/NDWEtGoP_tO_gsCl_EbZKDkx3RU.roa
Signing time: Thu 28 Apr 2022 07:32:14 +0000
ROA not before: Thu 28 Apr 2022 07:32:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33946
IP address blocks: 193.26.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342065 (0x53831)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
Validity
Not Before: Apr 28 07:32:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=343584b46a0ffed3bf82c0a5fc46d9283931dd15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:58:fd:37:cd:4a:7e:37:d9:9f:97:09:99:f8:
ac:2a:e5:1a:3c:81:d6:60:7a:0b:84:9d:a8:81:61:
2d:70:df:8f:23:72:37:0e:8a:65:fc:16:3b:b8:52:
56:e1:60:20:06:70:61:52:28:46:1b:34:38:87:91:
db:63:11:8b:63:4a:c0:2c:50:35:ce:5e:16:b2:51:
35:6a:ec:63:4e:5b:04:01:86:5c:e6:49:0a:a2:63:
f0:03:8b:73:1b:41:59:c3:b3:8b:f9:e6:8e:d0:f5:
14:0a:d3:0a:cc:75:8e:0f:f3:25:86:6d:dd:f5:be:
af:da:5d:9e:35:76:c9:33:d4:40:3b:56:61:92:24:
b0:39:1d:56:62:cc:8f:10:63:44:72:60:ef:c0:5a:
74:39:e8:d7:50:bb:18:1d:3c:9f:4d:3a:1f:14:1b:
0e:4b:cd:f9:d1:14:58:d5:51:d1:79:fd:4f:2b:1f:
15:2a:23:6b:e4:9e:84:d9:fb:f5:7c:45:89:f3:ee:
5f:58:0d:8b:1c:ec:d6:68:a0:f5:9c:16:93:56:58:
2c:2b:a9:fc:ec:ee:50:da:49:3a:a5:3d:76:5e:22:
37:0f:76:05:aa:05:92:2b:a5:bc:45:e9:84:9b:38:
8c:9f:45:8b:8c:8f:40:c8:20:32:18:9c:6c:cb:c1:
03:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:35:84:B4:6A:0F:FE:D3:BF:82:C0:A5:FC:46:D9:28:39:31:DD:15
X509v3 Authority Key Identifier:
keyid:22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/NDWEtGoP_tO_gsCl_EbZKDkx3RU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.7.0/24
Signature Algorithm: sha256WithRSAEncryption
28:e7:f9:16:c9:1c:ae:49:ad:f7:2c:36:d1:d1:87:db:3c:b8:
63:83:d4:8d:24:8f:b2:0d:99:62:e5:28:ee:55:ab:2b:07:a2:
e5:9c:2c:8a:dc:32:c5:7d:c7:b3:54:c5:a5:09:4a:2b:cf:da:
a4:a4:0e:a3:88:69:3d:09:be:f8:c7:4d:8a:6a:b4:2a:d2:84:
0b:ea:8d:f2:6a:1c:67:a6:88:af:16:2a:8c:fd:c8:0d:8d:23:
f7:21:ee:78:6d:be:3e:57:d9:9e:0a:a2:92:d0:ae:64:ce:bd:
00:03:ae:fa:89:5f:f5:82:22:82:91:09:43:a6:c6:11:1e:4e:
60:af:91:72:f4:4c:3e:62:dc:0e:33:bd:0d:a0:04:e5:c4:be:
be:35:0a:26:8c:13:fe:4b:5f:f8:95:fa:bd:28:60:31:b9:47:
df:94:3f:d5:7f:c2:9c:e9:97:c5:a9:b2:b1:a1:f4:8b:9d:f8:
2d:1f:2d:ee:0f:f9:e5:9b:78:70:d5:77:12:1e:80:4f:83:82:
92:03:19:3f:1b:37:6c:27:19:41:62:32:44:03:c4:da:69:fe:
41:de:69:49:85:f4:83:ce:e4:5a:f8:a0:7f:17:07:fc:ff:cb:
d5:92:fe:ae:b5:7d:c9:0e:ed:bd:ba:7d:d5:b0:97:4c:1f:c7:
27:bc:27:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:56 2023 by rpki-client on console-ams.rpki-client.org