Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NoSCnXvUoBvq05TZWzHYiygExsI.roa
File: NoSCnXvUoBvq05TZWzHYiygExsI.roa (raw, json)
Hash identifier: lTuoR+1hOTdU8KCn2LSvM4jQk1S6u18r6nkV/ZlOwYg=
Subject key identifier: 36:84:82:9D:7B:D4:A0:1B:EA:D3:94:D9:5B:31:D8:8B:28:04:C6:C2
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 344DFB
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NoSCnXvUoBvq05TZWzHYiygExsI.roa
Signing time: Tue 22 Mar 2022 11:58:46 +0000
ROA not before: Tue 22 Mar 2022 11:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20860
IP address blocks: 193.37.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3427835 (0x344dfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Mar 22 11:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3684829d7bd4a01bead394d95b31d88b2804c6c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cf:91:50:9a:46:fb:04:c3:76:91:16:ec:73:
07:ff:50:45:cd:07:b0:12:c5:03:e7:77:db:c0:55:
75:4c:94:34:87:3e:b1:1c:d7:ad:8a:01:4e:7c:d7:
82:7a:80:d9:f6:ed:69:cb:c8:72:53:4e:0d:61:7b:
74:89:d5:5d:fc:a0:fd:92:6e:dd:4f:9f:5c:bb:c6:
b1:62:39:f4:df:97:25:84:6b:75:cd:f1:1c:13:71:
cf:a3:60:48:a9:e8:a2:df:12:fb:c4:0b:ef:3a:5d:
00:01:74:f6:ca:15:6c:9c:c4:7e:d0:27:7a:10:90:
3e:00:e1:ee:ea:e4:4a:b5:63:23:e3:3d:c5:d7:47:
af:3b:b2:a5:92:3b:3b:e1:53:1b:d2:0c:ec:c0:3f:
c9:7c:cb:02:61:f3:ad:69:52:c7:72:d4:3f:af:e4:
bf:48:65:d9:79:7c:6d:c2:5c:1a:53:d0:40:8f:0c:
be:bf:89:98:e7:41:97:b9:ca:79:95:9a:bf:b1:79:
f5:12:9c:c4:df:33:0b:6c:8b:e8:68:a7:5a:89:98:
3b:33:3c:d4:e0:bd:38:01:49:65:be:7b:76:80:5d:
fb:19:72:f9:19:51:ef:b3:f4:1d:eb:ce:60:db:ce:
3e:a5:fa:05:9d:a2:ad:2c:00:0c:c0:cf:97:7f:51:
6a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:84:82:9D:7B:D4:A0:1B:EA:D3:94:D9:5B:31:D8:8B:28:04:C6:C2
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NoSCnXvUoBvq05TZWzHYiygExsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.72.0/22
Signature Algorithm: sha256WithRSAEncryption
55:c8:b0:34:68:4b:d3:e4:c3:dc:3c:71:41:4c:e8:9b:7d:fc:
64:dc:98:08:72:e8:ab:e3:df:dc:d7:31:37:e3:96:c7:cf:3b:
2b:45:a5:09:fc:b0:c0:fa:04:d4:8e:c0:e5:de:73:2d:36:59:
a6:38:97:4c:61:69:c6:d5:fc:13:e5:ff:3a:1a:10:1f:35:4e:
bf:a0:fc:11:7e:cc:32:6e:15:b5:41:dd:d9:33:a2:c6:72:a6:
8e:24:8f:a4:ac:35:08:39:8a:56:cf:81:ce:98:86:76:73:26:
c9:56:d7:f2:95:66:6a:48:be:d7:8f:76:bd:2a:5d:a0:36:cb:
06:bc:13:e0:e6:38:c1:d1:b2:4a:d4:25:56:06:18:5f:14:db:
be:26:e0:61:4a:2a:88:37:68:b1:91:fd:de:a1:e4:97:fe:01:
c6:46:09:f0:c5:89:e2:a6:78:e2:87:9f:68:44:23:66:91:cb:
d9:28:b2:fd:cf:7c:29:72:33:28:ce:be:43:20:ae:bb:1f:34:
02:2e:4c:0a:cb:4e:58:44:a3:1f:10:ce:77:d3:f6:91:9f:62:
32:45:a4:95:25:9d:85:e4:ed:f3:f1:5b:b9:99:93:14:8f:00:
14:ee:5f:7e:92:16:7d:af:6c:a0:15:3d:e2:8c:59:eb:6c:2a:
30:e7:72:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-ams.rpki-client.org