Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/NJGXVbGibUM08V1OzRGUh-XaTUI.roa
File: NJGXVbGibUM08V1OzRGUh-XaTUI.roa (raw, json)
Hash identifier: WOMmIPStb64mJKfsBSZlBYJXwxAb9gmwZAxo0Blx6Gc=
Subject key identifier: 34:91:97:55:B1:A2:6D:43:34:F1:5D:4E:CD:11:94:87:E5:DA:4D:42
Certificate issuer: /CN=d65003e24cecfbf8e8c15ff637dd15db4d7fae92
Certificate serial: 035A7C0D
Authority key identifier: D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1lAD4kzs-_jowV_2N90V201_rpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/NJGXVbGibUM08V1OzRGUh-XaTUI.roa
Signing time: Sat 01 Jan 2022 12:57:26 +0000
ROA not before: Sat 01 Jan 2022 12:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 193.36.241.0/24 maxlen: 24
193.36.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56261645 (0x35a7c0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d65003e24cecfbf8e8c15ff637dd15db4d7fae92
Validity
Not Before: Jan 1 12:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34919755b1a26d4334f15d4ecd119487e5da4d42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0f:d7:e9:10:d0:43:29:e9:25:f9:23:39:be:
d3:2b:a8:b4:94:b1:2b:5a:04:35:81:17:9a:12:ad:
ed:81:8a:34:ca:03:31:fb:7a:8b:af:78:cd:ac:fd:
54:f9:22:c9:86:4b:6c:3b:ec:f9:8a:33:ea:59:9f:
64:58:c9:6c:12:32:7c:ce:1a:4b:f0:95:fd:d7:a5:
54:d9:61:0a:37:39:10:e1:42:28:a5:70:23:81:20:
69:96:33:21:07:d4:43:9c:48:2e:be:3b:b7:2a:5a:
9a:e0:ad:f7:6d:83:ae:bd:6b:a7:f9:34:9e:38:c3:
f7:a8:3e:d1:b2:66:a4:ce:14:2b:7b:c0:93:08:2a:
20:2a:95:88:35:51:32:15:49:a9:2d:fe:31:21:72:
a3:6b:41:34:a9:38:de:67:9c:8f:0c:2e:2b:30:3a:
02:a2:d6:a5:27:7e:f1:d3:6a:76:14:28:32:56:9e:
fe:c0:67:94:cb:94:90:cb:c4:85:8b:7b:c2:4e:4f:
4f:8e:07:34:0d:c9:bb:8e:1b:14:ad:cc:33:ab:92:
0b:1c:07:61:72:75:f2:7e:cc:10:7f:06:2f:ba:e8:
e1:b3:e7:e9:ef:26:1b:9c:bc:e4:e3:5c:56:6d:ab:
18:fd:77:a2:f1:f0:81:22:6b:bb:0f:e6:12:44:1c:
6e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:91:97:55:B1:A2:6D:43:34:F1:5D:4E:CD:11:94:87:E5:DA:4D:42
X509v3 Authority Key Identifier:
keyid:D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1lAD4kzs-_jowV_2N90V201_rpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/NJGXVbGibUM08V1OzRGUh-XaTUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/1lAD4kzs-_jowV_2N90V201_rpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.241.0/24
193.36.254.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:de:42:f8:8a:4b:47:e0:8c:1f:58:42:0d:eb:a6:2e:a4:5c:
59:dc:c8:fd:45:32:87:30:cb:d5:9f:60:98:f8:b9:d2:f4:fe:
1f:4a:e2:8d:1f:9d:f7:07:20:60:f3:e7:d9:19:05:97:00:67:
4b:b1:eb:52:2b:61:b6:8d:0b:66:f6:85:ae:dd:7a:a1:7c:19:
6e:63:8d:f5:65:96:27:21:ca:c1:98:06:c5:d0:33:4f:16:2f:
4c:a6:f9:2e:26:2f:81:0a:cc:e3:e8:52:04:2f:87:15:dc:6b:
a4:32:69:bd:b6:b0:ad:fa:95:60:10:08:02:0b:96:ef:9a:a9:
ba:f4:41:c3:18:8d:88:73:47:fc:5b:4f:71:59:2f:e3:0c:5c:
e6:4f:0b:41:e0:46:a9:1c:ba:28:b5:86:81:5d:dc:a0:1a:00:
ce:9e:51:3c:cc:36:53:8c:68:a2:84:45:e9:94:2d:d5:14:8c:
4c:fc:62:cc:80:e1:e3:c5:f8:fe:2b:6a:e6:c8:10:8f:9b:f7:
af:0b:b6:16:60:a9:ff:22:19:2f:42:58:a2:20:38:31:f0:49:
b2:cf:81:2d:1d:c5:ba:c9:e5:fd:29:3c:bb:ed:ab:c0:f7:2b:
00:83:b4:fe:af:3a:f2:38:0c:81:82:45:2f:7f:a8:03:72:a3:
ac:9f:f3:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:08 2023 by rpki-client on console-ams.rpki-client.org