Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/o0LqIn2cwAVYu2T3osxwkA8dAxk.roa
File: o0LqIn2cwAVYu2T3osxwkA8dAxk.roa (raw, json)
Hash identifier: eZrwtOjoAO+u2HYIT7+1rh2BZf0rgj9bJdggw3RWQBI=
Subject key identifier: A3:42:EA:22:7D:9C:C0:05:58:BB:64:F7:A2:CC:70:90:0F:1D:03:19
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 01842FD70069202F34FA67048F36678C348E
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/o0LqIn2cwAVYu2T3osxwkA8dAxk.roa
Signing time: Mon 31 Oct 2022 20:58:50 +0000
ROA not before: Mon 31 Oct 2022 20:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 93.120.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2f:d7:00:69:20:2f:34:fa:67:04:8f:36:67:8c:34:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Oct 31 20:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a342ea227d9cc00558bb64f7a2cc70900f1d0319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:dd:9d:fc:4c:fd:fb:86:86:4b:0e:90:9a:91:
34:3d:bf:e5:90:23:e2:81:28:bf:61:6f:31:ca:8d:
a1:dc:9e:bf:db:e7:0e:e4:6c:fc:e5:18:dd:a7:2a:
98:90:62:2d:15:4c:47:20:1a:7d:dd:04:8d:ff:9e:
d8:0c:d0:e5:2b:2f:ec:a4:d3:d3:d2:94:96:30:87:
98:f6:e3:db:dd:c3:88:5b:ec:78:bd:aa:e9:46:16:
f4:ea:59:8e:54:91:7b:62:fc:cf:c7:66:fd:f2:72:
f3:c8:33:1c:91:82:95:55:53:cf:9f:3f:9a:24:ce:
f5:0f:07:76:cf:ad:83:9c:cd:c4:96:2a:9b:50:b8:
60:62:08:5e:c5:ec:e0:8d:72:81:bc:e2:51:96:df:
6a:51:7a:18:12:fe:9f:51:a6:4a:b4:d3:44:81:a9:
30:1b:7b:2d:d6:35:26:4d:b4:86:e9:81:f9:a0:db:
c6:ad:74:a7:13:04:0b:da:66:11:53:df:d8:5c:8d:
95:c2:b8:68:de:17:08:76:f0:a8:c6:2e:92:1d:9c:
81:6d:26:e5:4d:af:86:22:f7:bf:9f:0a:46:1f:2e:
ea:0c:f4:02:ca:09:6b:69:a1:f2:a4:0b:52:bd:29:
f4:07:67:f1:68:a7:83:f0:96:9b:c9:4c:c7:aa:22:
a8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:42:EA:22:7D:9C:C0:05:58:BB:64:F7:A2:CC:70:90:0F:1D:03:19
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/o0LqIn2cwAVYu2T3osxwkA8dAxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.120.0.0/21
Signature Algorithm: sha256WithRSAEncryption
28:ac:68:06:0f:84:4c:d4:e5:a7:4c:48:98:6d:ad:56:b4:81:
bf:c3:7c:77:d8:bf:9c:4a:04:e6:90:5e:84:b8:76:41:b1:e2:
12:47:e9:d2:cc:00:f6:52:8a:ca:7b:6e:4d:de:6a:91:b0:c2:
9b:0f:02:49:71:ee:fc:c8:d6:e3:ea:4a:ff:31:9f:8e:ed:0c:
44:b8:68:43:c5:29:c8:06:5e:80:21:78:88:fd:7d:4f:a2:dd:
36:b3:ec:2b:91:1a:28:da:6d:37:ed:13:e8:94:cc:12:38:11:
9f:0c:61:58:ff:c2:37:48:54:0d:e0:11:9a:1a:d9:81:72:44:
4b:74:8a:97:ce:d2:b7:46:4a:fe:5b:95:f7:cf:24:96:53:09:
b7:96:07:be:60:e2:bf:e4:93:61:32:b5:31:c1:49:dd:f1:24:
79:46:7e:a7:89:41:1e:e6:1c:e7:8e:50:3b:2c:f4:78:37:1a:
15:b2:c8:c9:60:46:34:4a:2a:42:7c:c0:fa:45:6f:35:ec:8e:
14:e2:d1:d0:af:e3:cd:1c:14:aa:c6:d7:aa:68:58:e3:1f:ee:
16:f9:87:11:b8:ac:91:2d:81:10:26:93:98:b9:9c:e4:e2:81:
07:ff:72:dd:38:49:5a:1c:dd:3b:6f:4a:45:c4:78:77:36:33:
1d:99:3e:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org