Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/wx2sqUsRgsKGGF0-TMZUx1OVd9M.roa
File: wx2sqUsRgsKGGF0-TMZUx1OVd9M.roa (raw, json)
Hash identifier: JwXTgCNlo/6a97WADP0vhMNASep3ziHXQi2RrvWGswk=
Subject key identifier: C3:1D:AC:A9:4B:11:82:C2:86:18:5D:3E:4C:C6:54:C7:53:95:77:D3
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 01837F28453344F6FF8B8731CD1480EB56CF
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/wx2sqUsRgsKGGF0-TMZUx1OVd9M.roa
Signing time: Tue 27 Sep 2022 13:34:49 +0000
ROA not before: Tue 27 Sep 2022 13:34:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 93.120.38.0/24 maxlen: 24
93.120.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7f:28:45:33:44:f6:ff:8b:87:31:cd:14:80:eb:56:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Sep 27 13:34:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c31daca94b1182c286185d3e4cc654c7539577d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:32:ce:16:c4:e1:d4:4d:89:14:3a:9c:ab:18:
92:bc:e2:d7:30:91:ea:27:df:eb:a8:1b:1e:44:53:
98:02:c5:70:d8:bb:3c:a4:c7:7e:f3:fa:bd:44:ac:
9d:47:94:07:f6:ae:76:3b:23:99:a8:4c:9d:eb:d1:
b0:1a:6f:ca:3d:fb:bf:aa:91:9e:dc:d5:30:a6:e2:
de:50:55:45:12:12:c2:62:5f:f0:b1:44:62:45:f6:
8b:63:60:b4:92:77:fa:42:18:4f:4b:07:b5:fe:8a:
1d:9e:47:4d:10:44:1a:61:c8:0c:21:8b:e0:5c:10:
4b:18:3e:a3:f5:ba:a4:ee:5c:ab:28:9d:66:01:83:
69:f2:d3:a7:31:b9:cd:db:d9:e2:76:8f:df:96:0c:
c5:a4:1c:dd:c3:37:04:9f:7a:0e:36:fc:72:4b:5a:
3a:a1:3e:38:e9:18:38:af:ae:1e:03:7c:83:fc:b1:
fc:bd:bd:5c:8c:52:b0:ba:79:ea:90:8e:83:8d:e9:
44:31:bf:89:4c:ff:3a:bd:ab:c6:f0:35:93:57:7e:
e1:e1:52:5a:ed:c0:5b:56:f0:e8:b6:f2:49:b4:77:
e8:7b:a0:8f:4e:2a:79:8f:3b:24:36:fc:cc:74:df:
bc:6a:48:d3:a9:4c:bc:98:35:47:b9:c7:46:e0:7c:
79:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:1D:AC:A9:4B:11:82:C2:86:18:5D:3E:4C:C6:54:C7:53:95:77:D3
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/wx2sqUsRgsKGGF0-TMZUx1OVd9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.120.36.0/24
93.120.38.0/24
Signature Algorithm: sha256WithRSAEncryption
49:a1:7b:f0:ae:4e:2c:b9:80:20:c3:5d:ef:9d:79:6c:7b:d0:
aa:df:73:f0:09:d9:a3:bc:60:5d:d3:77:de:45:bd:c1:08:37:
f2:e2:1f:38:4d:55:89:4a:cb:db:43:a7:5a:46:2f:e3:1d:4d:
1f:b0:10:9c:d9:e7:3e:d7:3a:d1:4a:4a:73:11:65:dc:4d:04:
7b:35:47:f2:9f:f3:9b:67:ef:4b:79:1b:a3:e8:f2:e5:5a:ee:
03:ee:6e:74:ac:29:70:be:19:51:9a:07:36:e2:66:79:79:d0:
f3:c0:a8:f7:17:c7:ba:b9:1b:5c:b1:28:8f:48:55:3e:46:10:
b9:72:0c:7a:0b:fb:b5:8b:70:40:b4:d2:7d:66:15:0c:ed:eb:
e0:ce:fc:ff:ca:ab:ad:e2:7a:11:cd:70:0d:fc:c2:1b:1f:55:
0a:22:fe:dc:a6:b4:e5:0c:41:21:18:bb:03:47:0e:c1:04:c5:
f2:b1:76:14:b0:b4:aa:06:72:84:75:7b:2b:e1:88:60:c4:85:
98:54:95:22:6d:10:02:49:f4:e4:ea:b4:1b:8f:3e:0d:d3:fa:
02:6d:d5:70:4d:34:63:55:d2:d1:41:c0:99:c2:c4:88:31:7f:
21:ec:0d:7c:51:04:d1:5a:96:e2:65:6c:44:e1:3b:66:e6:b3:
71:a1:03:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:56 2023 by rpki-client on console-fra.rpki-client.org