Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/f943e9-e03b-4d7b-8c89-5b3732f48081/1/nQL3R8obfidv4XxUiKdEabu4Wxk.roa
File: nQL3R8obfidv4XxUiKdEabu4Wxk.roa (raw, json)
Hash identifier: hI/Lqszig31NMG6RVzNqDvllepBJfUc7lvMQdV+RhS0=
Subject key identifier: 9D:02:F7:47:CA:1B:7E:27:6F:E1:7C:54:88:A7:44:69:BB:B8:5B:19
Certificate issuer: /CN=d59d3b8b044f1d35ff27190b7575f30806b11327
Certificate serial: 02761ECE
Authority key identifier: D5:9D:3B:8B:04:4F:1D:35:FF:27:19:0B:75:75:F3:08:06:B1:13:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Z07iwRPHTX_JxkLdXXzCAaxEyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/f943e9-e03b-4d7b-8c89-5b3732f48081/1/nQL3R8obfidv4XxUiKdEabu4Wxk.roa
Signing time: Sat 01 Jan 2022 02:55:58 +0000
ROA not before: Sat 01 Jan 2022 02:55:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57821
IP address blocks: 193.160.39.0/24 maxlen: 24
2001:67c:26f4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41295566 (0x2761ece)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d59d3b8b044f1d35ff27190b7575f30806b11327
Validity
Not Before: Jan 1 02:55:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d02f747ca1b7e276fe17c5488a74469bbb85b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:31:2b:ab:62:00:12:72:9a:32:5c:6d:83:f8:
be:98:6a:4d:0d:0e:7b:06:0b:bf:3c:a2:44:77:7d:
cf:38:6d:03:cb:5e:6d:4f:53:a9:5a:6b:3c:44:12:
9e:02:85:57:9f:b6:c2:ef:b6:08:af:bc:03:12:2d:
8a:b4:59:9f:e3:ad:3f:3b:00:2c:9f:37:11:ef:0b:
cd:ef:7f:ef:dd:d0:2c:a7:62:87:2c:39:59:a3:e5:
11:c0:d9:dd:85:a6:0b:12:e8:f0:44:24:bd:10:e5:
4c:de:ea:92:1e:2c:f2:44:d4:38:d6:59:9c:82:df:
5c:f1:db:02:82:50:4c:be:27:a0:e1:15:81:ea:59:
5d:17:e1:76:a0:70:ac:7d:75:23:1a:8c:61:8b:14:
38:d0:35:f8:f0:d8:8d:a2:90:b2:d1:2c:14:04:69:
cc:50:b0:9a:22:59:67:7a:79:8c:8d:96:2b:7a:c5:
97:2a:2b:7e:4b:81:5a:e1:39:9a:d6:f3:ee:93:c0:
98:cb:52:9c:80:74:6d:33:42:67:59:2c:9b:d4:c7:
9a:61:90:af:7a:a6:45:12:8d:4d:bb:d3:03:5a:cc:
de:1c:8f:51:82:90:12:11:2b:4e:c4:a3:6f:0c:19:
58:5d:77:11:3f:d4:4c:f1:ad:24:06:dc:f6:b2:1e:
f6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:02:F7:47:CA:1B:7E:27:6F:E1:7C:54:88:A7:44:69:BB:B8:5B:19
X509v3 Authority Key Identifier:
keyid:D5:9D:3B:8B:04:4F:1D:35:FF:27:19:0B:75:75:F3:08:06:B1:13:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Z07iwRPHTX_JxkLdXXzCAaxEyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f943e9-e03b-4d7b-8c89-5b3732f48081/1/nQL3R8obfidv4XxUiKdEabu4Wxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f943e9-e03b-4d7b-8c89-5b3732f48081/1/1Z07iwRPHTX_JxkLdXXzCAaxEyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.39.0/24
IPv6:
2001:67c:26f4::/48
Signature Algorithm: sha256WithRSAEncryption
bb:5f:8a:7b:c5:c8:9a:17:3d:4d:9b:3e:f3:73:af:65:10:17:
5d:2b:65:1e:59:b5:3e:d7:3c:49:4a:93:57:2c:c1:fd:f5:f9:
26:a0:86:99:12:58:4f:6c:71:15:13:55:51:f7:95:e6:cc:2c:
89:36:57:0e:22:61:aa:9b:e8:32:b6:37:59:db:55:50:f3:fa:
db:bd:0b:8c:c9:18:cf:91:c5:79:82:22:1a:0b:63:20:06:36:
95:67:14:b0:02:11:27:df:f8:ed:12:f3:03:f6:4c:e5:12:11:
13:b6:56:86:a4:ac:5e:d5:6b:52:ed:c2:d2:ae:63:8e:46:34:
2a:7c:f3:4e:35:df:b9:0b:ff:41:cb:d0:23:12:17:83:b7:63:
f4:ce:2b:bd:c7:69:d0:e6:78:2f:16:8a:d2:c9:c4:d8:6b:bb:
52:f4:f5:f5:a6:de:c9:f0:d2:9e:13:c5:8e:85:7b:47:84:37:
99:83:b7:d6:9a:a4:45:ba:3a:f3:d5:8c:3d:47:92:f0:78:49:
e7:64:83:64:80:33:af:a7:fc:62:8b:8d:71:22:0e:d9:b5:86:
ad:21:0a:19:8e:e8:7d:1e:56:19:44:b2:60:cf:75:d2:ec:73:
51:48:16:d4:4d:6d:ec:76:e7:c8:34:d6:50:b0:1c:b6:aa:a3:
bb:8d:e9:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:43 2023 by rpki-client on console-ams.rpki-client.org