Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/NDPvtvWh7ifeCO8-h3ujlRTnWKU.roa
File: NDPvtvWh7ifeCO8-h3ujlRTnWKU.roa (raw, json)
Hash identifier: 5gK6qSinUkg81NxJuoDAZsjPsG76w7UCYBU8A1WZIIM=
Subject key identifier: 34:33:EF:B6:F5:A1:EE:27:DE:08:EF:3E:87:7B:A3:95:14:E7:58:A5
Certificate issuer: /CN=007e6b5aa437d3693151502a211496e37d4ae2c5
Certificate serial: 040BFF35
Authority key identifier: 00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/NDPvtvWh7ifeCO8-h3ujlRTnWKU.roa
Signing time: Sat 01 Jan 2022 15:03:33 +0000
ROA not before: Sat 01 Jan 2022 15:03:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47957
IP address blocks: 160.92.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67895093 (0x40bff35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=007e6b5aa437d3693151502a211496e37d4ae2c5
Validity
Not Before: Jan 1 15:03:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3433efb6f5a1ee27de08ef3e877ba39514e758a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:67:b4:db:04:65:e4:28:f8:0a:eb:ed:3e:5a:
2f:15:54:4c:fd:20:42:c1:f0:d9:bb:81:5c:06:8b:
c6:c8:f8:d6:04:66:d4:0b:9b:8b:e4:cc:35:91:0a:
24:c1:6f:3e:a7:33:13:8f:1f:2d:45:3f:51:87:4d:
44:69:65:46:87:53:16:ce:95:94:05:5c:48:96:c9:
87:11:fd:c4:f1:12:01:09:d3:00:0f:12:4d:a5:94:
2c:8c:7c:e8:e5:bf:5a:fd:bd:fa:ea:2e:c9:ea:11:
2a:33:ec:54:19:bc:d7:a4:1e:a8:50:a1:f3:ad:c7:
42:be:c7:03:a3:e8:d6:de:ae:8f:61:3f:e7:59:9b:
49:da:76:01:31:f9:0e:63:ee:ba:e1:0d:25:99:73:
ce:ee:7a:a8:fa:69:dd:60:f5:d8:31:59:20:f8:cd:
c6:c1:ee:f9:f4:e0:cf:53:79:61:73:58:c5:e7:d2:
2c:cf:b5:ce:4a:2a:e4:cb:71:f8:ff:27:7b:e4:0f:
70:9c:ba:9e:4e:3a:70:ce:a2:2e:ae:19:1d:36:c8:
1d:a8:ff:66:d8:90:49:77:e4:1f:3f:90:46:e1:43:
0f:fc:b2:c4:ff:9e:cd:a3:9c:70:f8:47:19:56:34:
86:ff:39:73:a1:eb:71:a8:de:ef:3e:17:bc:93:45:
36:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:33:EF:B6:F5:A1:EE:27:DE:08:EF:3E:87:7B:A3:95:14:E7:58:A5
X509v3 Authority Key Identifier:
keyid:00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/NDPvtvWh7ifeCO8-h3ujlRTnWKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.92.0.0/16
Signature Algorithm: sha256WithRSAEncryption
80:3a:10:47:39:d2:4d:5e:26:b2:5a:b2:b6:9d:46:8f:71:93:
98:38:4f:22:19:f2:43:be:f0:1a:92:b4:81:65:c0:c7:d3:48:
5c:93:3c:bb:bb:b0:22:1f:ff:2b:a4:7e:b1:3f:56:a4:37:b0:
e8:1f:4e:82:e4:b1:da:df:ac:ad:21:f2:ff:bf:ee:eb:3b:57:
fb:70:87:b3:67:3d:69:93:b8:33:41:7a:de:9c:d9:ff:df:2a:
9a:ae:9d:92:f2:99:f7:31:70:40:77:aa:6b:42:14:f4:4a:25:
a2:d6:37:02:fb:6e:6d:b2:93:b0:be:29:e3:04:84:53:ef:e1:
fe:df:47:ae:01:bb:16:3f:48:a1:d5:35:53:d5:f9:5f:39:a2:
8c:08:10:15:12:39:96:aa:66:1e:77:1d:e1:19:d9:49:99:f7:
f3:e6:e6:dc:40:49:18:e9:f2:af:1f:e5:0e:cc:bf:67:3d:34:
32:26:e5:4d:33:d2:ec:4e:13:ce:c2:ae:be:16:17:de:1b:0c:
5c:0e:6d:b7:01:c8:c9:61:72:0d:5b:42:50:78:92:f6:6d:d7:
6a:1b:26:bd:2e:a5:d8:b9:eb:b0:86:1a:20:e8:15:85:48:a4:
6a:9e:b1:e6:0d:4d:ff:61:b3:ad:2d:5b:fd:d1:67:44:a2:18:
24:8f:0d:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:17 2023 by rpki-client on console-fra.rpki-client.org