Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/ngi6bDVPSUFKyECrfuZSZ-O4AiI.roa
File: ngi6bDVPSUFKyECrfuZSZ-O4AiI.roa (raw, json)
Hash identifier: BCDTu9drqFjsPv2H5RGD+t+77EsHP12uSVwqkbpYBEk=
Subject key identifier: 9E:08:BA:6C:35:4F:49:41:4A:C8:40:AB:7E:E6:52:67:E3:B8:02:22
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 0182B02CB312C5BEC7180D076FBFF838D44C
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/ngi6bDVPSUFKyECrfuZSZ-O4AiI.roa
Signing time: Thu 18 Aug 2022 08:58:15 +0000
ROA not before: Thu 18 Aug 2022 08:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 194.102.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b0:2c:b3:12:c5:be:c7:18:0d:07:6f:bf:f8:38:d4:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Aug 18 08:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e08ba6c354f49414ac840ab7ee65267e3b80222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e2:8f:81:9d:b8:d2:8d:b5:91:0f:6c:98:d5:
fa:5a:14:13:01:e1:80:4d:e9:4e:b8:4a:a2:48:1e:
b9:74:da:18:4b:91:02:f5:0c:40:7a:9b:84:1c:5c:
24:9c:91:c6:5b:86:07:61:83:5c:35:fd:1a:f8:61:
ac:16:7b:e0:eb:b1:2f:a5:c3:77:02:3e:83:ce:21:
e7:29:40:9b:eb:10:4a:4d:dd:25:bf:58:54:f9:10:
68:1d:b4:fd:43:8c:7c:63:0f:ce:94:63:7a:e4:7c:
73:7e:4c:06:1b:ed:ef:02:49:7b:b3:5a:b0:50:aa:
62:66:52:a0:22:cd:f3:e2:82:cb:f1:c8:71:57:33:
e1:5c:83:85:18:80:1c:62:12:a3:76:ac:48:bf:d9:
78:b0:a4:2f:a6:04:57:2a:dd:eb:41:18:2c:cf:c4:
cc:6b:9d:41:92:34:b5:0a:ce:86:c9:3e:5b:60:27:
cc:f2:c8:2c:f8:65:6e:f2:08:56:7e:2d:6d:c6:6a:
af:24:d5:9b:91:85:18:23:ba:ce:2d:80:95:59:d8:
dd:c3:9f:a6:ac:c8:1b:8b:a8:ae:74:0e:43:f9:2d:
a1:aa:9a:4f:de:c6:bf:a1:ae:c1:e8:b2:9e:a3:9c:
e9:b5:46:76:db:42:a0:0b:8c:ee:ec:46:54:e4:9a:
9d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:08:BA:6C:35:4F:49:41:4A:C8:40:AB:7E:E6:52:67:E3:B8:02:22
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/ngi6bDVPSUFKyECrfuZSZ-O4AiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.190.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:41:3a:d4:72:e8:ae:7f:af:7c:93:c4:cd:2c:f8:8b:18:9e:
c1:5f:89:f3:dd:6a:4c:9b:bd:74:52:74:b2:df:d6:82:a6:d3:
6e:5b:4b:8d:cc:8d:ce:55:c4:d9:26:ba:44:da:20:72:d2:a2:
5d:7d:10:90:7f:90:b1:c9:a6:c9:cc:1b:a1:81:a7:69:67:36:
05:72:85:63:96:ea:75:de:ab:f7:92:ed:8a:76:69:a1:b1:0c:
d2:99:7a:ef:90:08:3e:8c:57:56:b5:cd:eb:b1:72:6c:e3:e5:
0d:82:0c:84:0e:a5:f5:72:f7:3c:f2:2b:73:9b:61:3f:45:de:
22:2f:84:9a:e5:b1:ae:dc:21:c8:b7:49:fd:04:2b:37:3b:15:
16:ff:29:a5:99:3b:b4:b3:6d:66:d7:4a:ad:b7:02:88:38:1d:
aa:3b:bc:51:78:3e:43:1c:e2:41:cd:47:fa:ae:62:35:d9:6b:
01:04:0b:c1:1f:90:e3:c8:40:4b:47:7b:4e:7a:7a:79:42:d0:
f7:7a:a5:3a:a8:1c:51:cb:c3:f1:be:9e:cc:66:74:84:9d:b4:
9c:bf:23:3b:4a:40:06:dd:4c:ae:79:a1:41:b3:ee:ea:72:66:
bc:0f:88:ea:9e:96:c2:0c:ee:bf:32:40:c1:dd:a2:bd:33:77:
db:3f:bb:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:18 2023 by rpki-client on console-fra.rpki-client.org