Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/navpx51tBWvk1TrOEUscJAvxSyA.roa
File: navpx51tBWvk1TrOEUscJAvxSyA.roa (raw, json)
Hash identifier: VqrriDLBe4y/nrRpAghN3ZXdhLBxpuvVS/RL6D4DMZY=
Subject key identifier: 9D:AB:E9:C7:9D:6D:05:6B:E4:D5:3A:CE:11:4B:1C:24:0B:F1:4B:20
Certificate issuer: /CN=458d12f095053c35876b88b47685d6435421fcf2
Certificate serial: 0B80C1AF
Authority key identifier: 45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/navpx51tBWvk1TrOEUscJAvxSyA.roa
Signing time: Sat 01 Jan 2022 10:53:38 +0000
ROA not before: Sat 01 Jan 2022 10:53:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207408
IP address blocks: 194.76.227.0/24 maxlen: 24
2a0b:7140:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 192987567 (0xb80c1af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=458d12f095053c35876b88b47685d6435421fcf2
Validity
Not Before: Jan 1 10:53:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9dabe9c79d6d056be4d53ace114b1c240bf14b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5b:69:7f:8e:5a:41:a4:c7:a7:7d:22:68:a0:
dd:02:99:38:6c:18:45:9d:40:29:74:46:eb:0f:05:
0e:c9:50:96:55:67:8a:16:13:91:33:7e:ab:ce:f8:
e7:23:b7:12:13:d6:4a:be:4b:b8:c8:0a:d4:13:fc:
6c:11:e8:6e:aa:fb:60:38:84:fc:9e:8f:17:07:63:
11:3a:8f:53:ba:87:9c:a8:8a:17:60:89:e0:e5:ea:
2e:57:7d:36:61:9c:fa:2d:aa:ed:23:03:81:87:d4:
41:fa:df:72:cc:ac:58:a1:2d:5d:7a:aa:7e:64:45:
60:09:bb:61:52:1f:a7:b3:58:b4:3c:f5:52:74:4b:
c6:b9:c8:89:39:ac:5d:c5:aa:d7:2c:08:ef:88:5c:
57:04:40:d3:02:43:e2:07:37:b9:d0:a6:fe:ba:22:
49:bd:48:cf:c7:9c:9a:cb:ae:b5:0b:d6:a3:01:6a:
40:cc:00:ca:0c:b8:4b:16:5f:6e:6f:ba:96:95:80:
a0:1c:72:51:3a:f9:59:f9:05:02:cd:ee:e7:7c:8d:
19:1a:f2:6f:50:7b:31:35:c3:f4:12:e4:23:ef:df:
c4:54:87:13:42:69:83:3d:2a:02:70:61:5c:90:89:
18:c1:56:c4:11:ec:7b:a6:a4:10:68:8f:2a:25:65:
e2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:AB:E9:C7:9D:6D:05:6B:E4:D5:3A:CE:11:4B:1C:24:0B:F1:4B:20
X509v3 Authority Key Identifier:
keyid:45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/navpx51tBWvk1TrOEUscJAvxSyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.227.0/24
IPv6:
2a0b:7140:1::/48
Signature Algorithm: sha256WithRSAEncryption
6e:cd:af:39:b5:ec:3e:20:db:a0:5a:32:d4:8a:17:6d:b6:f6:
22:73:1d:ec:9d:2b:fa:a7:1a:de:37:cf:3a:e7:9a:51:6e:4d:
65:1f:d9:d0:fb:38:f8:be:32:cb:65:4a:3f:c2:4d:06:0d:3b:
78:9b:da:f9:ea:d3:cb:84:c2:3f:4c:87:72:88:8c:71:0c:75:
80:f5:a3:06:5f:1a:05:1e:4a:3c:ec:8f:d4:d9:33:35:e3:27:
03:60:11:18:68:d2:29:bc:b9:22:f9:fa:d5:3a:0e:3e:0d:71:
8a:ce:20:fe:19:8c:0c:05:8a:53:40:88:9d:e7:3e:36:e1:96:
3e:58:c3:66:be:1c:f2:34:22:a2:13:7d:ef:0b:46:75:9c:a3:
28:b8:72:e4:18:c9:d0:3e:25:7e:7e:07:c2:26:87:cb:e0:e8:
01:2a:62:21:6e:2e:63:4a:7b:52:99:bf:9b:ab:e0:8d:46:36:
5e:52:81:31:8c:cd:31:05:be:05:65:bd:99:0c:23:14:69:64:
4e:5c:37:53:d7:5f:80:87:5e:bb:17:e5:87:a6:c4:1d:a9:8b:
2a:e2:88:8b:1b:df:4f:75:4b:43:6a:06:af:0f:9f:40:2a:8e:
7c:1b:83:f8:de:21:2e:b8:65:35:98:04:26:85:63:a3:ec:50:
d2:c0:1f:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:31 2023 by rpki-client on console-ams.rpki-client.org