Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/NfZomLqKgxHXrWrrXKDJUTBfS6g.roa
File: NfZomLqKgxHXrWrrXKDJUTBfS6g.roa (raw, json)
Hash identifier: gfMr/FKP0rF21NA+TSxeMNZlv1RIhZiU476i2RW/Xz8=
Subject key identifier: 35:F6:68:98:BA:8A:83:11:D7:AD:6A:EB:5C:A0:C9:51:30:5F:4B:A8
Certificate issuer: /CN=230e9ac64510fa391846bb139ab52b8001d58038
Certificate serial: 040B32AF
Authority key identifier: 23:0E:9A:C6:45:10:FA:39:18:46:BB:13:9A:B5:2B:80:01:D5:80:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw6axkUQ-jkYRrsTmrUrgAHVgDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/NfZomLqKgxHXrWrrXKDJUTBfS6g.roa
Signing time: Tue 05 Apr 2022 05:58:39 +0000
ROA not before: Tue 05 Apr 2022 05:58:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8881
IP address blocks: 193.30.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67842735 (0x40b32af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230e9ac64510fa391846bb139ab52b8001d58038
Validity
Not Before: Apr 5 05:58:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35f66898ba8a8311d7ad6aeb5ca0c951305f4ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ad:e5:ec:5a:d5:3e:cb:0d:d2:92:43:2e:fa:
6a:40:d4:23:7d:d1:01:fa:0d:65:48:1f:6b:a8:d1:
ef:f6:a4:26:76:44:39:ad:06:b7:0a:61:54:7b:24:
ad:e2:e4:b7:c9:b8:38:12:b7:36:d7:c9:80:c4:2e:
a2:4d:33:9e:c2:14:71:98:fb:f4:82:22:e9:58:ef:
f3:33:10:dc:92:80:9d:e9:59:c1:6f:0f:6a:e2:ce:
e0:2a:f4:41:d7:d5:9a:7b:f2:43:8d:94:72:23:13:
56:42:41:bf:a5:d2:74:38:46:36:a7:9a:c4:19:54:
ed:e6:39:d8:13:b3:ab:29:d8:df:6d:8c:e4:e2:63:
38:7c:41:32:88:44:d9:ea:21:5c:ab:44:66:e3:00:
31:43:f0:c2:08:eb:66:d4:26:8f:5b:d0:17:83:da:
74:bb:e6:99:da:5d:4c:f1:02:47:5f:ff:d1:ff:10:
5f:ce:9d:9b:ad:3d:a2:59:7b:11:c8:ae:cf:ac:67:
24:5f:a3:83:6d:28:89:5c:cc:93:d7:c2:c5:84:69:
c6:56:47:c1:5e:17:b6:85:5b:ad:c2:71:07:9e:ae:
55:0f:c3:fd:8b:79:92:58:c2:55:b8:71:42:f2:29:
9e:d2:6d:0f:50:79:95:0e:f4:a6:4d:df:a2:6d:4c:
de:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F6:68:98:BA:8A:83:11:D7:AD:6A:EB:5C:A0:C9:51:30:5F:4B:A8
X509v3 Authority Key Identifier:
keyid:23:0E:9A:C6:45:10:FA:39:18:46:BB:13:9A:B5:2B:80:01:D5:80:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw6axkUQ-jkYRrsTmrUrgAHVgDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/NfZomLqKgxHXrWrrXKDJUTBfS6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/ca68e8-5157-46b6-b584-ea92d80ab188/1/Iw6axkUQ-jkYRrsTmrUrgAHVgDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.140.0/24
Signature Algorithm: sha256WithRSAEncryption
40:e6:af:68:f2:e6:f0:20:e8:e9:f2:ab:5e:59:a7:21:78:38:
c1:00:13:98:7e:a8:34:b9:51:07:a9:32:ed:df:e1:a9:5d:c3:
dc:cb:e8:3d:30:fb:0a:cf:28:fe:5f:cf:f4:83:b1:8b:7b:e1:
fd:02:f5:c7:a6:ed:4f:fc:c6:63:e6:c7:5c:48:4e:1d:c6:35:
be:72:86:6f:25:e0:b8:2b:93:f3:5b:bf:53:29:49:1d:e4:ce:
90:2e:26:79:e8:79:44:1f:64:98:6a:f5:c5:49:a0:a8:39:bd:
cb:9d:ad:c6:93:5c:af:ff:9b:c2:d0:44:b0:2a:f2:6e:ff:21:
ba:a7:7f:a2:67:fe:95:ad:45:b9:da:b5:73:09:87:a7:4b:b8:
a2:b5:0a:a4:b2:bc:6e:9b:cd:47:95:73:d6:aa:c0:21:95:d3:
1e:3b:8d:0d:60:eb:2b:d1:fc:9f:c3:d3:4d:b8:fa:62:26:4b:
66:86:c7:4d:1d:07:5b:e0:d4:8b:91:bd:bf:a8:fc:2a:91:4c:
a5:53:b6:e3:f0:99:c0:18:72:d0:14:c3:db:05:31:f0:1d:9c:
43:83:a3:53:62:80:1f:c8:cd:37:49:f3:d3:27:8f:30:5f:5c:
52:50:a9:84:47:d3:cf:6f:f1:f5:5e:2c:0e:8e:f2:84:95:01:
e9:2f:e4:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:04 2025 by rpki-client