Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/nPfahGBWgQJQRwcbpJ77gAa-HHg.roa
File: nPfahGBWgQJQRwcbpJ77gAa-HHg.roa (raw, json)
Hash identifier: mRwZwbH8p7lm1qSTAvEzHD5M9y67mvcY8UrYTe9G2Oc=
Subject key identifier: 9C:F7:DA:84:60:56:81:02:50:47:07:1B:A4:9E:FB:80:06:BE:1C:78
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 0181D2228D1962A08E748822B600006BA956
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/nPfahGBWgQJQRwcbpJ77gAa-HHg.roa
Signing time: Wed 06 Jul 2022 06:11:28 +0000
ROA not before: Wed 06 Jul 2022 06:11:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59432
IP address blocks: 217.113.10.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d2:22:8d:19:62:a0:8e:74:88:22:b6:00:00:6b:a9:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jul 6 06:11:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9cf7da84605681025047071ba49efb8006be1c78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c1:76:98:13:fc:cf:71:9c:bf:44:2b:c4:84:
f0:a8:b1:84:e2:86:d2:a7:87:ca:2c:6c:70:e0:c6:
9b:32:08:af:12:a7:ee:4e:56:8e:69:86:73:4e:36:
6a:cc:1d:c4:36:8d:5b:42:ce:3d:4f:b4:89:39:93:
47:95:35:7e:e8:87:4f:0d:0a:d4:55:a8:24:da:57:
8c:98:8f:bb:bb:1a:ce:c7:3d:70:31:ce:e8:50:cc:
f8:38:7a:04:36:fc:17:75:b2:27:17:87:db:84:50:
1e:dd:7d:23:fc:6a:8c:94:12:b4:96:58:ad:9a:f5:
d2:00:bd:28:ef:72:9c:ce:97:8b:b9:95:3d:b2:4c:
34:91:7a:73:52:50:c8:d6:3a:b5:02:41:3d:50:aa:
c1:2b:bf:44:fa:2b:6c:c9:b0:d3:46:59:17:40:7d:
50:6a:62:5a:92:bb:e7:29:84:10:ca:6a:f8:4c:e6:
c9:d5:c8:9c:d4:04:7a:d5:f4:ef:94:e5:ef:13:c9:
76:b8:d3:be:59:cb:93:21:3d:04:f5:4a:e9:b9:08:
d8:06:23:c7:f7:78:fd:c4:b2:a9:bf:c3:b7:88:af:
5c:64:d9:7f:35:84:f3:c2:e1:e0:8d:02:1b:1e:31:
63:b3:da:08:34:06:66:dc:ac:ed:ee:df:aa:c7:a8:
78:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F7:DA:84:60:56:81:02:50:47:07:1B:A4:9E:FB:80:06:BE:1C:78
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/nPfahGBWgQJQRwcbpJ77gAa-HHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.10.0/23
Signature Algorithm: sha256WithRSAEncryption
75:03:c5:ca:1b:31:bf:40:05:79:87:9f:af:e3:10:c4:e7:35:
59:8a:80:64:3b:e2:82:da:64:33:21:71:ea:36:f0:8b:cb:f3:
8f:1c:5c:c1:a0:8f:fb:dc:4f:79:dd:47:77:2f:2b:42:c5:36:
c3:58:79:be:31:bb:c5:e7:6e:32:88:dd:41:8d:0a:b9:e6:f2:
eb:40:42:8e:10:67:7e:bb:c7:67:fe:dc:8c:bc:a6:8a:47:c4:
cd:34:69:53:17:33:af:df:61:d8:f5:0a:34:5f:e0:0a:d0:35:
67:57:fc:ca:83:a1:ba:52:92:3d:c7:5f:a0:b4:12:37:98:b2:
4e:a8:99:05:d0:0c:1a:a9:2e:65:97:34:1b:c4:8c:a7:62:35:
40:fa:77:03:cd:5f:12:be:f5:43:12:17:cf:b6:13:b3:47:1d:
31:59:d2:21:81:e3:cf:cb:0c:85:a3:03:05:35:c6:9f:48:6f:
d2:88:cc:10:12:20:62:72:8d:2e:88:7b:0e:42:89:62:32:ed:
33:e7:42:b6:3d:f0:89:fc:a3:0f:51:12:5d:10:06:f3:b3:3a:
e6:a3:37:18:e7:47:66:29:c9:a0:d6:ea:43:07:a9:b5:23:03:
7b:f8:f3:ae:2c:39:95:23:e8:38:48:3b:c3:d4:0f:dd:cf:d5:
88:df:37:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org