Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/NTuO8SVciHLxHyclkSH5F_3kvTo.roa
File: NTuO8SVciHLxHyclkSH5F_3kvTo.roa (raw, json)
Hash identifier: eWPi2R9eUx2mUSgYrFr1YIlOHHcMxRBurlJggkFhsTQ=
Subject key identifier: 35:3B:8E:F1:25:5C:88:72:F1:1F:27:25:91:21:F9:17:FD:E4:BD:3A
Certificate issuer: /CN=7fe0e759354e83cc19320381109de22da0f1a700
Certificate serial: 37E4B647
Authority key identifier: 7F:E0:E7:59:35:4E:83:CC:19:32:03:81:10:9D:E2:2D:A0:F1:A7:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/NTuO8SVciHLxHyclkSH5F_3kvTo.roa
Signing time: Thu 03 Mar 2022 16:05:02 +0000
ROA not before: Thu 03 Mar 2022 16:05:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49814
IP address blocks: 176.65.32.0/19 maxlen: 19
31.24.24.0/21 maxlen: 21
2a00:9700::/32 maxlen: 32
2a00:9700::/48 maxlen: 48
2a00:9700:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 937735751 (0x37e4b647)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fe0e759354e83cc19320381109de22da0f1a700
Validity
Not Before: Mar 3 16:05:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=353b8ef1255c8872f11f27259121f917fde4bd3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ce:0e:5c:22:6c:0c:db:4f:68:d7:25:98:ee:
cc:ba:e5:d2:e6:44:a0:ec:34:70:24:1c:c1:3e:06:
66:d7:eb:eb:ec:75:01:21:bd:23:32:e8:a2:c6:46:
a4:69:fd:b1:1c:35:d6:c4:dc:88:95:eb:c3:70:a4:
b5:7e:aa:20:2a:f1:d0:a7:ec:2f:dc:bd:54:66:ff:
d9:18:c2:c9:e1:58:db:30:f8:57:bb:75:c9:d8:04:
db:8e:b4:f9:a0:b4:0c:e3:5f:78:6b:ea:b4:7b:13:
da:2c:8a:6c:c5:2d:6d:b5:26:09:c0:27:b8:05:80:
9c:dd:5c:aa:ab:bf:8d:ca:2f:4f:77:50:2e:ce:67:
2b:08:e9:d9:e0:18:cd:fc:06:df:b6:70:72:df:8e:
2e:b7:c4:33:dd:27:54:3f:da:2c:74:94:7d:05:73:
e6:bf:df:cc:ca:3a:58:2e:93:1e:cc:f7:7a:ec:a2:
95:8b:3b:5c:a8:f3:ce:7b:1e:54:f9:76:1e:48:d7:
2d:8e:94:1d:50:81:37:f3:7e:6a:8d:37:50:50:8c:
0d:fe:02:b7:1f:df:04:8d:ae:96:5e:49:df:bf:63:
9f:af:16:02:be:28:21:e5:93:fc:43:ed:31:53:a1:
2c:88:7c:99:b8:76:12:52:b3:c6:76:67:80:14:2c:
4c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:3B:8E:F1:25:5C:88:72:F1:1F:27:25:91:21:F9:17:FD:E4:BD:3A
X509v3 Authority Key Identifier:
keyid:7F:E0:E7:59:35:4E:83:CC:19:32:03:81:10:9D:E2:2D:A0:F1:A7:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/NTuO8SVciHLxHyclkSH5F_3kvTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/0c7243-1ffb-49d2-b5c1-b402e8a1d934/1/f-DnWTVOg8wZMgOBEJ3iLaDxpwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.24.0/21
176.65.32.0/19
IPv6:
2a00:9700::/32
Signature Algorithm: sha256WithRSAEncryption
71:9d:c7:ff:de:9b:d2:37:e9:19:47:95:47:1b:1e:be:e1:43:
04:56:f6:26:75:c4:5d:c7:4e:09:8e:03:38:4a:1b:50:1e:22:
9f:2f:85:ee:54:35:85:37:22:1e:fa:2b:8a:6b:45:59:ec:8c:
fd:f1:1a:5b:84:6c:04:cd:a1:15:e7:2f:bd:51:c7:b1:c3:84:
c6:61:86:0b:38:9c:77:8f:10:db:ad:ca:19:2e:5a:ab:45:42:
e2:d5:ad:c1:67:bc:95:34:fa:e7:cc:a3:a4:7f:9a:4c:70:d9:
c6:bf:11:f9:e1:df:de:34:3f:f2:de:9e:08:4f:a8:7c:6e:e1:
18:23:7a:3e:b4:2b:48:5f:65:38:b1:f0:1f:15:35:08:2d:ce:
ed:4a:3d:2d:32:59:d9:d8:b5:b7:c0:45:2e:7d:61:c5:3c:2a:
59:9c:43:7f:4f:e1:a7:aa:c4:6b:b1:d5:a5:93:08:38:5d:90:
51:76:44:84:5a:97:e6:d3:83:72:9b:bb:e6:e4:af:16:02:bb:
f1:a4:a4:7a:d0:af:05:79:b8:d0:d6:86:55:54:40:07:43:03:
82:bb:f3:ad:35:ca:2f:70:3b:49:a6:cc:ac:e1:46:d3:60:71:
f5:63:d1:6a:94:0a:8b:ac:20:7e:40:d8:34:53:b9:27:9b:07:
d6:63:4e:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:29 2025 by rpki-client