Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f5f0ca-2df8-430f-aea7-5de67c61298e/1/nlj7nPgyINXsRAiYYhM4QxEh9WA.roa
File: nlj7nPgyINXsRAiYYhM4QxEh9WA.roa (raw, json)
Hash identifier: Jg8WWQ/kM9vG7wIPUyfhmn5CAE9Pv0jSXIcvh6g/GZU=
Subject key identifier: 9E:58:FB:9C:F8:32:20:D5:EC:44:08:98:62:13:38:43:11:21:F5:60
Certificate issuer: /CN=b0a371c5831db97063e0cc04bce0b4e9b0066ccd
Certificate serial: 0DEE68
Authority key identifier: B0:A3:71:C5:83:1D:B9:70:63:E0:CC:04:BC:E0:B4:E9:B0:06:6C:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKNxxYMduXBj4MwEvOC06bAGbM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f5f0ca-2df8-430f-aea7-5de67c61298e/1/nlj7nPgyINXsRAiYYhM4QxEh9WA.roa
Signing time: Sun 06 Feb 2022 20:43:14 +0000
ROA not before: Sun 06 Feb 2022 20:43:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 93.177.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 913000 (0xdee68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a371c5831db97063e0cc04bce0b4e9b0066ccd
Validity
Not Before: Feb 6 20:43:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e58fb9cf83220d5ec440898621338431121f560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a3:52:ab:b3:c5:c5:f7:83:ac:74:6f:fb:fe:
06:52:3d:bd:da:3b:bf:ad:49:d5:ee:fd:cb:b8:7b:
61:2a:1b:3b:99:ad:8d:35:f0:ba:17:94:cd:69:81:
e1:5e:23:e2:1a:48:bb:21:8a:87:3c:4f:46:af:03:
d7:ea:5f:f1:14:c9:44:8a:a5:10:d3:85:c7:c7:2e:
2c:18:51:b2:ea:5e:3a:e3:2f:75:76:20:f0:ea:76:
99:0e:13:06:d2:be:3a:38:9b:d0:c1:6f:42:c4:40:
f7:68:c1:4e:2a:e8:8f:47:1c:35:b5:30:02:51:92:
c2:95:fa:0b:38:61:f4:93:17:1e:fc:a8:c7:14:cf:
c4:06:0d:5e:c9:41:5e:0e:66:d9:cf:9f:b1:bb:0b:
d0:c0:62:7b:df:3b:0e:45:2c:13:f4:e8:5e:37:c5:
77:12:0e:86:5d:ed:22:dc:d4:d2:35:04:24:53:31:
46:75:ea:c4:54:fa:0e:99:7a:a0:72:bf:22:78:59:
d1:83:3a:74:53:d1:c0:61:ab:40:14:a5:21:91:3a:
26:8e:03:01:e7:ec:1e:ae:19:96:e2:5c:bb:54:12:
8f:ee:a3:f4:4e:90:97:04:1f:4a:68:0b:4d:ab:61:
a8:c2:4b:ab:60:c8:6e:cb:21:83:fc:4a:05:d2:2b:
58:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:58:FB:9C:F8:32:20:D5:EC:44:08:98:62:13:38:43:11:21:F5:60
X509v3 Authority Key Identifier:
keyid:B0:A3:71:C5:83:1D:B9:70:63:E0:CC:04:BC:E0:B4:E9:B0:06:6C:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKNxxYMduXBj4MwEvOC06bAGbM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f5f0ca-2df8-430f-aea7-5de67c61298e/1/nlj7nPgyINXsRAiYYhM4QxEh9WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f5f0ca-2df8-430f-aea7-5de67c61298e/1/sKNxxYMduXBj4MwEvOC06bAGbM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.107.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:dc:8e:33:80:c7:b7:79:ec:61:59:e0:35:61:9c:55:f8:31:
ad:91:fe:76:01:32:87:89:f3:ed:78:d1:57:86:aa:8a:77:5f:
c8:43:1c:a5:ad:62:e0:77:e1:19:ec:8f:a0:29:88:76:a3:79:
e4:54:c6:72:98:bb:cc:52:db:45:53:64:21:73:2a:3a:7a:e9:
af:86:19:23:bc:41:68:4e:ca:8c:48:8c:e9:fa:b5:fb:87:a6:
69:04:ed:66:cd:08:61:22:a7:d5:60:38:9f:cd:1a:c0:44:13:
7d:1e:fe:80:17:32:f1:c8:fc:35:04:71:93:ee:d2:09:ee:df:
f1:76:7c:c4:21:11:18:a3:e3:23:66:8a:a7:5e:3c:97:12:03:
a7:db:e1:26:3c:72:bc:34:3b:02:f0:c5:e0:a2:78:b0:c2:5d:
aa:b3:8e:fc:a4:a5:3d:81:68:42:5e:65:17:75:97:ce:70:6d:
e8:67:10:2c:95:20:fb:60:8d:fb:6b:83:e6:4d:6d:68:04:2e:
b5:3d:c8:1a:cc:49:01:14:25:61:aa:6c:29:31:45:ee:cd:98:
fa:c0:f6:9d:3c:17:f0:1f:f6:a8:27:e9:a1:0a:45:a2:31:48:
9e:3c:71:a1:e0:4b:10:1a:9a:df:65:e6:73:d3:9c:58:3a:04:
a9:b7:87:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:11 2023 by rpki-client on console-fra.rpki-client.org