Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/b2bf74-d3dc-494f-88e3-7c2f8f71157c/1/NnWGv9cXZrhRwLt4cf4dT4MvVQw.roa
File: NnWGv9cXZrhRwLt4cf4dT4MvVQw.roa (raw, json)
Hash identifier: biKF+ULhJ4sXFWNH9PEqXfVwoMsnNral7jU1KAijKww=
Subject key identifier: 36:75:86:BF:D7:17:66:B8:51:C0:BB:78:71:FE:1D:4F:83:2F:55:0C
Certificate issuer: /CN=f3888234535b52ec875544b66faaa323ee88c2dd
Certificate serial: 03AE7E94
Authority key identifier: F3:88:82:34:53:5B:52:EC:87:55:44:B6:6F:AA:A3:23:EE:88:C2:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/84iCNFNbUuyHVUS2b6qjI-6Iwt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/b2bf74-d3dc-494f-88e3-7c2f8f71157c/1/NnWGv9cXZrhRwLt4cf4dT4MvVQw.roa
Signing time: Sat 01 Jan 2022 07:57:50 +0000
ROA not before: Sat 01 Jan 2022 07:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41337
IP address blocks: 194.9.2.0/23 maxlen: 23
2a07:2fc0::/48 maxlen: 48
2a07:2fc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61767316 (0x3ae7e94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3888234535b52ec875544b66faaa323ee88c2dd
Validity
Not Before: Jan 1 07:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=367586bfd71766b851c0bb7871fe1d4f832f550c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:dd:51:a7:58:28:f4:d9:f5:63:e6:48:cc:0b:
7c:27:fa:10:49:67:c5:cb:cf:ef:30:bb:32:3c:7f:
bb:7f:5f:30:a2:0e:93:2b:15:0b:d5:47:fc:3d:a0:
e0:b6:03:63:a4:6f:dc:05:6d:a2:6e:b0:65:d8:5e:
43:95:5e:93:16:c1:ea:b7:d2:61:80:11:ce:15:78:
1f:6d:00:ff:99:0c:1a:d0:1c:f5:aa:4c:33:88:35:
86:4b:dd:7b:8d:9b:c6:1a:c3:f0:9e:9a:46:ab:9b:
64:91:2a:29:df:47:7e:10:40:d4:70:5e:1f:fd:1a:
a0:90:55:3d:90:3e:21:55:5f:e1:f8:36:cd:ee:59:
51:ad:3d:7f:49:a0:a4:72:b4:4f:7d:d6:27:64:bd:
fc:76:61:1c:51:fd:9e:95:b0:03:a5:22:68:86:c1:
f8:b3:fc:14:b6:cf:2a:ee:34:0e:04:2a:83:6a:7f:
ed:e7:d8:d7:08:40:2e:a8:54:05:61:fb:e0:7c:0a:
54:07:42:10:e8:21:c3:8d:7b:3d:07:aa:6e:f9:99:
33:bf:28:8d:82:37:5f:3f:81:64:12:10:10:de:51:
36:4b:45:b1:9d:c6:6a:42:29:dd:0a:7a:54:da:9a:
c1:b8:2f:c5:ab:46:7f:9f:20:13:81:aa:54:10:bf:
dd:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:75:86:BF:D7:17:66:B8:51:C0:BB:78:71:FE:1D:4F:83:2F:55:0C
X509v3 Authority Key Identifier:
keyid:F3:88:82:34:53:5B:52:EC:87:55:44:B6:6F:AA:A3:23:EE:88:C2:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/84iCNFNbUuyHVUS2b6qjI-6Iwt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/b2bf74-d3dc-494f-88e3-7c2f8f71157c/1/NnWGv9cXZrhRwLt4cf4dT4MvVQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/b2bf74-d3dc-494f-88e3-7c2f8f71157c/1/84iCNFNbUuyHVUS2b6qjI-6Iwt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.2.0/23
IPv6:
2a07:2fc0::/29
Signature Algorithm: sha256WithRSAEncryption
13:23:92:67:65:ff:5f:7a:36:ba:21:f4:57:ec:8f:41:91:89:
15:2a:f6:7f:a2:e7:3b:34:58:76:ae:eb:4a:71:e9:41:72:ab:
55:7a:4a:aa:55:28:4a:7a:7f:55:68:57:81:af:71:ba:79:83:
c9:9b:dd:42:03:76:64:68:86:e8:f6:ef:78:af:7f:9e:6f:f2:
22:1e:e9:4e:68:1d:ef:6b:83:a9:23:94:0e:23:96:5f:e2:cb:
6b:46:df:eb:07:ed:3d:3e:a5:ea:bd:e0:1a:13:09:15:3c:dc:
04:dc:66:4f:ae:63:55:f3:bf:4d:58:db:a6:cd:56:70:69:1c:
b5:15:80:f3:d6:d9:95:d2:9c:da:a3:0c:ad:49:4e:ca:ca:aa:
92:18:25:7c:7a:4f:0e:9a:6f:42:3b:c9:87:59:8e:98:bd:69:
a6:9d:95:74:d3:45:f0:fc:a3:e7:3f:74:7e:e2:7b:f2:ea:ec:
cb:b9:40:17:db:ab:da:32:02:42:87:c2:ab:43:4f:70:d0:af:
94:4a:8c:25:d1:a3:e6:f5:1f:f4:c3:0e:67:0d:f1:77:17:4c:
a1:57:15:a9:c8:f4:35:4b:f5:a6:c0:c6:97:a5:b3:b0:3d:be:
77:62:62:c3:aa:17:a3:b4:f9:a1:56:f2:59:e6:55:95:4d:11:
be:18:92:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:06 2023 by rpki-client on console-ams.rpki-client.org