Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/noV1h-HsfKH6f-bDE7SarN47SNg.roa
File: noV1h-HsfKH6f-bDE7SarN47SNg.roa (raw, json)
Hash identifier: qot3Qjw9gljp25z6oD6aWzu/XUwY7uKRnESFfi3M1YU=
Subject key identifier: 9E:85:75:87:E1:EC:7C:A1:FA:7F:E6:C3:13:B4:9A:AC:DE:3B:48:D8
Certificate issuer: /CN=e801f23ce821c264d67727536ec183537594c5f2
Certificate serial: 377855AE
Authority key identifier: E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/noV1h-HsfKH6f-bDE7SarN47SNg.roa
Signing time: Mon 07 Feb 2022 09:22:09 +0000
ROA not before: Mon 07 Feb 2022 09:22:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16251
IP address blocks: 193.11.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 930633134 (0x377855ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e801f23ce821c264d67727536ec183537594c5f2
Validity
Not Before: Feb 7 09:22:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e857587e1ec7ca1fa7fe6c313b49aacde3b48d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:56:2e:23:c6:33:f2:52:d1:d5:a8:66:b3:2a:
c0:1c:4c:cd:83:36:cf:dc:8c:12:86:fe:01:ef:af:
1b:3a:58:3d:18:df:b4:4e:16:ed:a8:f7:44:e6:ca:
ee:1f:fa:4b:a1:01:7a:4c:6b:90:10:65:3a:9c:eb:
3e:e1:37:5a:80:5d:66:8a:0d:4d:cb:52:d3:21:fe:
e6:78:ad:a2:d8:d8:c4:45:25:0e:c4:3f:fe:e8:75:
00:6f:98:5e:03:c2:55:ca:7e:ca:56:8e:01:52:93:
be:3c:7e:62:ca:f2:c3:08:94:01:3a:33:f9:46:d1:
9e:ab:a3:29:ed:b9:18:68:0c:c0:ce:78:b9:5b:bb:
e4:92:7b:68:a0:6d:ed:ef:a1:ad:f4:f4:ae:ab:55:
63:c4:34:f4:a7:f2:ba:a7:0a:15:52:3e:de:89:0c:
41:28:e4:a0:fb:6e:25:0c:08:c0:be:0a:a4:24:05:
7e:0d:25:a9:5d:3d:15:0f:25:be:1f:7b:f2:4c:9f:
3e:9b:54:cc:d7:8d:52:05:f3:21:8a:99:34:1c:50:
3e:84:d3:e6:56:7e:85:47:b6:f2:13:38:90:00:c1:
8f:95:22:be:b8:bf:35:40:ec:6b:7e:16:98:c3:a7:
f9:95:09:30:05:bc:fa:ac:72:90:86:15:3e:93:b6:
c4:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:85:75:87:E1:EC:7C:A1:FA:7F:E6:C3:13:B4:9A:AC:DE:3B:48:D8
X509v3 Authority Key Identifier:
keyid:E8:01:F2:3C:E8:21:C2:64:D6:77:27:53:6E:C1:83:53:75:94:C5:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AHyPOghwmTWdydTbsGDU3WUxfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/noV1h-HsfKH6f-bDE7SarN47SNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/eab4d8-6afd-4f81-ab10-464eb183b568/1/6AHyPOghwmTWdydTbsGDU3WUxfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.11.48.0/20
Signature Algorithm: sha256WithRSAEncryption
53:7c:9d:c2:cb:0d:7b:33:bb:3f:c5:71:53:73:f4:c3:1b:6a:
85:13:50:b8:72:92:65:a1:4a:94:7f:44:7f:d1:2d:12:a7:14:
ed:39:64:06:59:fe:bf:b6:a7:af:65:63:88:e5:88:f6:0e:61:
f7:81:24:16:2d:58:3f:54:8c:32:f1:82:55:fc:41:b8:dc:35:
5c:21:2b:bf:ed:5a:1e:c2:73:48:73:3d:a4:1b:d2:cd:02:7d:
5b:0a:4c:4a:46:8b:db:01:da:00:24:8d:b9:db:f9:e8:52:5b:
6a:a2:e7:88:7e:4e:8d:0e:e0:82:6a:b9:56:b0:66:f8:68:df:
43:c9:1c:d5:28:80:e3:f2:81:81:2c:11:32:8a:13:01:a5:ce:
51:57:af:b4:c2:fb:f8:6b:8a:ff:f1:bf:f0:f1:fc:db:2a:4e:
01:dc:8b:02:e2:c5:fd:f3:33:01:58:f0:f4:b6:13:6b:ff:0a:
cf:ee:3d:14:45:95:da:62:f8:b1:00:c6:e2:93:03:83:46:89:
01:95:68:a4:3c:fb:5a:0b:e0:78:56:05:99:ca:ad:d0:19:4e:
7c:26:cb:ce:31:b6:2b:57:f4:82:b6:a6:cd:83:88:88:62:eb:
e6:7b:8b:0e:a8:0b:ca:23:4f:ce:7e:fa:86:8f:14:73:61:25:
33:b6:68:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:57 2023 by rpki-client on console-fra.rpki-client.org