Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/Ng77QZVS-dIMBxXcU-mWnO5eH8A.roa
File: Ng77QZVS-dIMBxXcU-mWnO5eH8A.roa (raw, json)
Hash identifier: qCQaR2uBB9pUo4vPqnE2iZQipt0B1re9gppMdag6uQI=
Subject key identifier: 36:0E:FB:41:95:52:F9:D2:0C:07:15:DC:53:E9:96:9C:EE:5E:1F:C0
Certificate issuer: /CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Certificate serial: 077E1560
Authority key identifier: 0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/Ng77QZVS-dIMBxXcU-mWnO5eH8A.roa
Signing time: Sat 01 Jan 2022 14:58:27 +0000
ROA not before: Sat 01 Jan 2022 14:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 193.9.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125703520 (0x77e1560)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Validity
Not Before: Jan 1 14:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=360efb419552f9d20c0715dc53e9969cee5e1fc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3c:35:55:27:4a:db:f1:00:7b:97:e6:4a:f2:
c0:33:78:41:ef:12:5e:51:0e:16:cd:d1:7a:33:e9:
c4:7b:cb:5d:4c:cb:5d:b7:f2:eb:ad:0d:72:90:51:
ae:03:79:02:e5:2a:0c:7a:16:f5:46:04:88:d1:2f:
58:a9:67:7d:3e:dd:7c:be:05:5f:17:9f:46:0a:0e:
16:97:36:2c:28:3f:3a:e8:58:21:53:c3:23:92:1b:
02:aa:4b:49:dd:57:3f:f5:e1:84:23:32:55:be:18:
9d:6b:3d:5a:97:93:83:60:a5:17:98:ea:0d:f5:4c:
6b:94:4f:14:03:7c:1c:0d:b1:57:2f:41:89:ec:d1:
9e:a8:26:87:e6:c1:db:f4:af:be:af:af:2c:56:81:
c7:38:2d:dc:df:d7:be:9a:24:cb:53:05:f0:e6:16:
58:ac:94:28:92:da:7c:1b:3f:87:cd:e0:3d:37:17:
79:f7:67:11:98:4b:d7:42:10:c0:e4:7f:b4:1e:fa:
f5:5a:22:14:db:be:9f:15:c5:fe:db:0d:68:77:d0:
b5:ee:da:c6:da:81:a7:9b:75:03:81:b3:17:00:22:
11:0c:9b:bc:af:fe:15:ad:07:e9:f7:04:ee:47:0c:
09:af:2f:ff:a7:c3:a6:f0:99:1b:bf:7c:c6:59:01:
3b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:0E:FB:41:95:52:F9:D2:0C:07:15:DC:53:E9:96:9C:EE:5E:1F:C0
X509v3 Authority Key Identifier:
keyid:0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/Ng77QZVS-dIMBxXcU-mWnO5eH8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.122.0/24
Signature Algorithm: sha256WithRSAEncryption
83:9c:b8:28:6a:a6:f9:c2:8a:69:8f:a2:ed:e7:c1:9a:a8:4b:
83:16:9b:ab:9e:64:64:2e:c2:c7:af:b5:47:87:79:a6:c9:e8:
4d:35:76:d9:26:c6:cb:0a:59:4c:8d:69:30:2c:e5:5d:b3:bd:
6b:c8:21:73:8b:22:9c:93:05:10:75:f5:1c:a0:72:f5:ec:be:
ac:75:12:c4:3c:f9:45:d6:4b:77:46:e5:ff:59:06:de:6b:b2:
a3:2a:16:0f:3c:f4:d3:c3:ed:7c:f9:77:04:c8:17:28:0f:ec:
78:59:5a:96:3e:5a:cb:1f:60:e5:76:8e:c5:c7:f8:d7:e3:b9:
23:17:98:cb:20:39:cd:11:ea:1b:71:2f:7a:61:f8:83:7a:60:
d5:c3:cf:d0:7f:f4:44:b6:c1:7b:f7:c2:16:4b:da:6d:59:2c:
f0:03:bd:20:8e:53:b9:3e:cf:57:1b:6a:c4:b4:04:c9:0c:1d:
08:54:6c:b5:87:d5:4c:9e:cc:74:db:02:73:86:a9:8b:8f:2e:
a5:db:de:00:4f:e2:2c:36:69:9d:22:6c:d0:1c:90:65:2a:ba:
ea:26:ad:49:d1:e9:c3:d8:c3:a7:fe:9a:36:11:57:f1:9b:24:
9a:26:24:67:91:3c:9f:84:a6:88:35:ce:65:8f:a7:b3:e0:c2:
56:8f:f5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:45 2023 by rpki-client on console-ams.rpki-client.org