Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/NjzrPVJ-sjVbT41moOWkXM0sQhk.roa
File: NjzrPVJ-sjVbT41moOWkXM0sQhk.roa (raw, json)
Hash identifier: sCj6CdljAh2TYv5XbA63jiPhCWj8/p6yDLZLCUBe7yo=
Subject key identifier: 36:3C:EB:3D:52:7E:B2:35:5B:4F:8D:66:A0:E5:A4:5C:CD:2C:42:19
Certificate issuer: /CN=a4767bc5fbcbcefb1c1c747bb0eb5337dab691c0
Certificate serial: 37ADE0E8
Authority key identifier: A4:76:7B:C5:FB:CB:CE:FB:1C:1C:74:7B:B0:EB:53:37:DA:B6:91:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHZ7xfvLzvscHHR7sOtTN9q2kcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/NjzrPVJ-sjVbT41moOWkXM0sQhk.roa
Signing time: Sat 01 Jan 2022 12:05:33 +0000
ROA not before: Sat 01 Jan 2022 12:05:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50827
IP address blocks: 193.42.215.0/24 maxlen: 24
2a01:298:fd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934142184 (0x37ade0e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4767bc5fbcbcefb1c1c747bb0eb5337dab691c0
Validity
Not Before: Jan 1 12:05:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=363ceb3d527eb2355b4f8d66a0e5a45ccd2c4219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9d:97:7e:99:a5:85:bc:c4:d7:35:43:41:3a:
7d:c4:6a:c7:b7:53:d6:54:c3:86:5b:87:4e:2f:63:
65:d7:25:92:bb:8f:c9:25:1e:6e:6b:be:b9:89:c1:
e7:17:7b:99:46:34:91:01:0f:9a:4a:85:f4:b0:60:
da:8f:28:99:69:98:fe:2f:56:3e:b6:41:a1:d1:fd:
cd:fd:68:2b:cd:41:e8:db:85:70:4d:e5:34:98:50:
d0:e9:45:24:1c:5c:9c:1a:f3:64:13:7f:14:0a:ea:
22:b6:ab:09:c4:c7:3b:ed:9f:4e:e6:e6:37:48:f7:
62:57:6d:e0:86:12:44:f9:0f:78:f9:1b:dc:5f:62:
8e:fe:ed:94:07:b6:f7:6c:fc:4a:ce:1e:20:d6:bb:
91:af:73:3d:43:ad:e2:09:6a:0b:d9:4d:b8:79:c6:
ab:9f:4a:51:53:08:78:1c:d2:a6:fa:28:02:f9:56:
b0:11:e0:46:7a:86:bd:da:54:1a:73:ab:f9:02:26:
33:8b:97:12:bc:06:48:f6:f0:93:e0:93:33:b8:46:
4a:57:d1:10:28:19:86:c1:b6:a9:e6:61:b5:d0:b0:
ea:92:cd:ed:3c:21:43:7f:70:58:5d:48:e1:8c:d9:
bd:a8:c0:1c:69:cb:7b:3e:00:8b:a4:8d:ba:17:ab:
f0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:3C:EB:3D:52:7E:B2:35:5B:4F:8D:66:A0:E5:A4:5C:CD:2C:42:19
X509v3 Authority Key Identifier:
keyid:A4:76:7B:C5:FB:CB:CE:FB:1C:1C:74:7B:B0:EB:53:37:DA:B6:91:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHZ7xfvLzvscHHR7sOtTN9q2kcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/NjzrPVJ-sjVbT41moOWkXM0sQhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/pHZ7xfvLzvscHHR7sOtTN9q2kcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.215.0/24
IPv6:
2a01:298:fd::/48
Signature Algorithm: sha256WithRSAEncryption
bb:aa:4d:68:be:60:aa:ee:62:fa:80:23:0c:92:a9:f1:a0:b5:
fc:aa:7d:02:87:17:56:9f:df:db:41:80:a8:90:dd:1a:8d:03:
a9:dc:ac:ce:4a:23:e3:c8:15:5e:a5:88:90:72:68:96:35:f9:
e2:38:5d:69:70:9e:d9:79:bc:ce:98:fc:6a:0d:97:22:cc:78:
26:74:b9:0a:6f:5d:99:7a:e8:fe:7e:a9:64:57:bb:35:a8:80:
58:1a:79:21:af:a2:3b:63:17:8a:88:a8:03:94:61:f8:4e:fb:
6b:21:04:6d:40:08:40:7b:aa:2a:74:ab:00:1b:07:f0:dd:3e:
0f:36:56:b6:5f:34:2f:8b:7f:dc:6b:0d:32:96:3c:98:89:8f:
c4:88:a3:49:a4:36:66:43:1f:4f:27:06:0d:76:62:8b:71:8f:
34:97:9f:a3:63:18:9f:1f:71:07:12:bf:9a:91:a0:8a:bc:5e:
66:a7:34:ab:88:23:3f:45:06:a3:b5:93:91:5a:33:ec:e5:74:
b5:26:86:c6:1d:cd:be:22:b6:99:da:03:56:c4:01:37:7f:5e:
78:83:4f:56:86:13:78:b0:33:bd:85:39:8e:44:10:e0:be:52:
97:a3:ab:9d:49:6f:02:39:85:e8:2e:6e:ca:ef:86:41:91:84:
c5:76:30:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:16 2024 by rpki-client on console-ams.rpki-client.org