Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/N0iMBv_GPbhP4YRhg2hECGj5rRQ.roa
File: N0iMBv_GPbhP4YRhg2hECGj5rRQ.roa (raw, json)
Hash identifier: 7Cg7tkxDJuCkIr5YIFvMgDOjcQ5QmDUyxokT7gvnpVc=
Subject key identifier: 37:48:8C:06:FF:C6:3D:B8:4F:E1:84:61:83:68:44:08:68:F9:AD:14
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 43602B4C
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/N0iMBv_GPbhP4YRhg2hECGj5rRQ.roa
Signing time: Tue 07 Jun 2022 07:30:20 +0000
ROA not before: Tue 07 Jun 2022 07:30:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62034
IP address blocks: 128.0.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1130376012 (0x43602b4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jun 7 07:30:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37488c06ffc63db84fe184618368440868f9ad14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4b:15:c2:a0:9b:ab:24:af:c9:29:a5:db:7d:
26:f7:65:99:89:81:a1:a3:04:41:b3:5e:79:a2:25:
2e:78:da:22:5c:7d:71:68:24:97:70:fd:c9:62:60:
8d:d5:04:82:83:c9:86:c5:e7:48:bd:ac:e5:3b:5c:
bc:ed:7a:b5:6d:c0:a5:10:5c:99:4f:17:61:72:67:
d8:ec:3a:dd:c2:e5:96:26:f0:56:c9:c3:1e:32:68:
0b:e1:1a:35:59:0a:19:f2:ac:ef:b1:a4:ae:c6:c5:
07:5c:5e:56:8f:47:ae:66:9a:f0:d1:4f:06:02:58:
1c:af:c0:77:0c:fd:34:ee:55:35:5d:db:b2:c2:a1:
34:ec:63:93:a8:23:05:f9:de:48:f9:66:b7:17:8b:
3c:8e:3a:c8:f6:db:d3:79:8b:44:5f:a6:c3:17:34:
bf:a4:06:6e:ff:1a:8d:be:bf:16:8a:a0:09:d7:46:
26:70:c5:4e:1f:fb:07:7c:53:24:a0:67:d4:fc:dd:
d4:c9:36:2a:c6:a0:bc:e0:2f:48:8c:1d:0a:a5:b5:
c5:d0:f0:61:d7:6c:b0:ac:54:fc:27:24:96:0b:9e:
63:6a:6b:22:e2:f6:d9:e0:82:50:cf:df:9a:6c:90:
c2:c9:62:b6:3f:53:ae:a6:53:de:4e:4b:43:68:43:
a3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:48:8C:06:FF:C6:3D:B8:4F:E1:84:61:83:68:44:08:68:F9:AD:14
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/N0iMBv_GPbhP4YRhg2hECGj5rRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.0.3.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:eb:3e:6f:7a:66:66:08:b6:ed:23:49:9d:12:8e:2a:73:96:
16:0d:be:07:63:71:5c:99:46:66:08:5b:bc:d6:21:01:f3:eb:
0c:31:dd:37:74:2f:93:fb:d0:2d:31:eb:b3:b0:8a:1f:00:b2:
36:75:3a:1a:71:46:1d:79:1c:72:57:fd:7e:c9:46:76:e6:d7:
7b:b6:55:fd:dc:d4:21:2c:91:d9:19:7a:f7:27:ca:69:cc:ab:
1d:17:51:c7:8c:b9:d8:43:37:24:3d:fa:9e:77:7a:b7:c6:a1:
17:63:e2:b6:56:13:52:7d:00:43:58:9b:c6:21:d7:59:eb:a7:
d1:a2:b9:c6:10:fa:cc:c6:a2:9d:b9:d5:cc:94:28:b4:86:c0:
61:e0:5d:ce:d4:b5:a1:c9:00:b1:41:b5:85:f8:f0:29:dd:82:
f4:7b:be:0a:5d:29:63:1c:ea:f7:60:b7:e4:bb:20:fd:88:ad:
4c:2e:98:17:d5:b9:23:ce:44:5d:51:12:86:b4:61:b5:35:9c:
fa:49:42:03:d0:33:3b:a3:86:33:c5:dc:f8:8d:01:79:60:33:
d6:78:93:d5:7c:a2:de:43:07:44:5a:6b:9d:4d:20:cd:07:65:
c8:73:b2:ee:03:31:62:82:24:e1:8c:f0:d4:bb:2e:a3:08:d7:
b9:a6:d8:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:12 2023 by rpki-client on console-fra.rpki-client.org