Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/NDAdOTybRa2YJLX9-fBfv-7wSQg.roa
File: NDAdOTybRa2YJLX9-fBfv-7wSQg.roa (raw, json)
Hash identifier: twjboBf/XIAQkIiJL3Xx71fJ1/FZfyCngdnoyHcjoVw=
Subject key identifier: 34:30:1D:39:3C:9B:45:AD:98:24:B5:FD:F9:F0:5F:BF:EE:F0:49:08
Certificate issuer: /CN=10543a5197eb2544447e9d36b3ebf14452c777eb
Certificate serial: 20363806
Authority key identifier: 10:54:3A:51:97:EB:25:44:44:7E:9D:36:B3:EB:F1:44:52:C7:77:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFQ6UZfrJUREfp02s-vxRFLHd-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/NDAdOTybRa2YJLX9-fBfv-7wSQg.roa
Signing time: Sat 01 Jan 2022 05:03:05 +0000
ROA not before: Sat 01 Jan 2022 05:03:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199256
IP address blocks: 193.120.55.0/24 maxlen: 24
193.120.164.0/23 maxlen: 23
193.120.22.0/24 maxlen: 24
193.120.40.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 540424198 (0x20363806)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10543a5197eb2544447e9d36b3ebf14452c777eb
Validity
Not Before: Jan 1 05:03:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34301d393c9b45ad9824b5fdf9f05fbfeef04908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cc:2d:94:65:f4:65:0e:c1:5a:f8:87:c1:f6:
c3:b8:26:8d:4e:29:2e:73:68:b9:aa:26:20:c6:58:
2f:5b:5c:fb:ef:68:54:41:f9:cd:e1:c9:38:3a:a5:
63:db:27:cf:9b:6d:7f:d3:5c:66:f4:09:b5:0a:e4:
6c:9b:1c:76:ba:35:ac:f2:f8:b1:94:88:20:4d:ce:
01:cd:b4:47:47:09:42:c2:92:42:fa:32:62:9d:3a:
2f:a6:ee:93:4e:06:c7:40:10:42:b1:2e:65:ab:b9:
98:c9:ec:6c:53:12:9d:33:e4:48:52:61:f9:60:fd:
dd:f5:b3:1a:e2:43:4e:e8:9f:f0:14:85:af:81:c2:
46:c8:c8:83:f3:86:ea:71:93:47:68:61:89:86:d6:
c0:8f:d8:fc:e6:05:4f:e7:c6:67:6f:04:e1:c1:c7:
21:d8:34:6b:23:d0:0d:59:86:8d:45:af:d2:ec:86:
a6:e0:e6:8b:94:be:1b:65:3f:93:8c:c3:ae:cf:60:
00:3d:0e:b9:9f:e2:bb:d2:22:dd:fe:3c:c9:c6:6d:
71:82:1f:2f:cb:e4:a3:78:f8:1d:da:89:39:83:5e:
8f:7c:ad:a6:fb:78:16:87:c1:a9:de:25:46:58:a2:
a2:f6:f5:10:0c:60:6c:01:bb:ce:1f:1b:a0:3b:94:
23:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:30:1D:39:3C:9B:45:AD:98:24:B5:FD:F9:F0:5F:BF:EE:F0:49:08
X509v3 Authority Key Identifier:
keyid:10:54:3A:51:97:EB:25:44:44:7E:9D:36:B3:EB:F1:44:52:C7:77:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFQ6UZfrJUREfp02s-vxRFLHd-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/NDAdOTybRa2YJLX9-fBfv-7wSQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/1be7bc-b642-4a0d-8e6b-f7e0c5e2702e/1/EFQ6UZfrJUREfp02s-vxRFLHd-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.120.22.0/24
193.120.40.0/23
193.120.55.0/24
193.120.164.0/23
Signature Algorithm: sha256WithRSAEncryption
81:84:0d:c8:c8:f3:90:d1:71:42:10:95:3e:8a:5e:91:dd:b0:
a5:1c:40:59:dc:8e:5d:9c:5d:68:3a:2d:f2:56:37:78:da:66:
17:e2:0a:b4:cb:79:32:44:fd:36:d0:e0:19:6f:a4:04:ce:fa:
a3:77:93:2b:dc:c9:38:47:da:6e:6f:30:70:81:0b:52:85:5c:
48:37:fc:df:b8:f9:e0:c4:1c:40:d9:ce:95:94:b7:fb:79:d9:
f8:a4:1d:f9:49:da:44:aa:42:d5:c0:aa:c4:6e:a4:da:9e:29:
8a:fb:1a:c5:7b:ed:9a:0b:35:c1:0a:f1:65:f9:2f:a3:d1:88:
19:9c:69:76:bd:ce:e2:23:e4:b1:26:c7:62:d4:d7:8f:00:74:
64:08:14:69:8a:21:06:6b:f4:47:f4:d5:2f:3b:f0:f2:c2:57:
78:f6:af:7e:c0:fd:14:e0:05:d6:7b:38:82:dd:19:aa:9f:42:
fc:6c:86:e9:92:ae:51:f8:d7:86:2d:39:59:15:88:70:3b:a4:
97:07:ab:3f:1e:d8:31:51:08:4a:48:36:2c:42:84:2c:41:26:
1c:32:bd:75:10:c5:9a:e8:e1:a0:cf:8c:1d:e8:3b:f6:14:5e:
fd:18:83:8d:31:11:e8:9a:76:4a:d6:58:2c:14:7f:58:f7:bd:
3f:79:4f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:53 2023 by rpki-client on console-ams.rpki-client.org