Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/53e26b-e7ee-473e-a54a-ffcca3e1f17f/1/nerae9MvAcwt_APVuEU8xZoy60o.roa
File: nerae9MvAcwt_APVuEU8xZoy60o.roa (raw, json)
Hash identifier: BGVGm7KZuvyLVNVCHN43DzrCmxQ2JUPws/ynutCCm9g=
Subject key identifier: 9D:EA:DA:7B:D3:2F:01:CC:2D:FC:03:D5:B8:45:3C:C5:9A:32:EB:4A
Certificate issuer: /CN=2c3b0ae5b7f781122c709a2650adf9729187e1e1
Certificate serial: 14D5E722
Authority key identifier: 2C:3B:0A:E5:B7:F7:81:12:2C:70:9A:26:50:AD:F9:72:91:87:E1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LDsK5bf3gRIscJomUK35cpGH4eE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/53e26b-e7ee-473e-a54a-ffcca3e1f17f/1/nerae9MvAcwt_APVuEU8xZoy60o.roa
Signing time: Sat 01 Jan 2022 00:56:35 +0000
ROA not before: Sat 01 Jan 2022 00:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20760
IP address blocks: 193.127.0.0/16 maxlen: 24
193.201.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349562658 (0x14d5e722)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c3b0ae5b7f781122c709a2650adf9729187e1e1
Validity
Not Before: Jan 1 00:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9deada7bd32f01cc2dfc03d5b8453cc59a32eb4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8d:b2:3e:c3:c2:4b:33:4c:12:61:2a:97:e9:
91:82:87:ec:e4:9f:1c:27:6d:06:53:e4:f5:0f:ff:
38:57:fb:d9:f9:f7:b3:85:63:f6:c1:3e:6b:de:ec:
76:fd:37:ff:c1:41:23:48:a2:d3:2d:47:d2:80:75:
ec:97:5b:2e:06:d2:7d:07:8f:c9:03:30:d5:96:e0:
02:e9:14:90:9c:b4:02:e5:46:0b:9b:cb:4f:99:18:
ad:eb:af:91:52:58:8c:c1:0a:28:d4:1f:b4:c4:05:
94:9c:35:10:00:bb:a3:75:02:f2:c3:f9:b2:7d:6b:
a3:8b:ba:65:b3:61:e8:f4:85:e7:8d:d8:d2:6e:52:
88:22:a8:55:05:33:3c:23:5f:84:6d:d4:69:d5:01:
4a:0d:a8:51:cc:70:af:d8:27:9b:fc:0f:4a:22:61:
05:e0:ed:f6:2f:a5:9d:ca:69:d0:dc:ff:d2:1a:56:
32:f0:04:37:81:6a:85:2a:9b:11:d6:44:97:1b:ba:
bb:9c:21:fa:19:3a:13:93:41:81:9c:17:e2:c3:68:
2d:f0:70:0b:6f:41:4d:c1:9d:bc:fc:16:a5:5e:2b:
a1:1a:21:53:27:99:ba:65:2a:ed:3c:57:a7:47:ce:
1c:eb:7c:0f:11:79:dd:4c:9e:8f:cf:e9:da:d8:e6:
e0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:EA:DA:7B:D3:2F:01:CC:2D:FC:03:D5:B8:45:3C:C5:9A:32:EB:4A
X509v3 Authority Key Identifier:
keyid:2C:3B:0A:E5:B7:F7:81:12:2C:70:9A:26:50:AD:F9:72:91:87:E1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LDsK5bf3gRIscJomUK35cpGH4eE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/53e26b-e7ee-473e-a54a-ffcca3e1f17f/1/nerae9MvAcwt_APVuEU8xZoy60o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/53e26b-e7ee-473e-a54a-ffcca3e1f17f/1/LDsK5bf3gRIscJomUK35cpGH4eE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.127.0.0/16
193.201.108.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:2b:1a:27:e9:f1:7e:7d:24:79:83:77:40:d1:35:e9:e6:49:
50:69:7b:23:07:37:fa:0b:08:80:8a:b4:e2:4b:a1:58:c5:81:
b5:26:66:73:2a:cb:82:78:2f:67:99:d1:77:62:60:65:c1:27:
bd:7d:80:dd:60:63:68:d6:21:46:2e:d3:d0:1e:fd:ec:3f:c0:
79:3a:1b:af:a5:ce:7c:69:07:2d:38:e8:4f:37:58:97:46:eb:
ed:7d:c4:e9:7d:78:83:8b:2b:4f:46:ed:f4:31:c5:94:88:95:
3f:5b:1f:17:b1:1e:6b:e2:96:34:ad:02:5f:f0:36:9e:01:5e:
fa:a2:ad:ce:2c:a3:c3:54:9f:44:7a:d0:8b:11:f8:7a:2a:0b:
b5:ed:11:9d:a4:79:9e:7b:07:6d:4f:d9:97:4e:64:c1:ad:9a:
04:da:ca:d3:f0:e6:83:a9:7a:90:c6:dd:b4:ab:05:7b:99:ef:
3e:54:65:4f:be:84:2d:78:fe:84:7d:b9:ff:6e:52:1a:3b:21:
b0:d0:f2:81:4f:92:7d:24:26:60:65:75:53:02:17:f4:7c:95:
c2:18:32:56:cf:d5:70:4e:48:e7:7d:d2:e4:f0:04:af:e5:4f:
ef:ac:f5:cb:f4:98:4e:59:04:3a:b8:9b:82:f8:64:e2:9e:62:
dd:96:6d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:07 2024 by rpki-client on console-fra.rpki-client.org