Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5f5589-4c32-493f-924e-bae7aa0a18a0/1/NpYo4toexsmlnNO8PFAZhNruAOQ.roa
File: NpYo4toexsmlnNO8PFAZhNruAOQ.roa (raw, json)
Hash identifier: ykVJ3va/SOuI5rboH1kRL+3Y+Z2BCL2Jb7rFJpG2Vkg=
Subject key identifier: 36:96:28:E2:DA:1E:C6:C9:A5:9C:D3:BC:3C:50:19:84:DA:EE:00:E4
Certificate issuer: /CN=1716ebd40a744a0c84f2535457047808ad2f17c4
Certificate serial: 0184810D5CB0114228F7B68A1042D69006E4
Authority key identifier: 17:16:EB:D4:0A:74:4A:0C:84:F2:53:54:57:04:78:08:AD:2F:17:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fxbr1Ap0SgyE8lNUVwR4CK0vF8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5f5589-4c32-493f-924e-bae7aa0a18a0/1/NpYo4toexsmlnNO8PFAZhNruAOQ.roa
Signing time: Wed 16 Nov 2022 15:27:27 +0000
ROA not before: Wed 16 Nov 2022 15:27:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 193.108.118.0/24 maxlen: 24
193.108.117.0/24 maxlen: 24
193.108.116.0/24 maxlen: 24
193.108.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:81:0d:5c:b0:11:42:28:f7:b6:8a:10:42:d6:90:06:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1716ebd40a744a0c84f2535457047808ad2f17c4
Validity
Not Before: Nov 16 15:27:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=369628e2da1ec6c9a59cd3bc3c501984daee00e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ae:57:bc:82:77:35:13:3b:13:28:83:15:85:
69:37:ae:8b:a5:ef:3c:ec:9c:fa:73:0f:b2:f1:92:
26:fb:17:03:a4:aa:d6:2e:ad:ab:90:3f:ab:bb:91:
b3:58:d5:c1:ef:67:c0:87:86:0a:7a:56:cd:50:31:
59:6b:27:be:17:86:2f:ff:ad:40:e0:7e:ac:67:a0:
2a:e5:2b:a1:8c:87:d9:4c:f0:8a:9f:fe:40:73:3a:
37:c4:ac:0d:a9:46:cf:a3:d5:89:27:12:26:99:86:
0a:93:32:10:58:2e:e5:2f:2d:2d:bb:46:44:a6:21:
d1:60:a2:96:f9:6b:df:e4:c0:69:55:31:df:90:97:
6d:24:8b:14:ce:4e:cf:f0:e4:7a:cf:ff:38:f2:b7:
64:61:f1:f7:b5:28:ec:0b:6d:54:2c:00:35:3c:23:
e8:7d:c5:73:58:a5:2c:6c:58:73:29:17:4f:82:6b:
19:11:9c:e3:b3:79:c0:cb:1e:a4:4e:ca:4f:28:97:
64:db:38:99:dc:45:ab:d7:6b:c2:11:a3:d3:5a:83:
52:dc:17:08:5c:35:08:b8:73:66:e0:3a:c4:5f:5a:
bc:bd:7d:6e:82:94:cc:ed:d9:f8:cb:48:16:1c:f8:
90:db:9e:14:d7:7c:15:5e:80:79:4f:a4:31:19:79:
4b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:96:28:E2:DA:1E:C6:C9:A5:9C:D3:BC:3C:50:19:84:DA:EE:00:E4
X509v3 Authority Key Identifier:
keyid:17:16:EB:D4:0A:74:4A:0C:84:F2:53:54:57:04:78:08:AD:2F:17:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fxbr1Ap0SgyE8lNUVwR4CK0vF8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f5589-4c32-493f-924e-bae7aa0a18a0/1/NpYo4toexsmlnNO8PFAZhNruAOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5f5589-4c32-493f-924e-bae7aa0a18a0/1/Fxbr1Ap0SgyE8lNUVwR4CK0vF8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.116.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:ae:2e:af:11:99:65:de:bd:c8:fa:3c:1a:66:4c:e5:33:f9:
e2:69:bf:32:17:59:ef:ce:2d:3f:3f:1a:e7:60:88:bc:07:fb:
ba:38:c2:7f:3b:35:68:58:60:24:e6:22:00:b4:79:1d:65:53:
4e:75:74:b4:2a:f3:06:0a:63:f4:ed:28:66:2b:3e:19:40:e7:
7d:87:5a:d1:d7:45:06:ce:74:85:60:3e:bd:3b:f3:96:60:cb:
8c:c9:43:8d:75:39:47:0e:96:0d:64:ac:0f:36:31:b0:e7:95:
48:7c:e2:de:39:e3:65:d1:19:df:57:f7:65:37:09:b7:28:0f:
eb:22:2e:6b:6b:48:5b:01:bf:25:53:bb:12:0f:b3:fc:be:23:
92:89:3e:dc:14:6f:f1:a0:2a:f0:4d:04:2c:8c:f9:66:e6:2b:
5b:80:93:19:b5:13:bf:8b:10:60:fa:c2:aa:c1:5b:18:bb:30:
25:fe:a8:e8:32:e0:f5:9a:d8:57:a9:e3:59:be:cd:7a:79:11:
f6:34:98:dd:25:97:d1:a3:3f:fc:01:40:af:04:da:60:9b:92:
a0:ef:c8:8f:de:f5:29:b6:35:10:f3:67:80:8b:a0:11:69:5b:
ae:6f:97:2f:f9:81:40:bd:9b:4d:44:5c:c7:83:39:82:39:8a:
d5:5d:2b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:21 2024 by rpki-client on console-ams.rpki-client.org