Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/7H3UzEcQE3KctA5POxuJNm7JT0U.roa
File: 7H3UzEcQE3KctA5POxuJNm7JT0U.roa (raw, json)
Hash identifier: wUrql51naKY5wT4vR/8hw71vYC4HWmtMC+V7DqZeLWQ=
Subject key identifier: EC:7D:D4:CC:47:10:13:72:9C:B4:0E:4F:3B:1B:89:36:6E:C9:4F:45
Certificate issuer: /CN=9da140e8028e6d537600e0888a9af5a971c5db46
Certificate serial: 431B6920
Authority key identifier: 9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/7H3UzEcQE3KctA5POxuJNm7JT0U.roa
Signing time: Sat 01 Jan 2022 05:05:28 +0000
ROA not before: Sat 01 Jan 2022 05:05:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48156
IP address blocks: 193.211.44.0/24 maxlen: 24
194.137.237.0/24 maxlen: 24
195.165.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1125869856 (0x431b6920)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9da140e8028e6d537600e0888a9af5a971c5db46
Validity
Not Before: Jan 1 05:05:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec7dd4cc471013729cb40e4f3b1b89366ec94f45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d6:b1:3e:d4:7b:a1:88:c5:95:79:12:7b:66:
15:94:98:6f:ff:3a:dc:9e:0e:6b:c7:c8:31:e4:62:
52:96:26:6b:38:82:8d:31:ab:ea:92:5c:e6:7f:4e:
6b:a1:0d:71:2a:1a:fe:21:e4:27:33:5d:93:58:cb:
43:39:33:1c:2d:5c:47:0e:5d:46:34:7b:97:c7:0e:
48:0d:f4:38:35:25:e4:40:02:fd:6b:81:33:67:d0:
e9:83:29:c7:f4:e4:b7:5a:e0:b8:5e:82:d7:7d:fe:
a1:f1:d7:dd:b0:e2:b3:14:95:9d:bb:82:1f:7a:26:
e7:b7:4a:01:b9:53:94:52:c9:41:89:b3:3d:31:3e:
c4:bf:42:ee:f4:cc:70:c9:72:9d:b5:cd:26:81:98:
4d:0b:1b:95:06:be:88:19:3e:34:e7:06:44:6f:ad:
84:f9:04:6c:7d:89:67:11:43:fc:66:06:86:01:73:
44:fe:b6:75:09:dd:a0:05:f5:dd:cc:55:40:bb:0d:
e1:09:95:c4:0f:fb:29:a0:60:bc:9d:a0:a4:d9:be:
d8:62:4e:d7:70:d5:b8:1f:f3:50:a1:0b:2e:ad:71:
98:35:88:6a:d3:5c:29:80:10:64:d9:24:17:9e:6a:
12:c1:8d:92:2a:c5:2a:18:40:85:e5:7f:8c:21:92:
c9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:7D:D4:CC:47:10:13:72:9C:B4:0E:4F:3B:1B:89:36:6E:C9:4F:45
X509v3 Authority Key Identifier:
keyid:9D:A1:40:E8:02:8E:6D:53:76:00:E0:88:8A:9A:F5:A9:71:C5:DB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naFA6AKObVN2AOCIipr1qXHF20Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/7H3UzEcQE3KctA5POxuJNm7JT0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/126755-eedd-40b1-95e8-a4ca8b9c205b/1/naFA6AKObVN2AOCIipr1qXHF20Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.211.44.0/24
194.137.237.0/24
195.165.77.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:a3:59:e1:96:b2:ee:1f:0d:24:df:43:90:6c:6c:8d:4e:19:
4d:98:4a:c7:d9:8f:a8:5a:76:88:2e:12:36:77:ef:53:b9:c5:
b3:ad:19:7c:11:3d:cb:1f:e3:c3:09:ea:d5:0a:cf:d2:fb:10:
0f:66:2e:71:c6:96:a5:29:69:a1:dc:74:d7:71:51:6f:e5:6e:
72:2d:1e:95:d3:b7:b4:2a:4e:b4:73:08:16:e6:9e:2d:5f:a1:
9b:a1:66:cb:a6:61:3d:37:11:a7:54:5a:1f:14:31:19:38:bd:
42:0a:20:9b:96:d5:c5:0c:bb:b4:cd:28:1f:ab:81:6a:3f:3a:
72:d6:b8:fd:b0:e6:00:4d:21:9e:cd:8b:72:81:54:2b:66:6d:
01:72:d3:5f:63:05:e3:24:68:0c:c0:bd:bc:84:37:6d:cb:3a:
4d:ed:19:29:98:f9:84:b6:b5:90:4a:fd:d1:8a:5a:a4:ea:71:
e8:da:26:0f:18:9a:07:04:ba:4f:84:1c:d6:ca:ad:cb:66:05:
87:00:d8:c5:ae:91:07:a7:c5:b5:e7:6a:96:b0:3a:39:87:5c:
ed:16:83:32:23:77:26:0c:c9:b6:26:cf:50:6f:03:97:fd:72:
43:a0:5d:63:08:50:60:60:1f:9c:79:e2:c8:41:6e:58:f8:cb:
68:67:3b:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:43 2024 by rpki-client on console-ams.rpki-client.org