Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/3fa718-90c5-426c-b85f-1df09e701434/1/NljIu-JqqqeVi3HGnbAytkL0ca4.roa
File: NljIu-JqqqeVi3HGnbAytkL0ca4.roa (raw, json)
Hash identifier: 2JjJVZ9vDYk4s4FvCIOx9Qg18TOgI7CpjobFNSDuWWs=
Subject key identifier: 36:58:C8:BB:E2:6A:AA:A7:95:8B:71:C6:9D:B0:32:B6:42:F4:71:AE
Certificate issuer: /CN=b8232d19dd81d45c25923aeb4d9a9685879aefa6
Certificate serial: 1054C9BA
Authority key identifier: B8:23:2D:19:DD:81:D4:5C:25:92:3A:EB:4D:9A:96:85:87:9A:EF:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uCMtGd2B1FwlkjrrTZqWhYea76Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/3fa718-90c5-426c-b85f-1df09e701434/1/NljIu-JqqqeVi3HGnbAytkL0ca4.roa
Signing time: Sat 01 Jan 2022 07:03:45 +0000
ROA not before: Sat 01 Jan 2022 07:03:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 193.17.232.0/22 maxlen: 22
193.17.240.0/23 maxlen: 23
193.17.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273992122 (0x1054c9ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8232d19dd81d45c25923aeb4d9a9685879aefa6
Validity
Not Before: Jan 1 07:03:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3658c8bbe26aaaa7958b71c69db032b642f471ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:eb:ef:85:04:61:86:fc:bf:bb:f7:f5:1b:cf:
2c:2a:a2:c6:c0:17:8b:d0:91:1c:67:37:0d:01:9c:
a8:97:e7:d4:7b:54:5b:ec:08:77:6b:5d:3c:2a:88:
0c:ef:63:7c:36:b3:fa:97:ae:fc:17:e4:7a:4f:75:
3a:32:fb:f7:f0:7e:db:61:55:51:f2:ef:96:b6:a3:
05:65:da:48:7b:42:ae:11:ed:03:c0:0f:0b:08:f7:
5e:d6:e2:2b:06:32:44:47:2e:6c:1c:64:27:db:d2:
77:86:80:15:fa:96:fe:5e:6e:b3:cf:55:18:06:e5:
79:92:63:4f:93:e7:51:78:68:c3:d6:0a:89:b3:9d:
09:9f:2c:bf:6e:4b:a5:47:84:86:76:99:1c:fd:0c:
8f:2e:0e:4b:a9:13:c4:76:8e:0e:bf:d2:36:82:eb:
56:99:94:33:64:b9:93:a1:4b:84:22:8c:34:c0:48:
95:0c:9d:5e:21:2e:02:4c:f3:2c:cc:72:56:3f:c3:
c6:a3:6d:12:ea:a8:d4:00:bc:df:3d:b2:9b:2e:ce:
23:1d:8d:b6:ce:70:07:fe:ed:68:3a:39:3e:bb:52:
09:f2:30:9f:b5:b8:46:e5:21:e2:08:99:7e:6f:b3:
ac:0b:6c:9c:f4:21:4e:ae:c1:91:45:40:01:4e:58:
2b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:58:C8:BB:E2:6A:AA:A7:95:8B:71:C6:9D:B0:32:B6:42:F4:71:AE
X509v3 Authority Key Identifier:
keyid:B8:23:2D:19:DD:81:D4:5C:25:92:3A:EB:4D:9A:96:85:87:9A:EF:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uCMtGd2B1FwlkjrrTZqWhYea76Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3fa718-90c5-426c-b85f-1df09e701434/1/NljIu-JqqqeVi3HGnbAytkL0ca4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3fa718-90c5-426c-b85f-1df09e701434/1/uCMtGd2B1FwlkjrrTZqWhYea76Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.232.0-193.17.241.255
Signature Algorithm: sha256WithRSAEncryption
58:54:54:2e:c4:56:82:6f:a6:cf:86:b1:c0:68:a4:85:ae:69:
6a:2d:b3:47:00:d3:5f:a3:2f:cc:a0:b6:36:8b:4f:2d:b3:98:
c6:c7:a0:58:d3:da:79:4d:28:f4:94:b8:c5:0f:42:ea:9e:57:
c4:3b:25:90:cf:ab:94:da:ca:04:86:dd:1c:13:36:22:00:1e:
e9:24:0f:24:dc:e2:d0:5e:22:40:51:73:6b:34:c2:1c:13:03:
c4:10:0a:a8:be:33:eb:2e:df:03:7e:75:f7:df:c1:e0:d5:87:
39:78:3e:30:01:08:82:30:5c:48:e0:97:43:7c:b5:b5:a3:b2:
56:17:3f:0f:15:0e:6d:0a:6a:cb:a2:db:26:4f:4e:e4:a3:97:
17:73:db:90:d4:9b:e1:37:82:45:2b:4a:73:8b:03:0c:1c:76:
af:23:e9:76:b3:c3:b7:10:26:cc:e2:38:3f:5a:64:5d:f2:76:
51:cb:fd:fe:9b:d9:71:e2:3f:5e:3f:5e:c4:cd:ed:e1:25:b0:
25:86:d3:c8:bb:21:f8:4f:d6:9c:bf:a6:e2:65:ca:3b:b8:26:
49:6f:16:00:96:5d:3e:6c:13:93:cf:08:fa:97:0c:ce:c0:08:
a2:2a:6f:dd:c3:81:4e:22:8e:2e:cf:14:f9:61:0d:b0:c5:3c:
7a:42:84:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:53 2024 by rpki-client on console-fra.rpki-client.org