Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/c01306-66f5-4209-8c88-2db691b1d4ab/1/nHUm3TfEp9zayI_imp1cmclvVx0.roa
File: nHUm3TfEp9zayI_imp1cmclvVx0.roa (raw, json)
Hash identifier: pIiizEBglPvsWUkFSL0Mp0h+f9A+mrYCjwz3WYXexGc=
Subject key identifier: 9C:75:26:DD:37:C4:A7:DC:DA:C8:8F:E2:9A:9D:5C:99:C9:6F:57:1D
Certificate issuer: /CN=8300996c08890bd5e1e6dd0528217d28f9d09355
Certificate serial: 08784CB7
Authority key identifier: 83:00:99:6C:08:89:0B:D5:E1:E6:DD:05:28:21:7D:28:F9:D0:93:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwCZbAiJC9Xh5t0FKCF9KPnQk1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/c01306-66f5-4209-8c88-2db691b1d4ab/1/nHUm3TfEp9zayI_imp1cmclvVx0.roa
Signing time: Sat 01 Jan 2022 11:54:10 +0000
ROA not before: Sat 01 Jan 2022 11:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197422
IP address blocks: 185.119.168.0/22 maxlen: 24
91.224.148.0/23 maxlen: 24
2a03:7220::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142101687 (0x8784cb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8300996c08890bd5e1e6dd0528217d28f9d09355
Validity
Not Before: Jan 1 11:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c7526dd37c4a7dcdac88fe29a9d5c99c96f571d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e8:74:96:f7:03:49:a0:ed:3e:60:31:e5:dd:
c8:a6:dd:9b:f6:2d:f1:c6:ae:17:2c:aa:b4:4b:07:
a7:26:9e:74:b7:20:92:57:4e:a0:31:d7:07:8d:a9:
ca:9b:8d:9a:ae:da:fa:06:1b:69:4a:40:b9:8b:6f:
8d:1e:d1:f4:ab:f7:3a:c8:73:f2:fd:6c:e3:02:82:
91:82:c8:24:d1:b5:00:44:91:bb:b9:bd:a8:44:ec:
8d:b0:35:6c:b6:80:7a:8f:c7:9d:3f:54:c8:aa:89:
7e:ec:ad:55:04:25:71:22:d2:b0:10:d2:bc:eb:2a:
47:07:18:03:93:b4:f9:f9:1b:75:d2:36:48:d8:d2:
86:08:48:89:b4:3c:c9:b8:ff:73:91:cb:38:a8:f8:
aa:61:39:90:c8:cf:b9:13:5c:9d:7e:46:15:60:7f:
7b:52:31:53:4e:c9:1a:a2:15:29:5d:28:ee:fd:17:
4f:3f:d5:01:f4:8a:24:2f:41:f1:8b:b6:49:1d:b1:
5a:2f:41:c6:95:59:61:aa:20:cd:73:a8:e3:59:72:
66:cd:36:33:f3:60:13:7c:38:0f:7c:c0:0f:17:e6:
ae:f6:41:32:71:97:97:a8:5d:e0:8e:6b:46:5d:b8:
92:55:16:c2:49:60:d5:dd:c1:ad:7e:a0:ad:04:fa:
d1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:75:26:DD:37:C4:A7:DC:DA:C8:8F:E2:9A:9D:5C:99:C9:6F:57:1D
X509v3 Authority Key Identifier:
keyid:83:00:99:6C:08:89:0B:D5:E1:E6:DD:05:28:21:7D:28:F9:D0:93:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwCZbAiJC9Xh5t0FKCF9KPnQk1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/c01306-66f5-4209-8c88-2db691b1d4ab/1/nHUm3TfEp9zayI_imp1cmclvVx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/c01306-66f5-4209-8c88-2db691b1d4ab/1/gwCZbAiJC9Xh5t0FKCF9KPnQk1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.148.0/23
185.119.168.0/22
IPv6:
2a03:7220::/29
Signature Algorithm: sha256WithRSAEncryption
67:9e:9f:9b:16:a0:9f:8e:0c:94:b4:4c:d9:bb:92:a4:a9:60:
d5:4f:0b:09:64:af:a6:99:df:ea:35:37:15:df:2e:25:51:2d:
af:56:67:32:fa:df:e6:c3:c4:cb:a2:b6:d0:74:6c:dc:a8:93:
e8:e8:3b:25:78:53:e6:64:58:0b:26:27:8d:ac:b4:56:81:15:
96:97:aa:51:e0:29:ea:36:0c:84:cf:f7:11:a1:52:7a:94:20:
33:ee:b6:f4:39:4b:1e:16:21:f1:43:51:43:be:68:b6:c9:59:
2d:7e:b1:fd:16:81:84:a1:2e:af:33:d5:bf:76:e6:18:38:44:
6f:06:e3:f7:78:cd:a7:cc:58:3a:05:99:df:c8:ed:39:66:23:
b0:7e:d5:09:a4:d5:52:88:04:dc:a6:b4:8c:a8:a6:4f:8d:f1:
75:16:dc:bb:e1:cf:21:db:41:93:d1:34:ec:f6:a7:46:7f:3b:
89:bb:14:79:12:58:fe:76:5a:77:67:8c:d5:fd:53:28:22:81:
bb:a1:85:ed:8d:3d:df:60:9c:fb:1d:1d:6b:f4:ac:48:25:ae:
df:33:ad:ac:6b:58:8e:34:24:fc:67:05:1d:12:21:61:c9:18:
8c:b4:46:14:e2:f4:d8:9d:c6:90:0f:b8:8e:e9:1b:79:31:8f:
4c:89:94:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:00 2023 by rpki-client on console-fra.rpki-client.org