Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/NC0OihJ6dpCWZU8fpPIAXMgMtuo.roa
File: NC0OihJ6dpCWZU8fpPIAXMgMtuo.roa (raw, json)
Hash identifier: hwzOFbJdOL3wuIu+uTskjBfp0TQh5NwJh2nknR/Cmgs=
Subject key identifier: 34:2D:0E:8A:12:7A:76:90:96:65:4F:1F:A4:F2:00:5C:C8:0C:B6:EA
Certificate issuer: /CN=d4cf0fbd5f6e1759903cc69de0dc4ea24c1f83df
Certificate serial: 048730B7
Authority key identifier: D4:CF:0F:BD:5F:6E:17:59:90:3C:C6:9D:E0:DC:4E:A2:4C:1F:83:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1M8PvV9uF1mQPMad4NxOokwfg98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/NC0OihJ6dpCWZU8fpPIAXMgMtuo.roa
Signing time: Thu 24 Feb 2022 06:44:54 +0000
ROA not before: Thu 24 Feb 2022 06:44:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204526
IP address blocks: 94.177.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75968695 (0x48730b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4cf0fbd5f6e1759903cc69de0dc4ea24c1f83df
Validity
Not Before: Feb 24 06:44:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=342d0e8a127a769096654f1fa4f2005cc80cb6ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4f:22:a9:f1:ad:9b:8a:1e:ab:1f:1f:ee:6c:
14:d5:2e:2c:e8:39:3e:1e:df:05:eb:a9:28:92:c0:
41:fa:1c:60:8f:5f:75:1c:91:6f:bf:e4:98:1e:72:
69:c6:b4:15:92:90:88:00:1d:30:0b:3a:6a:96:92:
91:e7:3b:17:59:49:43:b5:2a:b0:0a:7c:46:00:5c:
ad:50:93:ed:51:1e:bd:95:21:9b:4e:61:6d:cb:30:
87:f1:d1:0b:1e:ad:28:a3:d5:83:98:37:45:c3:83:
ec:25:d9:40:a2:df:cd:8f:19:4f:f3:df:31:af:27:
a5:b6:c5:56:d3:25:8a:5d:bf:d1:d0:b7:88:b0:be:
56:03:fa:d1:cd:5d:98:55:30:5c:d1:b3:4f:17:3a:
b0:57:99:44:dd:32:56:8a:d7:58:81:91:5a:cb:cd:
9f:2b:72:74:37:c0:43:00:08:07:bd:22:0c:c2:f9:
b5:d5:77:5f:f5:87:7b:01:b5:6d:70:5c:86:54:3b:
31:ca:7e:da:e5:63:5c:dc:38:16:b5:84:40:27:85:
30:09:53:ef:e0:73:41:9f:6a:4c:51:d3:08:f3:fe:
88:c1:20:5b:76:29:12:0f:a3:31:a4:46:24:ca:97:
3a:57:77:77:0c:cd:7d:04:26:9b:7e:6c:de:04:d9:
51:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2D:0E:8A:12:7A:76:90:96:65:4F:1F:A4:F2:00:5C:C8:0C:B6:EA
X509v3 Authority Key Identifier:
keyid:D4:CF:0F:BD:5F:6E:17:59:90:3C:C6:9D:E0:DC:4E:A2:4C:1F:83:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1M8PvV9uF1mQPMad4NxOokwfg98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/NC0OihJ6dpCWZU8fpPIAXMgMtuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/d34fa2-3a37-4308-b783-5857f1c17624/1/1M8PvV9uF1mQPMad4NxOokwfg98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.9.0/24
Signature Algorithm: sha256WithRSAEncryption
30:2c:df:9e:5e:95:02:52:0e:ac:6f:38:16:a6:b6:ba:7e:14:
36:98:39:d6:7a:c2:35:e1:2d:d6:af:60:30:c7:b9:0e:cd:84:
8c:b8:f3:c7:77:7d:88:7e:63:1d:e1:a7:d3:0f:e8:17:1e:b6:
90:00:95:af:92:c1:1c:7c:de:c1:f9:b0:bb:ec:38:8e:ed:dd:
43:a8:41:6d:11:c6:42:d3:f7:a1:28:1b:52:ef:10:aa:50:47:
6f:d7:d7:38:14:35:c1:c9:24:04:b7:27:f6:62:4c:a4:bd:fa:
0f:fe:c7:3d:35:b6:2c:0b:d0:b4:77:76:57:28:d8:35:6b:f2:
be:ef:2c:cc:ba:75:92:77:b7:ec:16:43:86:c8:87:bf:da:9e:
03:8f:c0:14:38:56:59:f7:42:e2:be:cb:d7:45:cf:b0:e7:de:
d8:75:26:89:88:cb:e7:f3:31:0f:a1:62:80:10:3b:04:88:eb:
be:c0:71:7a:e5:3d:c6:4e:0d:7d:85:e1:cb:0d:8f:dd:2c:ff:
9e:ee:62:96:64:8f:95:a8:08:99:2a:cc:b2:4c:cb:83:1d:cf:
8d:9c:42:9e:80:7c:fb:6a:0e:31:12:74:99:56:af:66:b6:d8:
eb:e9:45:ad:e9:de:74:0d:3f:54:d7:29:00:c2:43:68:66:e9:
0c:6a:e1:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:57 2023 by rpki-client on console-fra.rpki-client.org