Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/NQjTQWoajPNcZB5vyFBhZnV7zRQ.roa
File: NQjTQWoajPNcZB5vyFBhZnV7zRQ.roa (raw, json)
Hash identifier: 3uKSo6+bXjHHJUTJPZhu/OqNJGsY22zopHBrQZi+/dg=
Subject key identifier: 35:08:D3:41:6A:1A:8C:F3:5C:64:1E:6F:C8:50:61:66:75:7B:CD:14
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17DDEDD9
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/NQjTQWoajPNcZB5vyFBhZnV7zRQ.roa
Signing time: Sat 01 Jan 2022 00:54:36 +0000
ROA not before: Sat 01 Jan 2022 00:54:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48496
IP address blocks: 94.100.2.0/24 maxlen: 24
94.100.6.0/24 maxlen: 24
94.100.15.0/24 maxlen: 24
94.100.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400420313 (0x17ddedd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3508d3416a1a8cf35c641e6fc8506166757bcd14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4c:c1:f2:85:50:86:a7:6a:93:33:9a:98:89:
af:bc:05:13:94:77:a4:34:2b:8e:06:6c:c4:90:14:
4b:92:1f:77:b9:12:8b:67:1f:32:77:51:7c:fb:6f:
28:e4:a4:8d:c8:0e:13:1a:f5:e3:e0:9b:06:e0:5f:
83:6b:95:a9:44:7d:ff:1c:0d:39:81:e8:75:6c:4c:
3f:33:14:ed:a9:c7:d2:94:ba:ea:ae:63:a9:f3:68:
56:d7:6a:a0:f5:97:23:c7:49:a5:9a:7a:15:50:b2:
6a:f4:53:11:33:23:39:47:22:2c:3c:95:3a:68:af:
ed:98:e5:a3:79:66:63:fc:a2:64:58:46:92:7f:ac:
ec:f3:ca:3f:3f:7c:d2:03:33:09:22:77:dc:f3:78:
c7:37:7e:4a:3d:33:dc:db:32:e4:68:ee:d3:ae:f1:
54:92:9e:ae:f0:a9:b5:40:64:39:d2:34:48:64:d0:
7f:be:f8:1e:da:e5:c6:76:c7:7f:bd:f2:b4:11:5a:
4d:bd:65:e2:9a:74:70:5c:d3:45:9e:8c:8f:d2:6f:
b6:a6:b2:3f:e6:96:59:ef:29:47:7b:dd:7e:4f:39:
8a:a2:98:6a:54:e8:09:59:73:2d:ee:cb:9c:0c:13:
a2:b9:9a:0f:94:e4:e6:37:b8:39:cf:0d:3f:07:b3:
60:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:08:D3:41:6A:1A:8C:F3:5C:64:1E:6F:C8:50:61:66:75:7B:CD:14
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/NQjTQWoajPNcZB5vyFBhZnV7zRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.100.2.0/24
94.100.6.0/24
94.100.13.0/24
94.100.15.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:31:87:73:d9:81:a7:d9:bb:55:0e:b6:6e:53:3d:6e:76:d8:
f3:b3:da:54:e7:dd:ff:f2:c0:5f:84:79:ab:57:f0:6e:e7:4f:
bf:d1:9f:c2:fc:c5:4d:68:cf:cb:0a:3e:45:9b:26:6d:43:9c:
1d:31:4f:ee:6f:47:ac:81:2d:35:d2:00:7f:64:1d:9b:cc:4b:
be:d1:06:45:b5:8e:7c:c2:92:73:76:31:55:e1:06:fb:b0:6a:
9e:46:48:ab:12:59:56:44:79:61:4b:97:bd:55:c7:16:26:52:
54:e3:ce:32:ce:cb:86:1f:11:58:54:7b:ec:9a:32:74:43:c2:
e2:a5:da:c6:19:ce:ca:b7:2e:78:2e:9f:99:bb:af:6b:ff:bb:
cc:30:a1:49:ab:92:63:a1:b1:f1:58:2e:95:0d:42:51:1c:c8:
32:8d:31:e1:f3:d3:ed:88:34:4f:c4:c8:9e:78:c6:c5:95:c5:
c2:4e:0d:75:8d:49:bf:68:13:18:59:d3:03:4e:c2:91:76:04:
39:99:98:11:48:0b:69:fa:9c:20:b2:a1:97:ba:99:dd:fb:11:
4f:e7:b6:5a:fb:1e:ca:b2:97:ab:82:de:3a:c2:6c:8a:27:0d:
d3:71:75:78:5b:54:24:e6:15:3d:bd:0d:da:30:5e:59:39:3f:
ab:85:d6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:02 2023 by rpki-client on console-ams.rpki-client.org