Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/NtdWDSQVYgn2nE0bLbWLy2CNKoA.roa
File: NtdWDSQVYgn2nE0bLbWLy2CNKoA.roa (raw, json)
Hash identifier: LEZ4jNVic4ZLXgspTnLrfztK8RH2nW8DBTdTs1acorQ=
Subject key identifier: 36:D7:56:0D:24:15:62:09:F6:9C:4D:1B:2D:B5:8B:CB:60:8D:2A:80
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 0182220DC21B80210B2439E137C797B51FA1
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/NtdWDSQVYgn2nE0bLbWLy2CNKoA.roa
Signing time: Thu 21 Jul 2022 18:38:23 +0000
ROA not before: Thu 21 Jul 2022 18:38:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 193.31.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:22:0d:c2:1b:80:21:0b:24:39:e1:37:c7:97:b5:1f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: Jul 21 18:38:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36d7560d24156209f69c4d1b2db58bcb608d2a80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:69:d0:26:36:48:65:f9:f7:4c:32:83:59:6d:
97:27:50:fc:11:0f:7b:b1:f6:b4:aa:3d:ba:ec:77:
c5:4a:ab:8a:79:34:f1:0b:ac:08:94:39:fe:76:67:
36:fe:d8:a5:3a:59:5f:4e:83:a3:b8:17:ee:49:2b:
33:ae:f4:40:c1:f1:ef:fc:0d:7b:92:ea:8e:41:90:
a7:40:14:73:22:05:fe:46:77:82:0e:08:4f:04:4f:
d5:c8:3d:b4:f5:1a:33:ae:f2:7f:ab:d1:af:4e:08:
98:53:bc:11:53:98:7c:99:6b:46:31:f2:a6:3a:c3:
58:f1:27:d3:47:14:1a:95:8e:a0:96:47:f3:80:a2:
30:94:9d:df:ce:60:3b:67:9f:13:18:64:53:fc:b7:
90:99:7c:0d:5f:13:54:2d:ef:fc:75:8e:dc:c7:c9:
7d:ff:b0:8a:99:f6:04:90:fc:55:3b:7a:d2:36:b9:
2a:07:b0:d1:66:ed:7b:5e:7e:9a:f0:8f:a4:fa:9b:
a5:07:8a:bf:bf:41:f2:79:df:68:05:a8:e3:fe:5d:
bb:27:ef:e5:ef:27:ab:6c:94:e3:3b:7c:72:ed:07:
2d:53:69:c5:68:d6:a1:4b:cc:9a:f7:b7:4e:98:df:
44:a9:82:0f:65:55:ce:c8:29:29:55:a0:e1:d3:82:
a1:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D7:56:0D:24:15:62:09:F6:9C:4D:1B:2D:B5:8B:CB:60:8D:2A:80
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/NtdWDSQVYgn2nE0bLbWLy2CNKoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.62.0/24
Signature Algorithm: sha256WithRSAEncryption
20:af:4d:9d:fe:92:e6:ce:3c:c8:a0:62:b1:82:49:33:1f:b5:
6a:ec:98:af:68:8a:f4:7c:c8:0d:2c:b6:03:07:2d:68:92:ad:
1e:de:f3:66:57:5e:b0:ee:48:1b:86:a4:f5:5c:95:6f:80:1f:
5b:90:c4:cb:fe:54:9e:48:43:2c:00:94:98:4a:14:08:e9:b9:
eb:07:c2:3c:ef:96:1c:08:43:a2:f7:f6:13:13:9e:c4:ba:2e:
73:ef:58:4f:7c:09:1d:4f:11:16:51:99:9c:28:4e:77:0a:85:
0d:be:36:23:55:69:07:e0:50:f4:86:d0:be:ee:e4:ca:d8:6b:
55:92:48:84:5b:22:5d:e5:b6:91:ba:f3:ed:20:32:a2:12:da:
6a:1f:c3:50:48:e9:90:2e:75:47:b7:f9:0b:a4:16:05:e3:8d:
21:bb:84:4f:4d:8e:22:08:d4:db:81:52:6a:b2:53:e1:99:cf:
68:d1:0c:0d:64:a4:b5:cc:ae:90:59:f6:22:d0:76:14:a4:b8:
01:0b:b7:f5:39:fb:de:17:58:81:8c:b2:ba:49:19:0c:f9:38:
69:e0:7e:c5:94:15:cf:95:a9:55:94:3e:94:6a:05:48:cb:57:
e7:41:01:aa:10:2e:36:00:d1:aa:2d:62:f4:2e:9b:01:71:2e:
2c:13:17:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:31 2024 by rpki-client on console-fra.rpki-client.org