Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/n9pl9vEjsD6Pk4QNl71dYn9VydY.roa
File: n9pl9vEjsD6Pk4QNl71dYn9VydY.roa (raw, json)
Hash identifier: eseDFf0dVSvB2e50WER6WIsCVFuBJ8707uxEErtkJsA=
Subject key identifier: 9F:DA:65:F6:F1:23:B0:3E:8F:93:84:0D:97:BD:5D:62:7F:55:C9:D6
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 43336BDA
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/n9pl9vEjsD6Pk4QNl71dYn9VydY.roa
Signing time: Thu 19 May 2022 07:06:18 +0000
ROA not before: Thu 19 May 2022 07:06:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47447
IP address blocks: 193.38.156.0/22 maxlen: 22
45.87.136.0/22 maxlen: 24
2a0e:fe80::/29 maxlen: 48
2a0d:6940::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1127443418 (0x43336bda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: May 19 07:06:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fda65f6f123b03e8f93840d97bd5d627f55c9d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:dd:3d:76:d6:4d:69:62:b5:6b:14:ea:2a:88:
67:5f:00:1d:80:5a:21:ae:8b:05:04:c2:06:ea:ec:
50:66:ac:bc:23:df:9c:b1:cf:98:62:35:6c:78:8b:
a0:a0:3e:8d:d3:ed:cb:45:06:d8:bf:0e:38:9f:7e:
17:b3:5e:9a:0c:04:99:6d:96:b3:78:3f:dd:75:3c:
f1:fa:c2:35:e9:c5:e0:4d:f4:e0:88:0d:77:5b:ec:
55:51:24:6e:7c:3e:66:f7:fc:a1:6e:71:4c:13:ae:
af:76:1a:c8:5f:25:b1:32:58:f6:12:22:a3:b9:66:
40:7c:db:dd:4a:c6:8c:58:87:31:5c:a4:1c:01:da:
2c:fb:eb:26:3c:b3:9f:4a:ba:c9:ed:8d:dd:fb:a1:
dd:cf:9e:74:52:e8:42:0f:fd:c3:f2:5b:b9:a2:0e:
ff:24:ba:ff:16:fa:72:76:f2:28:79:f0:34:58:b2:
55:ef:78:94:00:f2:39:bc:20:a6:29:9e:bf:5b:7b:
ad:9d:13:49:6c:6d:a6:b4:b0:2a:8f:89:e9:e4:c5:
2f:d7:70:b5:52:8f:00:93:75:99:82:d9:63:e7:59:
e6:6a:e4:93:4e:af:5f:88:a3:29:77:3a:c0:be:a1:
7f:11:62:d6:7e:e5:52:2f:26:7c:4a:ba:5e:0f:51:
fc:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DA:65:F6:F1:23:B0:3E:8F:93:84:0D:97:BD:5D:62:7F:55:C9:D6
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/n9pl9vEjsD6Pk4QNl71dYn9VydY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.136.0/22
193.38.156.0/22
IPv6:
2a0d:6940::/29
2a0e:fe80::/29
Signature Algorithm: sha256WithRSAEncryption
5a:30:76:7d:24:86:37:79:db:11:d2:88:83:80:bf:ec:2b:73:
32:e7:d3:c1:fb:e4:cd:e3:f2:48:ff:f6:ad:86:9f:f2:3d:6a:
d6:cc:67:f7:e8:ba:05:cd:33:24:11:da:0c:8a:8c:a1:9d:98:
50:af:6e:b1:48:ec:51:ab:94:8a:06:14:25:da:99:9b:9e:81:
b2:dc:eb:49:ad:57:25:71:1f:3f:61:9b:cb:f1:47:b7:2c:1f:
35:e3:7f:16:f9:a2:be:76:d7:13:f1:24:1c:50:aa:6e:c1:81:
48:b5:c7:0a:9e:51:c6:b5:5c:48:4c:ae:f4:18:1c:ec:71:3c:
6e:7e:12:47:67:74:2c:89:a8:24:f3:8e:18:61:21:c5:28:14:
a3:94:2f:ca:ed:d4:d3:88:f5:29:52:a1:dd:32:f0:ab:78:49:
ef:25:a4:ee:88:33:33:8e:bc:f4:c8:a4:4d:cc:fc:84:27:ed:
19:63:d4:81:24:26:7c:1d:c2:ac:6f:ed:9b:fe:c8:b6:f8:c8:
6a:3f:73:a3:54:96:94:04:35:46:bd:f7:f8:33:20:67:f2:48:
8c:a2:1a:c1:c1:31:27:c4:f0:b5:8b:39:a0:0a:d6:d2:f6:9b:
c2:ca:55:19:40:1c:4c:07:55:cb:e4:b9:08:46:01:99:c8:65:
07:bb:17:97
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:44 2024 by rpki-client on console-fra.rpki-client.org