Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/nnBsCY143D_Pb4gUFZh3jt5RYd8.roa
File: nnBsCY143D_Pb4gUFZh3jt5RYd8.roa (raw, json)
Hash identifier: bGb3xh1N+VotbsstwWFQmz170r6+aHG1Ei1h+A1fKWQ=
Subject key identifier: 9E:70:6C:09:8D:78:DC:3F:CF:6F:88:14:15:98:77:8E:DE:51:61:DF
Certificate issuer: /CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Certificate serial: 0182B2BF74D2578AE3905B27201BF2372713
Authority key identifier: E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/nnBsCY143D_Pb4gUFZh3jt5RYd8.roa
Signing time: Thu 18 Aug 2022 20:57:47 +0000
ROA not before: Thu 18 Aug 2022 20:57:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196818
IP address blocks: 217.73.240.0/23 maxlen: 23
217.73.244.0/22 maxlen: 22
217.73.240.0/20 maxlen: 20
37.202.32.0/21 maxlen: 21
37.202.40.0/23 maxlen: 23
37.202.42.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b2:bf:74:d2:57:8a:e3:90:5b:27:20:1b:f2:37:27:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Validity
Not Before: Aug 18 20:57:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e706c098d78dc3fcf6f88141598778ede5161df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3c:cc:cb:31:b8:e9:54:b3:49:e1:9a:c6:10:
39:20:60:88:5e:a8:76:de:48:6f:ea:36:59:64:47:
97:fd:9a:ed:53:b0:eb:3b:67:f1:61:4e:59:9c:7c:
fb:63:10:8f:52:f5:7d:9d:6c:03:e0:56:11:b8:c2:
ff:8e:18:51:ac:c6:47:d1:54:13:05:fb:33:2c:ac:
ec:85:d1:b0:a8:4f:67:e9:f4:5b:e4:45:f7:97:be:
32:d8:ba:d5:e9:9e:2c:46:2d:cb:97:e4:04:df:1c:
1a:11:57:08:94:e6:ce:d4:51:14:19:74:ae:1d:28:
5f:7b:38:cf:93:c3:cc:5c:10:8f:29:52:bb:fa:c8:
da:d7:aa:90:e9:a5:5c:ee:db:26:ac:cf:d0:12:ff:
82:42:c7:e4:9f:b6:24:fa:a1:ba:56:23:78:cf:04:
20:da:c6:28:12:6c:f5:c1:1b:da:df:78:0c:eb:d4:
33:d1:ab:eb:9f:60:80:9a:cd:62:08:16:45:9d:1d:
88:e4:96:3f:bb:17:da:4c:9b:64:9e:74:f8:53:d1:
46:1d:58:2a:cd:ef:1a:73:9e:94:c7:c9:73:e2:73:
13:c0:1e:c5:dc:24:15:06:3c:23:91:66:2f:91:43:
60:c2:bc:e9:d4:03:94:62:c6:a7:ef:01:e9:23:ed:
b0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:70:6C:09:8D:78:DC:3F:CF:6F:88:14:15:98:77:8E:DE:51:61:DF
X509v3 Authority Key Identifier:
keyid:E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/nnBsCY143D_Pb4gUFZh3jt5RYd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/4puawu9jG5LoL1ldc-R5LIFuxuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.32.0-37.202.43.255
217.73.240.0/20
Signature Algorithm: sha256WithRSAEncryption
3b:a6:c2:f0:5e:b6:46:b9:90:0f:a2:a7:07:4b:14:ff:db:cc:
85:77:36:a0:7a:20:ce:68:40:36:d7:2b:3a:b9:4b:31:8b:fb:
c6:04:95:bf:77:48:7a:8e:73:07:1e:d9:93:ea:0a:d2:d2:0b:
77:5d:16:5a:9d:aa:af:62:d6:8d:98:d7:03:ee:08:a3:b3:9b:
39:04:dd:41:3e:9a:1e:75:c6:f9:52:9b:a5:28:43:11:e0:8c:
9f:00:6d:70:c3:f1:19:c8:df:97:db:7a:f0:00:ee:9d:e3:61:
fa:a6:92:a1:d6:82:32:d1:29:21:75:fc:3a:6e:75:02:cc:e9:
c0:16:30:fc:c1:aa:dc:8c:85:b9:16:bb:60:55:f9:42:ed:0c:
b3:cc:fd:77:98:71:40:5e:28:40:f4:8c:07:ca:a2:17:41:21:
f4:c2:eb:2e:1f:a0:b3:e4:ea:7f:5d:e5:d5:a0:26:02:19:b0:
8d:8a:bd:f0:d1:94:eb:d5:53:42:01:16:74:b7:04:e1:8d:82:
62:3a:d5:e2:77:17:6d:42:26:03:c6:82:5b:a7:40:30:28:53:
f8:e2:ac:47:86:21:40:e6:cb:4d:e2:c0:66:7f:1b:ce:a9:d8:
63:a1:1b:8b:09:f2:78:e5:a4:d2:0e:e1:b5:ac:90:1f:cb:01:
48:cb:ec:d6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org