Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/c5c1b3-e5ca-4a83-8390-917933b1502e/1/nS7pSgwUAnU2rjQRe3SaySn-Iw0.roa
File: nS7pSgwUAnU2rjQRe3SaySn-Iw0.roa (raw, json)
Hash identifier: X+Q2cs/LV5Lg35yGxIGs1S6W8o0DYGvRb0K0VRmAX4I=
Subject key identifier: 9D:2E:E9:4A:0C:14:02:75:36:AE:34:11:7B:74:9A:C9:29:FE:23:0D
Certificate issuer: /CN=abc45b658b1ec0fdeb459e6ff2577db8ca6a9330
Certificate serial: 018216CCDA1369FF37D506382C7DE491354E
Authority key identifier: AB:C4:5B:65:8B:1E:C0:FD:EB:45:9E:6F:F2:57:7D:B8:CA:6A:93:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8RbZYsewP3rRZ5v8ld9uMpqkzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/c5c1b3-e5ca-4a83-8390-917933b1502e/1/nS7pSgwUAnU2rjQRe3SaySn-Iw0.roa
Signing time: Tue 19 Jul 2022 14:11:40 +0000
ROA not before: Tue 19 Jul 2022 14:11:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12303
IP address blocks: 193.41.47.0/24 maxlen: 24
2a0f:7ec0:100::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:cc:da:13:69:ff:37:d5:06:38:2c:7d:e4:91:35:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc45b658b1ec0fdeb459e6ff2577db8ca6a9330
Validity
Not Before: Jul 19 14:11:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d2ee94a0c14027536ae34117b749ac929fe230d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e1:a4:96:e5:93:18:8b:df:34:b5:de:37:9c:
4e:e8:cd:eb:69:c8:ce:da:45:09:8c:ff:f4:96:68:
64:b7:72:d9:b8:44:7f:5a:c8:fc:a0:1c:64:66:b5:
bc:fa:46:7a:78:90:c8:50:56:53:52:37:71:f1:3d:
fb:d2:30:d5:83:11:d6:95:dd:1d:b0:eb:9c:4f:d4:
2e:4b:27:d4:1f:e2:3a:f4:7a:e0:5c:aa:04:38:9c:
45:49:7b:c6:05:37:4f:31:79:ea:0a:00:d7:fc:34:
ce:33:f2:c8:9d:32:2d:84:16:25:30:28:d7:f5:b5:
08:0e:43:5b:10:29:ca:3b:12:09:9d:e2:cc:8e:c4:
40:84:a3:0d:16:8f:9c:2b:6c:12:a6:0e:68:88:53:
a4:e2:e3:54:74:db:b4:ab:b1:aa:ab:66:54:d6:3c:
29:4b:c6:8a:81:8b:aa:1e:44:da:78:89:cb:43:d8:
54:de:49:89:94:18:e9:05:3f:32:df:ba:13:0e:70:
41:2b:c9:25:8f:76:29:60:56:83:ab:5c:87:50:3f:
10:1b:80:e1:12:84:8d:1a:5d:01:7d:ce:db:b7:32:
63:2f:68:a0:44:bc:d3:41:8e:a2:90:9c:d7:51:aa:
24:88:3e:77:39:b6:e9:09:1f:7a:97:9b:4d:db:b5:
0b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2E:E9:4A:0C:14:02:75:36:AE:34:11:7B:74:9A:C9:29:FE:23:0D
X509v3 Authority Key Identifier:
keyid:AB:C4:5B:65:8B:1E:C0:FD:EB:45:9E:6F:F2:57:7D:B8:CA:6A:93:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8RbZYsewP3rRZ5v8ld9uMpqkzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/c5c1b3-e5ca-4a83-8390-917933b1502e/1/nS7pSgwUAnU2rjQRe3SaySn-Iw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/c5c1b3-e5ca-4a83-8390-917933b1502e/1/q8RbZYsewP3rRZ5v8ld9uMpqkzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.47.0/24
IPv6:
2a0f:7ec0:100::/48
Signature Algorithm: sha256WithRSAEncryption
10:71:f0:64:ce:51:83:4e:18:4c:7d:3e:ae:55:7d:84:db:46:
7b:8e:4c:df:13:d9:83:e7:fd:19:07:81:1b:8e:f3:a6:1d:bc:
ee:2b:33:c6:cb:c6:db:f7:6b:bd:64:a2:c2:39:aa:48:6a:4a:
d3:af:c5:5b:4a:19:46:ed:1a:aa:08:d2:8d:a2:04:25:3b:09:
5b:48:b2:09:6b:b7:64:a7:13:12:38:ca:41:ee:74:7b:87:d0:
2d:cb:bc:77:fd:bf:7a:db:36:67:db:d0:66:25:8e:0c:fc:51:
07:98:35:8e:50:9b:2a:1e:3b:ec:64:10:67:dc:4c:62:bd:10:
70:a6:01:b7:8a:5f:97:df:72:f0:aa:ed:89:33:90:1e:27:e7:
a3:9c:26:5c:6a:6e:c9:e1:a6:ec:93:6f:ef:3b:8e:ee:9e:0c:
cb:d5:37:9f:fd:8f:b2:49:73:bf:e2:55:2f:c5:2a:8b:03:28:
28:83:fa:6e:38:03:f9:e5:8f:9d:70:9c:9e:9a:61:7c:9a:9a:
ef:a8:25:5d:c8:ee:95:3a:b3:d9:71:1f:6c:47:0d:28:02:4b:
53:cd:42:dd:74:1a:06:2a:c5:64:56:c1:23:4e:01:e2:ef:1b:
b2:13:6c:ee:8d:9d:c4:f8:6a:fb:3d:64:39:c6:4b:bf:cb:61:
54:71:2e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:34 2024 by rpki-client on console-ams.rpki-client.org