Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NhdWpeI49ZejRTZolie-ZEJAjT8.roa
File: NhdWpeI49ZejRTZolie-ZEJAjT8.roa (raw, json)
Hash identifier: nWzr7oFPtYypcSWOxDffmWJLyNSNLCLiJtT5HxfhJvg=
Subject key identifier: 36:17:56:A5:E2:38:F5:97:A3:45:36:68:96:27:BE:64:42:40:8D:3F
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0CB80A38
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NhdWpeI49ZejRTZolie-ZEJAjT8.roa
Signing time: Sat 01 Jan 2022 05:04:59 +0000
ROA not before: Sat 01 Jan 2022 05:04:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49367
IP address blocks: 194.242.14.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213387832 (0xcb80a38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 05:04:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=361756a5e238f597a34536689627be6442408d3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f6:d9:8c:65:9a:f6:10:29:1e:bf:67:12:fe:
7b:df:7d:37:a2:ce:73:01:81:83:39:6a:e6:43:95:
d0:dc:2e:b0:eb:94:fc:94:b4:1f:da:50:ed:bc:4f:
81:8e:d6:71:4b:03:39:ba:1c:8b:37:74:69:68:40:
37:bc:cc:27:d3:41:60:a2:0f:5f:e8:81:c0:5e:17:
f2:af:0e:a7:b5:f9:79:e2:1c:94:cf:80:e4:73:f5:
b1:5b:c6:69:c9:17:57:88:1a:6f:5b:23:8b:bf:28:
30:95:c2:13:51:ad:3b:3e:32:13:22:7f:89:79:74:
7d:81:b1:18:42:49:1b:42:fd:24:ee:a9:03:41:76:
91:a9:5c:c0:6d:b6:49:a5:59:6a:7e:68:22:ca:0c:
32:a2:56:03:47:1f:2a:8d:a4:40:d7:68:f8:46:33:
f9:e8:fb:3e:12:22:57:b5:4d:49:8e:85:ab:58:c1:
a4:9f:c6:ed:06:08:23:51:58:50:7b:bf:fc:0a:ef:
e3:b8:97:34:ec:5c:77:3e:5f:3f:72:06:46:e2:72:
4b:24:ba:e2:be:4e:ec:de:4b:31:74:b4:52:97:18:
22:70:14:18:ff:29:9f:19:eb:c6:c3:91:75:a7:42:
19:c1:13:31:9b:93:63:26:60:2f:d5:96:1e:ef:8c:
4f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:17:56:A5:E2:38:F5:97:A3:45:36:68:96:27:BE:64:42:40:8D:3F
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NhdWpeI49ZejRTZolie-ZEJAjT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.14.0/23
Signature Algorithm: sha256WithRSAEncryption
74:e0:60:45:6d:9e:eb:7a:0d:5d:6a:84:fe:39:1e:42:8f:0d:
c6:74:ec:02:13:02:bb:f4:b6:97:b2:d9:32:75:f7:41:f0:6a:
b2:13:e8:ff:1b:71:d0:08:64:31:f4:01:f8:97:eb:a4:56:8d:
f7:4e:ad:86:d3:de:aa:c9:cc:35:65:1e:b9:d7:09:eb:e3:87:
42:ab:3c:32:55:3f:21:4a:ba:df:b8:c4:f0:0f:09:2b:b4:16:
70:2c:39:27:5c:43:58:8b:ab:c1:6e:53:83:34:82:21:2d:a0:
95:da:ed:80:85:e7:15:a7:44:ef:0d:1d:ae:29:ea:64:0c:77:
98:60:87:07:39:7e:44:df:17:2e:c9:70:69:2c:e4:41:c4:7c:
2d:b0:54:b4:42:45:f1:a8:56:1f:ce:24:62:b4:60:8d:69:89:
cd:9d:51:09:f0:58:81:d2:61:b5:11:ad:50:aa:57:76:59:85:
46:b1:cc:0e:72:27:f9:c0:ef:95:2d:25:03:dc:18:38:c5:95:
a3:c4:83:87:dc:41:6c:81:10:29:d9:e8:ab:e7:00:49:90:7e:
a5:99:b1:b5:18:02:8e:20:33:b6:cb:62:eb:14:dc:a1:30:2c:
de:ba:18:35:2f:66:4d:2c:d8:39:fd:e8:7c:f9:1e:2b:68:d3:
bd:85:49:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:01 2023 by rpki-client on console-fra.rpki-client.org