Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/1c13d9-81d5-4cdb-a2e1-a5abb20d2462/1/Naum5rnOuoPHdFxE5veOIjyu2so.roa
File: Naum5rnOuoPHdFxE5veOIjyu2so.roa (raw, json)
Hash identifier: tdzPfZmfQPNdYmBiylmpcicgfa8Ph+lNkAF4CsupIk0=
Subject key identifier: 35:AB:A6:E6:B9:CE:BA:83:C7:74:5C:44:E6:F7:8E:22:3C:AE:DA:CA
Certificate issuer: /CN=b1940f000996ebfd2dab71c469cc51ee881b3f5e
Certificate serial: 0732D5BE
Authority key identifier: B1:94:0F:00:09:96:EB:FD:2D:AB:71:C4:69:CC:51:EE:88:1B:3F:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZQPAAmW6_0tq3HEacxR7ogbP14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/1c13d9-81d5-4cdb-a2e1-a5abb20d2462/1/Naum5rnOuoPHdFxE5veOIjyu2so.roa
Signing time: Sat 01 Jan 2022 07:57:23 +0000
ROA not before: Sat 01 Jan 2022 07:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 194.42.96.0/23 maxlen: 24
194.42.104.0/23 maxlen: 24
2a0f:340::/29 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120772030 (0x732d5be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1940f000996ebfd2dab71c469cc51ee881b3f5e
Validity
Not Before: Jan 1 07:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35aba6e6b9ceba83c7745c44e6f78e223caedaca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:fc:f4:ad:82:d9:71:8c:23:32:32:54:d6:4f:
f1:dd:8f:ff:60:61:11:73:d8:29:24:69:65:03:8e:
5d:b3:cc:8e:ac:fe:3d:45:c0:96:10:94:d5:f1:3f:
e9:d4:47:99:e9:a0:6e:0c:eb:aa:ab:22:ee:fa:6e:
f5:e1:d9:eb:31:51:a6:9a:97:10:c4:f2:6c:af:ad:
88:df:29:dc:6e:ad:32:13:69:a6:46:7e:23:a4:19:
2f:96:84:0e:09:02:9e:3e:82:90:fa:10:ea:6a:f9:
cc:b8:c0:2a:b9:19:9e:05:a5:d5:95:97:af:63:ba:
50:ae:8e:f2:6a:9c:fd:0c:fe:b1:f5:07:40:b9:eb:
1f:4d:9f:55:60:7a:d0:b7:e9:ff:f2:ad:fa:1e:56:
58:c5:68:75:89:9a:96:2d:0f:46:0d:dc:91:ec:39:
0c:e8:18:f9:66:a1:80:63:f7:aa:40:df:6f:ac:e8:
e2:af:23:a4:66:e6:df:a7:fd:7f:aa:1e:12:49:93:
1d:76:b8:f8:99:d2:61:49:0e:5b:9f:6d:87:54:3e:
1d:09:c2:ae:7e:27:39:c3:9c:1a:23:cb:16:89:fd:
eb:ab:54:e4:e4:64:5b:d7:b8:3b:51:d6:02:29:5a:
bf:9c:da:8d:8f:87:10:b9:6b:20:d7:fc:83:4f:f4:
0d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AB:A6:E6:B9:CE:BA:83:C7:74:5C:44:E6:F7:8E:22:3C:AE:DA:CA
X509v3 Authority Key Identifier:
keyid:B1:94:0F:00:09:96:EB:FD:2D:AB:71:C4:69:CC:51:EE:88:1B:3F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZQPAAmW6_0tq3HEacxR7ogbP14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1c13d9-81d5-4cdb-a2e1-a5abb20d2462/1/Naum5rnOuoPHdFxE5veOIjyu2so.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1c13d9-81d5-4cdb-a2e1-a5abb20d2462/1/sZQPAAmW6_0tq3HEacxR7ogbP14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.42.96.0/23
194.42.104.0/23
IPv6:
2a0f:340::/29
Signature Algorithm: sha256WithRSAEncryption
56:fe:4a:7f:8e:08:dc:f1:0b:8d:9c:3d:3f:3b:94:98:89:e3:
05:33:01:c5:1e:c5:6f:e0:54:69:44:f3:42:e3:f6:c1:01:e4:
41:c7:43:1c:1f:f2:71:c6:9e:a5:cb:f9:b6:44:ff:80:07:4f:
97:7d:1f:2b:49:d9:08:82:ea:b4:ad:3f:dc:8b:1d:ba:41:8b:
f3:6d:c2:8f:e4:42:d7:cb:61:de:c1:68:44:7c:b9:fc:bb:55:
ff:79:fc:80:42:fa:81:f4:c3:a7:8d:2d:93:f0:97:cd:de:76:
77:29:3e:8e:49:88:39:8a:0e:20:1a:df:74:fa:1e:30:64:63:
8c:c0:fa:dd:fa:55:12:43:93:dc:11:1d:64:7a:78:31:41:98:
71:33:e8:c3:51:ce:7f:d8:0e:f4:9b:4a:4c:6d:d3:3b:40:2d:
bf:f4:c2:f5:9d:c4:8c:b2:b5:d6:89:96:1e:12:1e:b3:61:14:
81:8c:d3:d4:8f:65:4d:89:e3:30:b6:35:23:58:72:c7:3e:36:
9d:e6:b8:7b:39:e4:c2:13:87:43:72:f7:44:72:d8:0f:2a:2d:
e9:69:03:fb:10:77:84:c6:d6:a9:3c:b1:b2:49:5e:07:bd:34:
2c:78:1a:45:01:9f:a9:3b:dc:87:34:12:e2:32:9c:d2:30:65:
f3:9e:06:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:03 2024 by rpki-client on console-fra.rpki-client.org