Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/nwtD5-ZvbvmWLpx9NAR0Eje08vc.roa
File: nwtD5-ZvbvmWLpx9NAR0Eje08vc.roa (raw, json)
Hash identifier: uMOO2CMN7CCqBX1OjQWQayVBNG1siihIlDU6vrwRXMQ=
Subject key identifier: 9F:0B:43:E7:E6:6F:6E:F9:96:2E:9C:7D:34:04:74:12:37:B4:F2:F7
Certificate issuer: /CN=9b5193d843af193e24875686673c95896eae3497
Certificate serial: 0185625564247C1B37AE8F980542930F571A
Authority key identifier: 9B:51:93:D8:43:AF:19:3E:24:87:56:86:67:3C:95:89:6E:AE:34:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/nwtD5-ZvbvmWLpx9NAR0Eje08vc.roa
Signing time: Fri 30 Dec 2022 09:20:41 +0000
ROA not before: Fri 30 Dec 2022 09:20:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50117
IP address blocks: 193.104.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:55:64:24:7c:1b:37:ae:8f:98:05:42:93:0f:57:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b5193d843af193e24875686673c95896eae3497
Validity
Not Before: Dec 30 09:20:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f0b43e7e66f6ef9962e9c7d3404741237b4f2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:28:4e:cb:0c:27:83:5f:0a:fa:76:52:6d:42:
95:5d:c1:48:19:7a:64:c4:58:04:5e:93:ad:2a:87:
a7:b2:89:0c:6b:c1:c9:2b:a0:9f:e9:d0:6d:7b:ef:
b2:dc:10:3f:c6:27:ca:c3:40:1a:04:b7:97:4f:03:
29:42:c1:03:22:08:be:72:50:d5:9e:e4:b1:ac:03:
67:03:da:94:90:04:34:55:3c:ed:d5:e2:ab:22:3b:
01:00:43:85:00:a8:c6:a0:6a:27:37:80:e1:90:cb:
d6:2d:d8:e2:6b:2c:33:be:5e:cd:3c:52:d9:04:34:
11:83:74:91:c1:89:a9:69:f7:28:7d:fa:45:2e:5d:
3b:24:31:69:30:1e:08:43:54:16:ca:7b:8a:11:76:
72:0d:c3:36:ff:7a:f5:d0:6f:1b:f0:95:77:79:32:
f1:79:26:99:c6:c2:d9:be:51:06:ee:e6:5a:1c:d2:
ff:01:9e:7e:a8:44:c7:fc:2f:a3:09:62:be:49:4c:
83:f5:8f:83:11:fd:2e:ad:87:08:83:7b:d9:c7:d4:
46:fd:c2:13:13:ba:bf:19:e7:5c:7c:2a:f2:43:44:
5d:f0:cf:dc:23:96:84:d3:79:ab:43:02:a1:f0:a3:
94:66:d0:87:5a:d5:1a:4d:05:40:01:33:40:e4:c7:
af:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:0B:43:E7:E6:6F:6E:F9:96:2E:9C:7D:34:04:74:12:37:B4:F2:F7
X509v3 Authority Key Identifier:
keyid:9B:51:93:D8:43:AF:19:3E:24:87:56:86:67:3C:95:89:6E:AE:34:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/nwtD5-ZvbvmWLpx9NAR0Eje08vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.61.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:a9:53:a9:01:1c:54:94:37:0d:07:d4:ae:06:5d:16:2c:99:
b0:b5:13:da:9a:35:2d:53:e2:30:f2:60:ab:e8:c2:e8:7d:05:
9c:c9:d3:41:18:9b:9e:1e:c3:bd:b5:a9:e9:7e:e2:2e:0d:53:
7a:bb:83:50:8d:1b:07:a0:83:37:76:2c:69:c0:f4:d1:78:3b:
3f:3a:55:79:9d:52:99:60:57:f9:49:bf:26:9a:75:9c:68:2b:
10:6d:a1:23:e7:95:29:8e:68:fb:f8:ca:17:61:99:57:da:e3:
99:af:f8:02:1c:43:a8:20:4c:be:60:82:ab:2b:f9:b2:ac:12:
a5:c4:b8:74:f0:4b:80:59:b5:f1:59:d2:c7:db:de:87:63:f9:
c9:f8:f5:79:ea:8d:7e:ce:45:5f:88:cb:c0:69:5a:f2:ed:46:
87:8f:6e:b3:69:4d:d9:1a:97:86:a0:91:2e:9f:cd:30:14:7d:
d0:d0:9b:a0:3e:09:3d:b7:1f:db:0b:9f:62:58:fa:8f:5e:4f:
9a:89:dd:82:75:2e:d7:37:a5:b8:e9:6f:da:e0:8e:5b:9a:c3:
7a:51:2d:c9:1d:0c:29:be:7a:05:7d:ae:b6:76:af:ea:c2:d4:
90:df:12:1d:35:17:5d:e6:b3:9e:bf:3a:8e:6d:80:31:b2:db:
bb:6a:43:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:57 2024 by rpki-client on console-fra.rpki-client.org