Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/nCI8ZwuthZJYfeTchLiCCQ8JAzg.roa
File: nCI8ZwuthZJYfeTchLiCCQ8JAzg.roa (raw, json)
Hash identifier: N+GfmohAWTpGtuA2gSffe5FrnOJrN0+GjyuoOf3VpeM=
Subject key identifier: 9C:22:3C:67:0B:AD:85:92:58:7D:E4:DC:84:B8:82:09:0F:09:03:38
Certificate issuer: /CN=e6502200a6e63f76397adb94dfd834c116809b9f
Certificate serial: 0184C78A9C918BD3D27032DCC2AB323C436C
Authority key identifier: E6:50:22:00:A6:E6:3F:76:39:7A:DB:94:DF:D8:34:C1:16:80:9B:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5lAiAKbmP3Y5etuU39g0wRaAm58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/nCI8ZwuthZJYfeTchLiCCQ8JAzg.roa
Signing time: Wed 30 Nov 2022 07:57:40 +0000
ROA not before: Wed 30 Nov 2022 07:57:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39276
IP address blocks: 195.238.91.0/24 maxlen: 24
195.238.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c7:8a:9c:91:8b:d3:d2:70:32:dc:c2:ab:32:3c:43:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6502200a6e63f76397adb94dfd834c116809b9f
Validity
Not Before: Nov 30 07:57:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c223c670bad8592587de4dc84b882090f090338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:45:fd:c6:1c:fd:81:70:e0:4a:3a:62:93:03:
52:73:f0:5f:48:de:82:3a:c8:c3:15:9f:ba:1e:ce:
56:a4:37:f4:73:50:57:90:d8:37:7b:80:52:91:2f:
74:99:4d:7a:20:61:85:7c:ba:62:5b:a7:0e:d8:87:
28:ff:b7:e0:af:d7:2b:1e:84:6c:cd:f7:5a:27:93:
52:09:39:23:15:b4:5f:3b:cf:26:a5:ac:40:f2:d6:
32:3e:a9:45:fc:65:2d:20:bf:7c:9a:51:8e:e6:9b:
ac:79:99:4f:0f:49:03:30:7c:df:bc:47:96:2f:8b:
db:66:57:63:ec:36:d1:c3:cf:7a:6e:93:e0:1b:4d:
3e:6e:8c:38:cb:26:a4:04:b9:56:77:2c:c8:ef:68:
98:55:d4:43:a3:27:1c:fd:84:c1:2a:04:e8:3e:7d:
e7:cb:7b:75:42:a8:69:b8:a7:e8:dc:64:62:b4:23:
83:93:29:1e:e7:80:a7:f8:83:e2:99:3d:b5:c1:bf:
72:05:91:5f:df:77:08:7a:a7:46:4a:7b:16:0f:bd:
90:6b:82:c4:4f:23:b0:a6:b1:13:78:47:2e:ab:65:
1a:87:04:fb:00:7f:a1:2d:8a:65:5d:79:ae:91:90:
b1:4a:de:03:5a:9c:23:a0:9c:f8:97:08:5b:91:2e:
05:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:22:3C:67:0B:AD:85:92:58:7D:E4:DC:84:B8:82:09:0F:09:03:38
X509v3 Authority Key Identifier:
keyid:E6:50:22:00:A6:E6:3F:76:39:7A:DB:94:DF:D8:34:C1:16:80:9B:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5lAiAKbmP3Y5etuU39g0wRaAm58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/nCI8ZwuthZJYfeTchLiCCQ8JAzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/5lAiAKbmP3Y5etuU39g0wRaAm58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.90.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:90:0f:3b:b7:64:38:93:ad:ed:43:31:89:52:b7:f7:8c:ff:
77:37:a0:c4:c3:f7:08:d9:04:24:78:a1:31:ef:c5:ae:26:27:
b5:d4:1f:b8:56:fd:8f:4d:2e:60:ac:e8:f6:88:84:99:84:11:
90:04:dd:b8:76:7e:32:fb:79:4c:af:27:6f:97:16:89:8e:65:
a9:5f:3b:9c:90:8f:cd:f7:36:0b:0f:67:0d:24:5b:17:1e:65:
db:75:45:6b:01:c2:c8:47:5c:3a:2a:fd:4b:bb:c9:9f:0f:a0:
bd:5a:3b:96:39:c9:20:83:fc:6d:b7:85:9e:28:e1:97:23:bf:
15:a5:99:da:82:ee:b9:52:61:e5:de:bc:bc:3a:ac:8b:80:8d:
57:0d:97:40:96:58:0a:55:ec:c8:d6:8d:e2:ee:d7:de:c8:25:
dd:42:d3:20:3a:b0:49:2c:60:0c:99:cf:71:c3:e2:72:d1:5c:
1a:07:6a:cd:fd:8d:d6:0d:89:3b:40:1b:01:9d:fa:e4:9a:12:
48:fb:f3:69:7e:b3:72:e7:07:38:f3:db:d4:01:43:de:5d:6c:
f6:3c:94:3c:fb:19:0e:56:0f:97:91:c9:0f:a0:37:b5:bd:24:
21:f7:c7:83:be:55:d4:05:bc:15:11:6f:b9:fd:75:f3:ab:d3:
f4:5a:3a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:37 2024 by rpki-client on console-ams.rpki-client.org