Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/nKOsBZroIGZmdbniAO9dcF_9p2M.roa
File: nKOsBZroIGZmdbniAO9dcF_9p2M.roa (raw, json)
Hash identifier: Ivn6I5pQu1aqWumpCEN60B3yfDpD49PuoEHk7J0ezwU=
Subject key identifier: 9C:A3:AC:05:9A:E8:20:66:66:75:B9:E2:00:EF:5D:70:5F:FD:A7:63
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 43F0C3B4
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/nKOsBZroIGZmdbniAO9dcF_9p2M.roa
Signing time: Mon 16 May 2022 10:41:30 +0000
ROA not before: Mon 16 May 2022 10:41:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206013
IP address blocks: 193.180.112.0/23 maxlen: 24
193.180.114.0/24 maxlen: 24
193.180.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1139852212 (0x43f0c3b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: May 16 10:41:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ca3ac059ae820666675b9e200ef5d705ffda763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9e:10:49:5d:dd:1d:83:bb:c2:60:7d:72:61:
b4:b3:5c:b4:52:3e:40:d9:fa:57:81:eb:b2:17:0a:
11:be:fd:85:b4:3f:29:3e:c0:77:e8:92:1b:38:6f:
aa:b0:3f:8f:b9:f9:b7:76:0c:d3:fd:eb:11:53:de:
dd:82:0c:2d:1c:f5:97:d7:0e:5f:21:fc:18:3c:21:
da:16:7a:c1:37:36:af:0a:2d:0e:3a:f4:28:63:c9:
42:1e:70:da:1f:76:8e:96:5b:d6:fb:f2:77:9b:67:
eb:cc:80:af:b4:c6:44:f9:07:59:ff:b6:5e:20:79:
9b:67:3a:44:0b:9d:6e:0f:be:b3:b8:a6:e5:df:83:
6f:c6:70:e4:a9:a8:ce:9d:eb:87:3d:26:44:cb:8b:
32:b5:66:c5:b3:78:0a:da:1b:d1:dd:2c:73:b7:41:
6a:4e:c3:eb:96:45:ac:97:a4:86:5e:ce:dc:95:ad:
d7:5f:4d:8f:58:4f:63:2e:31:55:fc:70:d9:82:9d:
df:c6:d0:52:9d:be:0b:85:b4:c6:25:74:70:6a:35:
a3:99:55:6f:45:bd:94:d3:2d:02:83:33:c7:6e:d1:
69:a1:e4:4c:3a:24:64:59:f9:86:10:a4:26:12:98:
a2:70:c1:50:32:5d:8a:bf:22:c9:2f:25:90:c4:8d:
d2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A3:AC:05:9A:E8:20:66:66:75:B9:E2:00:EF:5D:70:5F:FD:A7:63
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/nKOsBZroIGZmdbniAO9dcF_9p2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.180.104.0-193.180.114.255
Signature Algorithm: sha256WithRSAEncryption
14:78:4f:66:31:43:a0:7f:70:9b:bf:a3:e5:ac:a1:10:0e:e8:
be:d8:5e:5d:99:db:24:f4:fd:5d:c6:53:f0:45:af:46:cd:8c:
26:0a:b3:92:97:da:3d:33:db:a7:87:f3:a2:fe:b4:38:69:6b:
26:16:a7:b1:ce:b9:8b:f7:3c:fc:9e:9f:cc:a5:bd:17:01:ae:
d4:01:99:0d:76:4b:55:a0:22:f2:11:7b:42:64:76:03:b4:0c:
f1:68:68:fc:fc:36:15:8b:42:a2:13:ff:f1:ce:d5:3c:66:6d:
25:63:19:29:5a:a3:84:db:10:13:c7:cb:a5:0d:cd:75:5b:cd:
5d:b6:61:be:3d:cf:a8:9b:68:80:c3:cd:51:9c:88:18:fa:91:
cc:33:34:6e:51:71:62:0c:20:a6:cd:c0:e1:44:2c:39:36:9b:
86:b5:67:71:e3:3c:ce:48:b2:3c:33:7f:cd:9d:f4:d9:87:17:
6d:e7:89:cc:14:a2:83:8e:a8:14:5a:45:6a:10:90:91:1e:5b:
34:f3:88:17:0a:53:44:a3:d4:5e:97:9a:fe:18:a2:a2:89:c6:
ba:e0:d1:8c:f8:74:6e:a7:0d:03:6a:fb:a6:e2:3c:c0:07:dc:
93:b2:2c:1b:76:68:65:48:44:ba:d0:b0:a3:01:b3:79:8f:c0:
9a:e0:87:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org