Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/n5OliEgGxqR5zATA_i2zItVqcSw.roa
File: n5OliEgGxqR5zATA_i2zItVqcSw.roa (raw, json)
Hash identifier: AAqOVgyiYcIGul4u7hDF15y6A+PU5m1ebu/JOqft4uE=
Subject key identifier: 9F:93:A5:88:48:06:C6:A4:79:CC:04:C0:FE:2D:B3:22:D5:6A:71:2C
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 0885672D
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/n5OliEgGxqR5zATA_i2zItVqcSw.roa
Signing time: Sat 01 Jan 2022 02:57:27 +0000
ROA not before: Sat 01 Jan 2022 02:57:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15600
IP address blocks: 94.16.128.0/17 maxlen: 24
185.74.160.0/22 maxlen: 22
2a00:9fe0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142960429 (0x885672d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Jan 1 02:57:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f93a5884806c6a479cc04c0fe2db322d56a712c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e7:e5:69:a1:6c:19:17:d6:28:c4:3e:05:09:
f2:86:fb:44:52:92:78:c7:d6:e7:74:26:54:9c:b1:
7d:a8:f6:79:78:cc:5d:25:70:f7:29:0e:61:93:31:
c6:1c:a2:4d:bd:90:fc:95:04:b1:69:fa:53:b2:25:
6f:32:46:04:23:00:6e:4a:9d:e4:1b:ad:1d:d9:f2:
27:73:f1:f3:87:a8:1f:ae:d8:c2:dc:8f:6f:87:dc:
35:74:a3:45:17:28:34:7b:be:9d:18:97:0f:8c:09:
f7:c1:11:d5:d9:b4:ad:e5:ea:8a:16:93:6c:eb:1b:
87:1e:c5:88:21:64:71:75:38:ce:b1:ea:af:ed:2a:
5d:d9:d7:8b:d8:b8:5c:b2:be:c0:92:c1:c7:ba:c3:
fb:a1:f2:b7:b3:c6:bd:4b:d7:fa:57:7d:92:a1:95:
27:5e:83:bc:78:48:14:be:6e:8c:79:9f:ce:c1:79:
35:d1:c8:0f:b5:e4:43:d8:b8:1e:e5:cf:16:a3:07:
f3:51:45:70:08:ac:20:a3:4e:61:aa:a4:b9:9b:9c:
66:c2:39:e2:9b:46:79:54:1a:b0:d3:81:03:c6:70:
fb:42:1d:00:7e:8c:cc:0d:02:d1:11:e5:41:fa:03:
4c:b7:e8:b8:56:a2:31:52:cc:7b:e6:a3:f4:04:d9:
29:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:93:A5:88:48:06:C6:A4:79:CC:04:C0:FE:2D:B3:22:D5:6A:71:2C
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/n5OliEgGxqR5zATA_i2zItVqcSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.16.128.0/17
185.74.160.0/22
IPv6:
2a00:9fe0::/29
Signature Algorithm: sha256WithRSAEncryption
b4:cf:21:90:87:97:d6:e2:82:f9:2e:23:f5:62:0e:1c:2a:f8:
3f:2a:fb:69:a2:33:db:3d:e2:c2:c0:16:b3:7f:a4:2e:89:7f:
5c:d9:1d:19:87:4f:f0:e3:6c:4a:78:6c:89:d5:e3:0b:de:a5:
53:b4:a1:08:d0:5e:03:e9:6f:ee:7c:aa:00:8e:3f:57:a6:6e:
7f:b7:78:a1:31:ba:fa:91:f5:3b:1b:f5:8a:23:16:6d:1e:ae:
f0:4d:0b:0e:00:0c:56:c6:d1:6e:20:05:bc:ec:72:9c:37:2a:
cd:59:d6:bc:93:c9:34:d5:6d:e6:a1:07:08:cb:74:c3:f8:a4:
17:70:02:e3:ff:89:50:0d:04:ea:af:9c:d0:44:86:cc:9a:97:
c6:44:88:12:fb:b2:13:be:a6:47:a9:76:3a:19:90:ae:97:75:
2d:26:43:a7:1f:96:5b:9f:f8:32:83:6e:42:ed:b3:18:3f:90:
e3:8b:c6:06:98:27:50:58:e0:97:10:ba:cd:35:cd:94:97:e6:
96:b0:b5:ce:e6:07:b9:d9:42:85:fb:26:1f:39:6a:bc:dc:22:
7d:14:01:e2:77:d6:0a:2c:48:89:a2:02:c4:2e:ab:3c:a7:f9:
82:88:e3:78:78:af:cb:50:d1:44:15:a3:91:49:73:90:8b:ff:
af:60:19:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:47 2023 by rpki-client on console-fra.rpki-client.org