Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/NRxu4K6Gwi_vxlG8U39YP-93OsI.roa
File: NRxu4K6Gwi_vxlG8U39YP-93OsI.roa (raw, json)
Hash identifier: CCJrgYqYZtHUSUey7zF1nGB9BXBSVxLWCD0COC4fhew=
Subject key identifier: 35:1C:6E:E0:AE:86:C2:2F:EF:C6:51:BC:53:7F:58:3F:EF:77:3A:C2
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 015BFA19
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/NRxu4K6Gwi_vxlG8U39YP-93OsI.roa
Signing time: Sat 01 Jan 2022 12:59:05 +0000
ROA not before: Sat 01 Jan 2022 12:59:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34367
IP address blocks: 195.245.106.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22805017 (0x15bfa19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Jan 1 12:59:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=351c6ee0ae86c22fefc651bc537f583fef773ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0c:0f:1c:07:81:44:5d:36:99:4b:36:76:fc:
8d:4b:fd:14:80:79:a8:fb:7d:e3:d9:2b:dc:cd:bc:
e0:7f:a1:63:56:5e:f6:5e:f9:d5:a3:ec:56:f7:7e:
73:c2:d5:ef:e6:cb:ca:93:76:77:80:e0:d6:ea:67:
9c:fd:a8:d0:8e:af:c9:10:7e:3c:f9:fc:f1:72:4f:
14:b2:29:b3:c4:a0:12:86:e5:f1:34:0c:bc:74:ce:
cc:a6:a7:1b:0d:68:e3:4d:0b:5f:77:c6:4f:fa:e9:
08:8b:73:4b:b8:cc:ab:ed:0a:08:46:03:fc:a9:d7:
f8:d4:fc:71:7d:97:a1:56:3c:8c:dc:4f:92:8c:83:
d0:ca:cc:e8:48:c8:00:70:7e:63:1e:eb:1a:e6:c2:
6a:d5:99:08:1d:f7:3b:76:d0:5a:ae:f8:34:c2:f1:
62:dc:ca:f4:0b:f6:c2:35:2e:04:f5:ae:81:7e:27:
5b:a4:fe:88:59:fb:6a:1c:43:54:ac:f9:27:ff:f3:
be:37:ca:d2:54:bb:2a:16:a4:dc:92:11:c2:a1:f3:
6e:07:79:11:91:88:c2:8f:d0:4c:59:b3:90:58:93:
ad:16:48:a2:3c:08:0c:d5:67:9b:de:f0:b6:47:44:
ea:66:68:6e:94:9d:29:d9:e6:84:82:79:ba:c9:0d:
c6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:1C:6E:E0:AE:86:C2:2F:EF:C6:51:BC:53:7F:58:3F:EF:77:3A:C2
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/NRxu4K6Gwi_vxlG8U39YP-93OsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.106.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:66:bd:8c:71:0f:1d:e4:fc:cd:1f:73:e3:41:9a:79:78:11:
57:96:aa:e1:20:8f:9e:38:5a:63:45:72:97:67:0f:90:94:fb:
c1:dc:7d:cb:da:e2:6a:ac:fc:18:eb:f0:d2:78:cd:d8:57:37:
3e:74:6d:e6:8e:44:49:3b:c2:4b:0a:ee:b2:6d:a3:4c:ff:e4:
01:b0:0a:db:e8:ac:a5:2c:a4:fd:9a:bc:34:13:c9:54:44:d3:
63:18:1b:26:60:f5:d1:14:88:9f:78:d8:76:96:64:d6:b5:01:
d3:7d:c2:d6:bc:1c:1f:5c:6f:8e:b3:c6:38:4d:c4:72:a7:1a:
4e:04:ea:f9:a4:5a:0a:59:e3:a3:d2:7b:91:30:dc:81:a6:5c:
36:4f:95:c9:06:62:fd:1c:c1:a8:1f:b7:b0:82:4a:a6:87:b3:
c2:dd:ed:a1:62:b9:00:b4:d2:bd:68:d1:42:59:8b:2d:49:f9:
51:25:24:8d:88:e6:ab:a3:24:c9:29:ef:d0:16:7a:c7:89:50:
bd:2e:c5:1b:2d:8e:e5:9c:ab:09:63:4c:ad:34:b5:e8:05:5c:
80:5b:05:aa:43:cd:16:e3:6f:f2:49:3d:07:15:b5:cd:86:31:
5e:01:bb:df:09:78:11:f7:40:3d:ce:8f:4f:42:58:b1:da:85:
93:d1:2f:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:15 2024 by rpki-client on console-ams.rpki-client.org