Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9217f9-813d-47af-ad62-32208d544a84/1/NZdsY93hPwWUQGAgWcahBQdL3vM.roa
File: NZdsY93hPwWUQGAgWcahBQdL3vM.roa (raw, json)
Hash identifier: IFm4XIQWL6n3/uRBNFvLhfHaXcAKh/kNYzheIxHRZi8=
Subject key identifier: 35:97:6C:63:DD:E1:3F:05:94:40:60:20:59:C6:A1:05:07:4B:DE:F3
Certificate issuer: /CN=181e4d608152fc244afffba2dc72b851b19b2527
Certificate serial: 09A15C0F
Authority key identifier: 18:1E:4D:60:81:52:FC:24:4A:FF:FB:A2:DC:72:B8:51:B1:9B:25:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GB5NYIFS_CRK__ui3HK4UbGbJSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9217f9-813d-47af-ad62-32208d544a84/1/NZdsY93hPwWUQGAgWcahBQdL3vM.roa
Signing time: Sat 01 Jan 2022 14:57:33 +0000
ROA not before: Sat 01 Jan 2022 14:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31257
IP address blocks: 86.62.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161569807 (0x9a15c0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=181e4d608152fc244afffba2dc72b851b19b2527
Validity
Not Before: Jan 1 14:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35976c63dde13f059440602059c6a105074bdef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b3:37:fa:c1:69:b0:2c:bc:4a:82:af:a6:32:
18:68:d6:68:f8:e1:ec:cd:ce:e3:34:c3:cd:03:b1:
d8:81:76:07:37:0c:a4:23:ca:43:bf:59:40:35:1f:
2d:1a:df:c1:46:76:00:76:8a:99:46:9d:c9:74:d3:
bf:34:b6:02:38:4f:ff:2c:02:ee:c2:d4:5f:17:52:
e2:cc:09:05:a8:d4:c6:50:e1:8e:a8:f0:23:7f:d0:
1b:b5:27:78:e6:81:85:c8:48:45:3f:d6:55:e9:a6:
c2:9a:45:7d:43:e1:83:f1:f1:ab:2b:aa:53:5f:2f:
c5:98:03:e5:56:ba:3f:17:40:d3:7e:8b:27:b4:e3:
5c:30:1d:a5:90:6f:43:39:be:9a:0a:52:cd:c3:bf:
15:78:18:70:b7:f5:f3:e6:f5:05:4e:ba:f2:d6:2c:
7e:57:ea:75:52:94:7f:88:4f:79:cd:88:2e:e8:5c:
35:f0:cd:f1:04:9b:ce:07:35:71:a5:ed:c2:dd:06:
66:b8:13:a0:c4:b7:91:a4:1b:ce:e7:56:dc:81:79:
27:9b:6f:a8:f1:b4:6c:5f:0e:5d:89:fc:fd:aa:13:
a9:44:e4:64:93:d0:fd:bd:8a:08:81:2f:d8:e8:6f:
79:b5:a2:4d:b8:16:81:ca:a3:d7:61:08:9b:b0:b6:
b0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:97:6C:63:DD:E1:3F:05:94:40:60:20:59:C6:A1:05:07:4B:DE:F3
X509v3 Authority Key Identifier:
keyid:18:1E:4D:60:81:52:FC:24:4A:FF:FB:A2:DC:72:B8:51:B1:9B:25:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GB5NYIFS_CRK__ui3HK4UbGbJSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9217f9-813d-47af-ad62-32208d544a84/1/NZdsY93hPwWUQGAgWcahBQdL3vM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9217f9-813d-47af-ad62-32208d544a84/1/GB5NYIFS_CRK__ui3HK4UbGbJSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.6.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:85:d4:88:8e:30:0f:fc:4a:93:b5:ee:05:62:15:04:2c:70:
0e:0a:95:fa:7d:07:f8:91:14:3c:4c:a3:4d:47:b9:38:94:e2:
dc:02:2d:08:52:96:dd:37:e5:53:54:57:ee:7f:74:fa:a3:a1:
0f:e8:7f:94:14:22:9a:44:02:8b:cc:9c:bc:0c:97:0d:94:53:
51:ed:1a:78:ff:ea:0f:46:f2:0b:52:c3:7a:f7:68:93:ae:85:
63:7a:e6:fa:af:b0:9d:8d:ab:58:94:a7:e2:53:f3:cc:99:79:
b9:af:52:5d:a6:f8:0d:f9:60:81:c3:f5:9a:e2:63:35:4a:68:
ad:ec:cd:bf:db:6e:04:a5:22:52:4d:10:9a:e6:bd:bd:3c:33:
b1:a3:cf:27:2f:e5:e0:6f:d1:9a:9d:96:3a:8b:b7:91:09:8e:
81:ae:bd:3c:97:36:96:f0:fd:6c:a5:c5:8f:9f:30:45:5e:3e:
56:ed:f4:62:4c:a2:09:69:de:f8:cb:ba:e4:59:de:42:f9:30:
6a:4f:ad:94:17:0b:1a:b4:e7:1d:00:73:e4:1a:df:e0:1d:13:
29:67:19:1e:98:07:97:57:c9:50:f2:18:27:d8:1e:7c:51:84:
1f:5b:2c:c8:f3:74:13:bc:17:a9:6a:4f:8c:9e:58:68:a6:19:
e0:3d:be:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:38:33 2025 by rpki-client