Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/f52db9-8e25-4297-93fd-55415a0ba73b/1/n0Cz6FqVtok9vVlpRMHneR2sMZQ.roa
File: n0Cz6FqVtok9vVlpRMHneR2sMZQ.roa (raw, json)
Hash identifier: 5SGinC56PpbRusS+Ru5lXYieaWDoMx/FXaJIyRO7P3M=
Subject key identifier: 9F:40:B3:E8:5A:95:B6:89:3D:BD:59:69:44:C1:E7:79:1D:AC:31:94
Certificate issuer: /CN=350cce1b9d06dcce8856659536499c1603391370
Certificate serial: 1083056E
Authority key identifier: 35:0C:CE:1B:9D:06:DC:CE:88:56:65:95:36:49:9C:16:03:39:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQzOG50G3M6IVmWVNkmcFgM5E3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/f52db9-8e25-4297-93fd-55415a0ba73b/1/n0Cz6FqVtok9vVlpRMHneR2sMZQ.roa
Signing time: Sat 01 Jan 2022 03:01:38 +0000
ROA not before: Sat 01 Jan 2022 03:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48306
IP address blocks: 91.209.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277022062 (0x1083056e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=350cce1b9d06dcce8856659536499c1603391370
Validity
Not Before: Jan 1 03:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f40b3e85a95b6893dbd596944c1e7791dac3194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8d:45:87:3a:23:bf:95:0d:ff:50:ca:24:56:
59:52:91:bf:88:06:a5:46:98:91:6f:41:f1:73:d8:
c2:64:80:b1:bf:88:2a:d1:f5:30:f3:53:eb:1b:73:
43:1c:72:0c:1f:17:cf:16:8d:0d:83:bb:1e:ea:b2:
d1:26:1d:cd:85:92:86:13:5f:23:46:1d:ea:e2:fc:
21:1c:ce:74:b3:83:66:a8:e8:f2:cd:4d:e3:e8:6b:
a0:e3:95:d1:c2:26:0b:a5:76:f4:8e:bc:be:47:a5:
05:bc:4d:9c:86:af:45:cd:9d:8c:72:60:b3:25:7b:
1a:49:ba:4c:55:83:fb:d8:d9:a5:fe:89:f2:f8:5d:
ae:11:16:e0:ba:49:59:cc:71:0c:b7:30:d5:64:78:
a6:a6:80:26:e4:80:69:b9:fb:f3:5b:b3:b6:61:f4:
47:5f:60:b5:48:cc:31:a6:7c:e6:d2:ff:71:02:c3:
6a:4e:19:fd:ed:22:ea:8e:98:eb:1c:71:fa:73:d6:
40:34:71:1c:32:f0:ff:c3:d8:5c:56:fe:48:06:70:
b9:4b:29:8f:00:ce:bf:4e:d9:78:e7:09:29:9f:0d:
59:c8:ee:97:3a:e0:66:8e:20:71:04:2e:71:b4:38:
10:a6:23:f7:66:16:3e:01:4a:2b:64:05:21:74:87:
eb:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:40:B3:E8:5A:95:B6:89:3D:BD:59:69:44:C1:E7:79:1D:AC:31:94
X509v3 Authority Key Identifier:
keyid:35:0C:CE:1B:9D:06:DC:CE:88:56:65:95:36:49:9C:16:03:39:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQzOG50G3M6IVmWVNkmcFgM5E3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/f52db9-8e25-4297-93fd-55415a0ba73b/1/n0Cz6FqVtok9vVlpRMHneR2sMZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/f52db9-8e25-4297-93fd-55415a0ba73b/1/NQzOG50G3M6IVmWVNkmcFgM5E3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.88.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:ed:93:07:dd:c5:83:8e:64:b1:b8:0b:39:f6:9d:ac:a7:a3:
38:66:72:67:b5:0a:98:38:52:5a:cb:1c:ab:02:c8:d6:d3:33:
b1:8b:26:64:38:4a:86:e0:c0:94:11:eb:fc:db:72:d6:58:2a:
19:a5:d0:ec:a6:6c:d0:52:01:8f:95:67:0e:f0:1f:0d:a0:67:
61:d9:9d:f7:4e:46:e8:9b:20:b1:20:d9:9d:28:e9:99:58:52:
69:a9:73:e0:cf:08:ae:e0:a6:db:39:bb:83:db:dc:43:34:f3:
d5:41:ee:8b:ed:c8:28:8e:84:0d:73:00:1a:dc:de:ca:8c:27:
b3:19:58:34:8c:40:a6:df:f1:14:46:8a:01:b9:06:4b:c0:c3:
a1:40:78:ef:7f:77:c0:90:75:69:5d:32:27:d5:a6:4d:31:16:
d3:35:66:1a:f4:42:e8:0c:dc:10:0a:99:42:6b:60:9d:18:b7:
f3:fa:38:65:2f:96:ef:ad:91:60:7f:f5:af:f0:05:7b:64:4d:
c6:8c:f6:67:ea:6a:fd:59:e6:e6:61:02:0a:75:4d:71:b1:a8:
a8:80:4e:0d:4b:13:12:0a:b6:11:50:f1:52:58:80:6c:69:e8:
30:67:75:61:44:46:bd:75:25:82:a6:30:f5:ec:c3:a9:12:f9:
c9:68:fc:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:38 2024 by rpki-client on console-ams.rpki-client.org