Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0466f8-330d-4ac9-ac18-920b52a9f6a5/1/N95e3Dqz5hBovWvNlkT-xQSrxQE.roa
File: N95e3Dqz5hBovWvNlkT-xQSrxQE.roa (raw, json)
Hash identifier: oWo3r3vEnQ5i0RsiihogBCFRyszWfzmiHpq6E13x7nM=
Subject key identifier: 37:DE:5E:DC:3A:B3:E6:10:68:BD:6B:CD:96:44:FE:C5:04:AB:C5:01
Certificate issuer: /CN=faa16909ca4da39935eab9af038b58a5233122b3
Certificate serial: 0AC11652
Authority key identifier: FA:A1:69:09:CA:4D:A3:99:35:EA:B9:AF:03:8B:58:A5:23:31:22:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qFpCcpNo5k16rmvA4tYpSMxIrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0466f8-330d-4ac9-ac18-920b52a9f6a5/1/N95e3Dqz5hBovWvNlkT-xQSrxQE.roa
Signing time: Sat 01 Jan 2022 16:06:37 +0000
ROA not before: Sat 01 Jan 2022 16:06:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 160.216.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180426322 (0xac11652)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa16909ca4da39935eab9af038b58a5233122b3
Validity
Not Before: Jan 1 16:06:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37de5edc3ab3e61068bd6bcd9644fec504abc501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:01:fb:e0:f2:6f:81:f1:41:61:e8:15:3d:1b:
9d:4d:c0:a6:1d:ee:31:06:84:f4:a6:bb:d7:38:db:
b0:27:03:b1:d1:56:9a:e7:71:e8:77:b6:88:45:9c:
f0:c0:46:a3:b3:34:38:05:f4:0d:d4:ee:3b:14:91:
7f:23:a3:2b:17:c9:a1:4d:2d:b7:70:36:af:f6:b2:
1f:80:6d:49:bf:97:00:62:59:08:30:c0:d9:35:6e:
69:77:26:91:c5:a7:f3:0d:ec:8a:89:f4:dd:40:cd:
9e:bd:93:ff:df:41:42:3d:df:06:4e:89:fa:1f:c4:
6f:2f:c9:f6:7e:f0:bd:9d:54:4c:af:bf:b7:55:8c:
30:f6:01:b8:6e:c3:54:1b:7e:40:44:93:44:9c:76:
8d:78:b5:cc:7a:c3:3d:60:4c:69:b4:51:9c:4e:d9:
e4:7f:fd:ce:8f:c7:79:37:e9:b0:44:6e:98:72:36:
70:95:96:84:78:4e:d5:72:65:15:db:29:2d:21:66:
e9:ad:11:24:11:3a:34:e6:60:0c:e2:0d:08:b1:29:
96:9f:dc:46:f9:89:ae:e2:fe:c8:0b:e0:77:f6:49:
ea:e8:5f:be:cb:a9:c1:f1:a1:59:d2:05:96:81:55:
98:d9:36:cd:e7:d5:9b:44:d9:85:43:43:65:81:16:
12:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DE:5E:DC:3A:B3:E6:10:68:BD:6B:CD:96:44:FE:C5:04:AB:C5:01
X509v3 Authority Key Identifier:
keyid:FA:A1:69:09:CA:4D:A3:99:35:EA:B9:AF:03:8B:58:A5:23:31:22:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qFpCcpNo5k16rmvA4tYpSMxIrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0466f8-330d-4ac9-ac18-920b52a9f6a5/1/N95e3Dqz5hBovWvNlkT-xQSrxQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0466f8-330d-4ac9-ac18-920b52a9f6a5/1/1-qFpCcpNo5k16rmvA4tYpSMxIrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.216.0.0/16
Signature Algorithm: sha256WithRSAEncryption
64:ea:b2:28:6c:2d:16:c7:26:12:38:b3:2e:da:71:ba:c4:19:
9b:95:fe:9e:b1:e3:d3:1f:26:e9:69:9c:cb:9b:07:e2:d9:1a:
d9:3a:2d:0c:a1:2d:4f:3a:be:29:4d:28:34:56:cc:e9:a7:e3:
29:3d:b3:4b:3d:ff:9e:da:36:93:a7:b6:8a:40:2a:25:0d:1c:
c8:35:43:25:a6:b6:45:ca:e1:64:be:ee:03:bf:97:d5:c2:89:
2e:16:33:39:a4:14:c8:31:f4:13:1b:c5:30:42:c4:fd:7d:d0:
59:c3:7a:72:ef:d7:73:d5:bf:14:11:54:4a:ce:88:8d:26:72:
d9:ec:db:c7:49:e1:07:33:76:7b:65:b4:24:a3:54:41:62:7c:
9a:71:f7:2c:b5:ed:d2:5f:27:e5:5c:66:1a:66:c0:aa:79:73:
a1:c1:10:7c:e7:a3:d4:5a:1c:5c:42:70:bf:6e:bf:d1:fc:4c:
6a:28:0d:77:3e:56:13:8b:75:27:d5:0f:bd:17:44:db:9f:80:
17:67:0c:cf:63:0c:d9:34:40:c7:e4:ad:47:8c:86:08:44:50:
06:53:0b:32:66:d9:d2:20:f4:7f:c5:1b:f1:e1:4e:5f:c0:8a:
d1:55:21:79:a1:1c:df:09:5f:bd:65:51:9e:2a:c5:f8:2e:68:
fd:ec:70:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:21 2024 by rpki-client on console-ams.rpki-client.org