Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/3e9916-4f8a-4b08-89c9-b0c74b76e182/1/nY9z01aBT1MbgAUfQcP4U8TX2Jw.roa
File: nY9z01aBT1MbgAUfQcP4U8TX2Jw.roa (raw, json)
Hash identifier: hHYAwn2LzXfdwQcGj07rh6X2ZioiNnMRWHerv4j8BpM=
Subject key identifier: 9D:8F:73:D3:56:81:4F:53:1B:80:05:1F:41:C3:F8:53:C4:D7:D8:9C
Certificate issuer: /CN=3474210c28413e26284822abe83ad6d7c0f764fa
Certificate serial: 0EE3B249
Authority key identifier: 34:74:21:0C:28:41:3E:26:28:48:22:AB:E8:3A:D6:D7:C0:F7:64:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHQhDChBPiYoSCKr6DrW18D3ZPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/3e9916-4f8a-4b08-89c9-b0c74b76e182/1/nY9z01aBT1MbgAUfQcP4U8TX2Jw.roa
Signing time: Sat 01 Jan 2022 13:56:01 +0000
ROA not before: Sat 01 Jan 2022 13:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6939
IP address blocks: 185.68.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 249803337 (0xee3b249)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3474210c28413e26284822abe83ad6d7c0f764fa
Validity
Not Before: Jan 1 13:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d8f73d356814f531b80051f41c3f853c4d7d89c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:82:02:80:d2:e0:44:18:90:6d:21:ec:f1:ee:
b8:0a:95:aa:ca:17:33:1c:c7:21:1a:7c:e9:bd:2f:
ce:4c:01:41:4c:16:29:e2:23:6f:ad:9a:ad:9c:a5:
dc:7d:cb:6d:df:9e:69:1b:8e:f4:8b:06:97:a5:2d:
bf:bc:f6:dc:8c:08:85:c1:cc:66:61:00:1b:07:80:
d5:7a:2d:88:38:af:8f:e7:8f:3a:df:bf:60:13:08:
07:82:8b:f6:a4:5b:f0:c6:99:35:9b:60:9f:57:ae:
ee:fa:f3:35:68:ec:bf:6c:fc:6c:e8:29:16:3d:50:
d7:f9:a8:9e:d7:d2:6f:90:0f:06:fd:b9:37:63:b2:
8e:ce:be:c8:75:21:02:44:60:74:66:ab:06:54:cc:
35:d4:ef:02:66:cb:e5:9a:d9:80:ee:71:e1:ae:1b:
00:19:5c:a8:aa:f7:b4:12:be:6d:ee:cb:54:0f:f7:
0b:6d:55:ae:d9:b2:62:fe:64:18:ba:4c:9d:bd:90:
ca:cc:3d:9b:39:42:95:eb:41:fc:58:eb:a9:8d:96:
8a:b1:5b:71:fa:38:82:b3:1e:fc:82:1f:45:f3:a8:
da:ab:88:e6:c0:aa:fe:2f:eb:1c:fa:52:50:06:c3:
18:cd:48:12:26:cb:37:db:d0:6a:ef:bc:bd:28:c6:
d7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8F:73:D3:56:81:4F:53:1B:80:05:1F:41:C3:F8:53:C4:D7:D8:9C
X509v3 Authority Key Identifier:
keyid:34:74:21:0C:28:41:3E:26:28:48:22:AB:E8:3A:D6:D7:C0:F7:64:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHQhDChBPiYoSCKr6DrW18D3ZPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/3e9916-4f8a-4b08-89c9-b0c74b76e182/1/nY9z01aBT1MbgAUfQcP4U8TX2Jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/3e9916-4f8a-4b08-89c9-b0c74b76e182/1/NHQhDChBPiYoSCKr6DrW18D3ZPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.47.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:6d:b4:9d:41:e7:6d:fd:90:2d:65:21:24:bd:f7:d6:df:2a:
4d:72:2e:af:13:58:66:4f:8d:bc:5e:8a:46:48:61:ee:1c:f7:
79:9f:79:d7:f8:f3:4f:52:83:7c:e3:55:24:de:06:e8:b1:10:
cf:6c:41:da:c3:2e:97:d1:5f:01:94:51:d7:15:64:59:63:64:
e8:78:3d:1c:1f:23:9b:f0:d0:32:52:4e:40:b0:d7:b6:68:d5:
ca:e5:e9:98:ce:1b:96:b4:44:1d:09:e3:53:42:db:c3:8c:b5:
a5:e4:33:ed:a3:45:41:75:f4:46:dd:bb:2f:3d:92:d0:08:b9:
66:a6:99:74:da:e8:a8:d3:dd:2f:a0:67:a7:d3:b9:47:23:e5:
6d:50:38:4f:03:a9:63:b8:8a:bd:1a:0d:3a:bd:99:85:6f:93:
f2:0a:8c:95:71:73:05:28:fc:10:44:c5:48:4d:b7:ac:30:85:
60:53:5a:b2:f8:97:6c:e2:8f:98:c6:83:37:08:a1:3c:d6:a2:
2e:f3:cc:f9:9b:51:ba:3a:73:15:64:20:d7:3e:53:99:da:87:
c8:7e:79:80:5a:71:48:4e:e9:d2:29:33:48:1d:76:54:a5:95:
81:f8:70:33:40:9b:1d:d4:4a:79:87:23:2a:8e:65:36:45:36:
e8:c0:17:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:36 2024 by rpki-client on console-ams.rpki-client.org