Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/a2df79-d4ff-40c7-b4a4-7aec558eb40d/1/RA4_NXVsLdnt6NwmwAClTT2remg.roa
File: RA4_NXVsLdnt6NwmwAClTT2remg.roa (raw, json)
Hash identifier: NaqVcW6WGWKGM6x9FhnJkNzI3IUaMSHpQh6ITv34ZBw=
Subject key identifier: 44:0E:3F:35:75:6C:2D:D9:ED:E8:DC:26:C0:00:A5:4D:3D:AB:7A:68
Certificate issuer: /CN=88fc58875608970d9a728347d05ef00d0f1d5611
Certificate serial: E16E13
Authority key identifier: 88:FC:58:87:56:08:97:0D:9A:72:83:47:D0:5E:F0:0D:0F:1D:56:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPxYh1YIlw2acoNH0F7wDQ8dVhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/a2df79-d4ff-40c7-b4a4-7aec558eb40d/1/RA4_NXVsLdnt6NwmwAClTT2remg.roa
Signing time: Sat 01 Jan 2022 12:03:10 +0000
ROA not before: Sat 01 Jan 2022 12:03:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8412
IP address blocks: 91.198.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14773779 (0xe16e13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88fc58875608970d9a728347d05ef00d0f1d5611
Validity
Not Before: Jan 1 12:03:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=440e3f35756c2dd9ede8dc26c000a54d3dab7a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a2:69:f3:1f:56:6c:e0:e3:83:63:f0:79:3c:
7a:b6:59:0a:7b:8f:e2:a6:26:3a:9d:61:3a:00:3c:
8e:53:b6:f6:b3:0e:01:8f:3f:38:87:9c:b8:1d:a5:
e4:d3:03:0c:9b:5d:99:aa:5a:e5:21:bc:b7:9c:32:
c7:b9:c5:2d:c1:24:64:52:36:26:d1:d1:63:e5:d1:
cf:ea:6a:7c:23:b6:5e:6f:7a:80:ac:2b:89:d4:41:
33:e4:d9:e7:7c:cc:44:67:40:6f:64:25:23:bc:d5:
d4:c4:96:8f:34:35:2f:e4:41:29:e6:02:e9:fb:27:
86:ea:57:23:85:65:db:1e:19:f8:12:1d:4f:fc:d8:
8f:bb:e6:1a:a8:2e:bc:05:58:10:db:69:d2:b5:d4:
be:c5:bb:28:43:69:f7:17:6b:b9:f7:41:e1:eb:a0:
df:ad:07:f8:e0:59:91:cc:20:0b:fe:5a:05:8c:0c:
5a:7a:43:00:cc:ce:8a:46:4d:b0:d0:31:ab:b8:7b:
87:61:10:44:35:c2:1b:cc:f3:59:00:09:a5:e8:7e:
f8:4c:cb:31:27:ed:01:1e:9e:17:91:c9:39:04:80:
e2:fd:ec:bc:4c:e0:3e:aa:76:20:b1:d5:4b:48:7a:
dc:3c:9d:2c:50:f1:67:27:94:30:50:7e:31:2d:b6:
c9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:0E:3F:35:75:6C:2D:D9:ED:E8:DC:26:C0:00:A5:4D:3D:AB:7A:68
X509v3 Authority Key Identifier:
keyid:88:FC:58:87:56:08:97:0D:9A:72:83:47:D0:5E:F0:0D:0F:1D:56:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPxYh1YIlw2acoNH0F7wDQ8dVhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a2df79-d4ff-40c7-b4a4-7aec558eb40d/1/RA4_NXVsLdnt6NwmwAClTT2remg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a2df79-d4ff-40c7-b4a4-7aec558eb40d/1/iPxYh1YIlw2acoNH0F7wDQ8dVhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.142.0/24
Signature Algorithm: sha256WithRSAEncryption
60:fb:d4:11:0f:54:6f:12:f1:72:75:0e:58:d9:e1:8e:bd:be:
8e:ed:26:38:21:46:c2:7d:ac:a1:34:66:c9:a8:b9:cc:5b:da:
c1:9a:91:f5:38:4c:dc:53:cd:e4:be:60:2c:8c:72:26:3d:c2:
9e:72:fb:aa:24:4b:7b:cf:f9:b7:7d:b1:3b:60:b1:03:59:91:
a5:53:08:4e:85:ca:6a:ef:b1:31:c2:a8:c8:26:1a:33:6a:a2:
ed:d7:1c:19:9e:b5:a3:d9:b7:8b:80:5a:dc:ab:66:b8:b4:33:
86:d8:b0:5c:a9:42:d3:6d:c9:48:52:e2:e6:f8:ed:29:a1:d2:
ad:c2:84:25:d7:5d:05:b8:3b:16:f3:fd:6c:f9:7b:05:48:1f:
a1:a3:85:58:88:90:ab:5f:d7:44:95:b6:9d:ed:62:22:30:d5:
4a:06:95:72:40:d5:89:15:1f:7b:92:e7:b5:f2:99:44:39:cf:
4f:1d:ff:f0:7d:1a:7e:d1:5f:e4:af:a2:11:2c:c3:04:1b:5e:
35:8f:2d:08:94:1b:8c:f7:29:ac:84:4a:ea:61:e3:41:33:bf:
70:c7:aa:00:2f:cf:fc:99:d4:88:60:b5:d1:8a:87:4a:03:ba:
9f:22:d9:86:7c:87:31:c1:75:73:eb:a6:fb:7c:ed:44:d2:1b:
ce:13:4f:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:22 2024 by rpki-client on console-fra.rpki-client.org