Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/NQyObTLcQotuqfUfXhM6pv96MeY.roa
File: NQyObTLcQotuqfUfXhM6pv96MeY.roa (raw, json)
Hash identifier: RdGvH80u3sxC0Opfv+1NPqK7Gzek7/H7vTOT2epr2Os=
Subject key identifier: 35:0C:8E:6D:32:DC:42:8B:6E:A9:F5:1F:5E:13:3A:A6:FF:7A:31:E6
Certificate issuer: /CN=c8f258ce203e04a33f4e90651153b259cffa3e88
Certificate serial: 0A3B2458
Authority key identifier: C8:F2:58:CE:20:3E:04:A3:3F:4E:90:65:11:53:B2:59:CF:FA:3E:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPJYziA-BKM_TpBlEVOyWc_6Pog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/NQyObTLcQotuqfUfXhM6pv96MeY.roa
Signing time: Sat 01 Jan 2022 08:56:47 +0000
ROA not before: Sat 01 Jan 2022 08:56:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208101
IP address blocks: 194.5.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171648088 (0xa3b2458)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8f258ce203e04a33f4e90651153b259cffa3e88
Validity
Not Before: Jan 1 08:56:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=350c8e6d32dc428b6ea9f51f5e133aa6ff7a31e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c5:20:42:17:44:2e:37:92:39:46:7f:5e:fb:
2d:3c:4c:c5:5f:e4:99:48:40:51:8a:e0:fe:ab:cd:
a9:be:19:ec:3e:54:fc:69:de:ae:91:db:f1:af:87:
a5:35:69:b9:74:75:15:f5:a0:64:51:bc:a5:84:89:
5c:bc:f6:85:e8:53:23:62:3d:21:a2:2e:a8:80:d8:
80:e5:86:3e:e8:56:c5:d4:5e:09:e0:73:7f:ab:7d:
08:0f:e6:21:58:d5:12:99:e6:05:06:2f:1c:9c:52:
57:c9:b8:e4:bd:71:9b:d0:36:c8:7c:dd:51:2c:62:
f6:16:41:29:f1:26:a9:4d:07:35:07:3d:ff:06:4c:
a2:f4:6c:96:e1:f4:2b:00:af:0b:c5:97:ee:a6:a9:
ab:b4:f1:8b:ed:89:e1:fb:39:13:c8:81:32:10:11:
33:74:f1:fd:69:5c:52:ba:35:a0:00:e1:c1:ab:a8:
9f:e4:7e:ad:6d:96:9f:4a:2f:7e:98:6e:d2:93:a0:
e9:9a:a0:d7:64:d0:53:15:6c:33:a5:dd:44:f9:51:
b5:7e:40:40:57:fb:73:cd:c9:92:d1:71:3b:c6:06:
45:e4:c4:18:ca:c2:54:0f:a1:e7:ad:be:b1:30:1f:
b0:3d:e9:68:4e:29:ab:e6:e1:49:47:7d:83:b1:6c:
61:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:0C:8E:6D:32:DC:42:8B:6E:A9:F5:1F:5E:13:3A:A6:FF:7A:31:E6
X509v3 Authority Key Identifier:
keyid:C8:F2:58:CE:20:3E:04:A3:3F:4E:90:65:11:53:B2:59:CF:FA:3E:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPJYziA-BKM_TpBlEVOyWc_6Pog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/NQyObTLcQotuqfUfXhM6pv96MeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/yPJYziA-BKM_TpBlEVOyWc_6Pog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.101.0/24
Signature Algorithm: sha256WithRSAEncryption
32:c9:16:fd:11:78:59:6e:14:35:12:b2:59:1b:e5:7d:cd:01:
1a:46:3f:0d:20:bb:c2:1f:d4:c5:a5:d0:4d:a5:46:34:f6:01:
4d:fe:d2:78:44:29:11:e4:42:b4:7b:b1:0f:62:62:7e:01:20:
f0:87:ca:01:0c:32:f9:c5:4c:82:51:3d:a2:f5:85:7c:87:47:
f6:49:85:b9:aa:89:9e:24:dc:18:9e:fe:5e:e0:34:62:14:29:
a2:2a:25:b3:80:71:cf:42:18:d5:4e:82:8e:46:83:f9:60:a0:
ac:b2:8b:d5:c1:bc:f9:9b:5b:d2:38:5a:45:1b:fe:fa:6f:d0:
74:e5:d5:a2:71:c6:74:0f:e4:f2:bc:29:4f:9e:36:63:24:b8:
33:60:bb:8b:1b:2b:3a:01:70:51:01:eb:fb:08:ad:89:73:6b:
d2:b2:bd:52:7c:b9:6d:79:d8:42:2a:fa:a6:ff:45:64:0e:35:
b2:2c:6e:43:fe:9f:d3:fd:df:38:4f:91:f1:e1:01:1c:5f:e2:
00:f2:31:9b:c8:63:1d:31:e2:2e:ae:cf:e3:ae:4d:bb:c0:1c:
23:ff:0a:ff:08:b5:f0:26:7c:28:49:00:29:d0:da:29:05:8c:
db:b9:d2:4a:5d:96:17:47:01:a7:d3:a3:2a:3e:06:51:65:0b:
f5:03:cb:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:00 2024 by rpki-client on console-ams.rpki-client.org