Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/c68ae4-9724-4975-8bd4-c8700a14761b/1/nq2AnOQ64pgeL1Jb3KMWwLmq2qc.roa
File: nq2AnOQ64pgeL1Jb3KMWwLmq2qc.roa (raw, json)
Hash identifier: 5R3QNh1X8ljlvGcqtk286yjjICs3sQsxd2jJA3FgsZE=
Subject key identifier: 9E:AD:80:9C:E4:3A:E2:98:1E:2F:52:5B:DC:A3:16:C0:B9:AA:DA:A7
Certificate issuer: /CN=fc07c6b56ef1f239b028ef42375a2a1765bc08b8
Certificate serial: 01259B49
Authority key identifier: FC:07:C6:B5:6E:F1:F2:39:B0:28:EF:42:37:5A:2A:17:65:BC:08:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_AfGtW7x8jmwKO9CN1oqF2W8CLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/c68ae4-9724-4975-8bd4-c8700a14761b/1/nq2AnOQ64pgeL1Jb3KMWwLmq2qc.roa
Signing time: Sat 01 Jan 2022 09:02:44 +0000
ROA not before: Sat 01 Jan 2022 09:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9121
IP address blocks: 217.64.209.0/24 maxlen: 24
217.64.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19241801 (0x1259b49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc07c6b56ef1f239b028ef42375a2a1765bc08b8
Validity
Not Before: Jan 1 09:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ead809ce43ae2981e2f525bdca316c0b9aadaa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4d:af:c2:8c:6c:dc:05:1e:90:89:1f:1c:a2:
1d:23:1c:1b:5a:31:4e:f6:b6:4c:ef:16:e0:67:c4:
88:89:e6:66:56:29:97:25:d0:79:0b:eb:09:95:6c:
eb:d1:d6:86:ca:43:c5:17:c2:35:9a:c2:d7:f6:36:
6c:7c:ca:66:1d:00:f1:8d:29:7c:89:96:79:ac:a5:
93:5f:37:b7:77:c0:08:7f:9d:bb:37:08:f3:f0:b5:
61:1a:59:f1:a3:c1:84:63:70:00:9d:4c:57:14:57:
45:e0:27:e3:47:08:04:a0:9e:7d:56:2b:16:ca:d3:
9c:b8:66:08:f2:08:85:17:2b:4a:9e:a0:09:bf:f0:
02:08:e9:08:a2:ee:34:15:73:44:7f:9e:89:ef:ec:
20:39:44:dd:93:62:85:f4:28:d9:96:bb:15:dd:ff:
c1:01:c0:19:27:cf:ae:7a:cc:bf:51:10:84:c3:b0:
be:e6:e5:4d:d7:04:40:07:97:c3:32:ec:de:50:b6:
b9:0a:45:5e:a0:21:c8:7c:a5:a5:24:51:77:a5:3c:
fc:4b:77:9d:6c:82:64:28:26:d2:ac:dd:5a:82:cf:
cd:f1:37:54:ea:a9:b4:4d:9c:1f:48:6a:8c:90:f8:
d8:e4:5d:c1:4c:5d:e1:07:69:26:e7:1a:08:07:6a:
3d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:AD:80:9C:E4:3A:E2:98:1E:2F:52:5B:DC:A3:16:C0:B9:AA:DA:A7
X509v3 Authority Key Identifier:
keyid:FC:07:C6:B5:6E:F1:F2:39:B0:28:EF:42:37:5A:2A:17:65:BC:08:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_AfGtW7x8jmwKO9CN1oqF2W8CLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c68ae4-9724-4975-8bd4-c8700a14761b/1/nq2AnOQ64pgeL1Jb3KMWwLmq2qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c68ae4-9724-4975-8bd4-c8700a14761b/1/_AfGtW7x8jmwKO9CN1oqF2W8CLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.64.208.0/23
Signature Algorithm: sha256WithRSAEncryption
64:38:cd:5c:53:13:7b:3a:12:c4:a5:41:91:5a:c5:a3:88:fe:
9a:32:c0:57:b0:3a:68:01:0f:31:60:3b:22:d9:d0:7f:b6:45:
4d:bb:71:92:37:01:36:9f:c5:56:a6:5a:75:82:4e:55:2e:07:
47:37:6a:34:e1:b7:90:1c:ef:50:40:6a:f9:a2:62:cb:03:ae:
31:1b:77:be:9b:9e:b6:d1:40:ed:f6:0b:33:b0:08:2d:58:82:
53:be:df:bd:fe:87:82:60:3b:9c:fc:8a:1a:8c:38:6f:c8:ec:
6b:34:e5:5b:ea:df:df:2d:62:d7:a3:49:96:de:ac:11:20:da:
e4:3b:82:75:3b:b3:97:2d:b3:f4:5e:b7:a8:26:a9:48:f8:d6:
00:ec:d0:50:1c:98:f3:9d:18:56:3a:45:d4:56:cf:24:79:a6:
46:f1:a6:fc:3f:39:a3:93:64:1a:14:a5:8f:73:40:f5:0d:09:
af:8f:dd:d6:f1:bd:80:25:85:24:fd:f8:26:9b:5d:9a:e0:80:
78:fe:94:de:ad:25:7a:b8:19:f8:39:5e:03:dc:59:18:7c:64:
f4:ee:56:09:c2:bb:ce:cc:0e:1b:6a:d6:62:30:e4:6c:7d:2b:
5c:df:73:5f:e2:e5:2c:f6:cf:81:9f:89:c6:5e:6d:f5:e1:13:
3c:ce:0a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:32 2024 by rpki-client on console-fra.rpki-client.org