Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/3NiFAEY7SdJpOoWG9MxILU5C2Pk.roa
File: 3NiFAEY7SdJpOoWG9MxILU5C2Pk.roa (raw, json)
Hash identifier: OFVAl+Sa8QFO2GcFAD/17UbgZA0K+pXFNIsR6lgcpyo=
Subject key identifier: DC:D8:85:00:46:3B:49:D2:69:3A:85:86:F4:CC:48:2D:4E:42:D8:F9
Certificate issuer: /CN=37689eaacbaf68af35d3fafb9674de48a6fc0978
Certificate serial: 0183E9E350BD31812175224F25B2DAFE64FA
Authority key identifier: 37:68:9E:AA:CB:AF:68:AF:35:D3:FA:FB:96:74:DE:48:A6:FC:09:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2ieqsuvaK810_r7lnTeSKb8CXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/3NiFAEY7SdJpOoWG9MxILU5C2Pk.roa
Signing time: Tue 18 Oct 2022 06:58:52 +0000
ROA not before: Tue 18 Oct 2022 06:58:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210482
IP address blocks: 141.80.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e9:e3:50:bd:31:81:21:75:22:4f:25:b2:da:fe:64:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37689eaacbaf68af35d3fafb9674de48a6fc0978
Validity
Not Before: Oct 18 06:58:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcd88500463b49d2693a8586f4cc482d4e42d8f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c7:d2:29:4f:e7:5f:f9:7e:e8:e5:00:70:86:
a0:91:7c:17:68:f1:71:0d:c9:18:f4:1e:84:d8:62:
4d:ae:ed:d4:c2:18:d7:b3:32:af:88:3a:7e:8d:6b:
c6:c8:04:0a:64:df:cd:2e:11:c0:43:a3:15:4d:23:
09:2e:3a:2f:6e:e5:1b:e6:b2:bf:59:1a:22:ca:7e:
ca:a3:fe:a1:3c:ab:bc:79:14:99:d9:6c:a0:0b:40:
98:10:f8:b4:30:a1:1b:87:98:53:90:f5:74:70:2a:
52:15:a4:f8:88:34:e6:49:62:d1:b6:b9:9e:2d:b7:
71:2a:13:ad:8e:c0:e4:98:18:ad:29:c7:52:89:3e:
30:6d:29:a0:33:29:0c:5c:0e:cc:21:d4:3b:9d:ee:
9e:85:cd:e1:32:ac:7c:66:3d:a7:3f:a1:30:55:32:
d4:e0:b8:8d:97:39:51:d7:50:88:22:33:b7:c0:1c:
53:7b:f2:e3:60:e4:e8:02:1e:5d:85:12:13:e3:95:
83:97:74:0e:cf:f0:fd:21:5a:7f:0c:15:c2:df:6c:
fa:e1:bf:10:16:b6:b0:3b:2f:28:3e:32:74:15:c0:
4e:57:59:1f:8e:7e:79:c5:a9:6f:60:8d:02:86:ba:
34:24:b3:6f:6a:e5:36:1d:3e:d3:50:98:76:7d:e8:
f7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:D8:85:00:46:3B:49:D2:69:3A:85:86:F4:CC:48:2D:4E:42:D8:F9
X509v3 Authority Key Identifier:
keyid:37:68:9E:AA:CB:AF:68:AF:35:D3:FA:FB:96:74:DE:48:A6:FC:09:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2ieqsuvaK810_r7lnTeSKb8CXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/3NiFAEY7SdJpOoWG9MxILU5C2Pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/84179d-4c65-44b8-b30b-5dabb4e47abb/1/N2ieqsuvaK810_r7lnTeSKb8CXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.80.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8b:da:ce:50:a2:f7:3f:59:66:ee:97:e9:5d:ab:f5:ff:38:d9:
69:80:29:cd:c3:5b:80:f2:ba:4e:6f:bf:bd:03:e5:fc:f8:88:
40:ad:86:aa:d7:14:8e:e7:32:c7:ab:5b:5c:c3:04:7f:45:39:
76:72:a9:6b:96:44:e9:5c:41:29:f8:1c:91:c4:ca:36:7b:a4:
b1:4b:7b:74:b6:c7:45:1f:10:49:e9:b3:f7:a0:e2:12:fa:3a:
8d:41:ab:8f:81:4d:b5:dc:bc:75:90:5a:b7:fa:e0:97:44:f0:
b1:68:35:b4:3f:f9:a9:82:41:b0:62:e3:bb:4f:a9:2a:93:b3:
f1:a9:7b:c2:b3:e9:73:d8:a6:ad:8e:e0:ec:f0:49:4c:b8:b1:
07:4e:e2:71:af:59:01:bb:fb:7a:5c:69:fb:c1:cb:a1:9d:35:
0d:6e:61:4d:1f:a9:4e:c9:24:f9:1b:eb:98:40:cd:ca:09:a1:
92:a2:74:41:85:73:68:30:31:23:47:6f:19:9f:e6:07:52:8a:
f4:35:a3:1b:f6:6d:44:40:95:3d:89:a0:50:d7:c9:c6:cd:1c:
a0:16:57:e0:2a:d9:3e:97:94:6b:b0:3c:4a:65:66:af:f2:74:
8e:97:7f:85:82:e3:bb:ef:c8:ce:d5:85:57:b0:f8:12:04:ba:
0e:7a:d6:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:18 2024 by rpki-client on console-fra.rpki-client.org