Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/91cdfd-2c72-4236-a4c2-2b8f7346f350/1/Nd0RLPoRnLp98ZiYrgHMyDdnv3w.roa
File: Nd0RLPoRnLp98ZiYrgHMyDdnv3w.roa (raw, json)
Hash identifier: 9Zj5CtccAfL5sDuBpfeVOrd2l3KVPmrNU+KrJ87hCjE=
Subject key identifier: 35:DD:11:2C:FA:11:9C:BA:7D:F1:98:98:AE:01:CC:C8:37:67:BF:7C
Certificate issuer: /CN=2fe5b7ccb403d30a44857d47c58cf1346546d283
Certificate serial: 0EC87A4B
Authority key identifier: 2F:E5:B7:CC:B4:03:D3:0A:44:85:7D:47:C5:8C:F1:34:65:46:D2:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-W3zLQD0wpEhX1HxYzxNGVG0oM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/91cdfd-2c72-4236-a4c2-2b8f7346f350/1/Nd0RLPoRnLp98ZiYrgHMyDdnv3w.roa
Signing time: Sat 01 Jan 2022 04:53:04 +0000
ROA not before: Sat 01 Jan 2022 04:53:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15924
IP address blocks: 159.253.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 248019531 (0xec87a4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe5b7ccb403d30a44857d47c58cf1346546d283
Validity
Not Before: Jan 1 04:53:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35dd112cfa119cba7df19898ae01ccc83767bf7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1c:ba:26:a9:57:c6:88:ae:aa:39:f3:ff:d0:
e1:a7:41:3d:e6:b7:3d:ad:b2:26:f1:aa:79:d4:cf:
98:d5:81:01:42:65:24:ba:73:7e:7d:90:ee:48:54:
57:0d:91:5f:32:fa:ca:a6:4d:c1:29:fd:df:4c:7d:
67:70:53:ac:11:ab:d2:03:e6:81:80:2e:15:eb:fc:
7e:8d:7f:89:df:8f:ef:d5:d1:2a:28:1b:03:66:d3:
02:8d:9c:c1:d3:a4:7b:ee:d6:0f:5a:e9:be:b5:8e:
d9:51:41:6e:36:43:23:b6:aa:22:e8:99:1d:19:0f:
a7:24:f8:50:36:a8:8c:1b:db:ff:43:7f:6b:59:ee:
8a:c4:c5:c7:57:e7:72:2b:25:3f:8a:e8:56:d4:a3:
0a:be:64:6b:94:c9:ca:92:22:38:b3:1c:8d:80:9d:
dc:66:1b:75:0b:d9:b1:da:da:f6:ad:c9:25:ed:c1:
75:90:a5:de:94:c6:c0:d5:87:99:7a:88:f6:a6:51:
21:79:c8:d2:91:ef:30:0d:3c:86:cd:3d:77:38:d1:
80:ea:a7:70:22:29:a9:f0:c2:83:13:43:b7:7d:0b:
67:dc:ce:b4:8b:4e:58:e6:46:b5:12:6c:ed:8f:54:
b3:07:ca:97:fa:27:c8:dd:36:cf:14:51:8b:8b:e9:
47:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:DD:11:2C:FA:11:9C:BA:7D:F1:98:98:AE:01:CC:C8:37:67:BF:7C
X509v3 Authority Key Identifier:
keyid:2F:E5:B7:CC:B4:03:D3:0A:44:85:7D:47:C5:8C:F1:34:65:46:D2:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-W3zLQD0wpEhX1HxYzxNGVG0oM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/91cdfd-2c72-4236-a4c2-2b8f7346f350/1/Nd0RLPoRnLp98ZiYrgHMyDdnv3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/91cdfd-2c72-4236-a4c2-2b8f7346f350/1/L-W3zLQD0wpEhX1HxYzxNGVG0oM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.253.85.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:32:5a:cf:82:fa:e8:13:fb:ce:ff:76:b7:51:66:54:d6:2c:
81:f9:ca:be:4c:f3:36:fa:c7:76:3d:a9:b6:aa:c2:a3:1f:fd:
83:2d:22:81:a1:f7:fc:57:58:a0:f6:67:3e:10:9c:17:14:b0:
6c:1c:44:5d:eb:8f:66:c1:bd:8e:49:ad:36:58:1f:9d:8f:f2:
22:a8:b0:65:cf:d5:db:26:4f:d9:f1:d7:02:04:57:7c:e1:d9:
20:a2:59:3e:39:aa:40:c6:2d:f5:e3:20:3a:35:00:99:b1:78:
d4:1b:18:e4:9d:8e:3d:f7:db:4d:95:c6:c0:34:82:f6:35:f1:
a8:f4:f3:79:1a:39:5d:96:0a:cc:f5:a1:64:4e:a3:b0:4b:55:
ae:cb:f1:f1:77:98:b2:1f:d7:65:da:6b:ee:cd:69:de:80:60:
9a:38:30:63:73:ea:51:4a:3d:7d:09:a1:bb:f1:c0:71:c9:ca:
35:be:7b:dc:26:84:5c:47:99:06:16:d5:73:ba:2c:93:64:f4:
3b:0b:b0:49:ba:0b:e5:31:d6:05:4a:c3:e8:b9:b2:00:0d:e6:
17:cd:d4:05:97:5f:1c:52:ff:d9:77:e4:45:33:c1:ca:57:1c:
63:2f:10:5b:5e:41:8c:e6:57:c0:06:d2:61:c3:4f:a3:b4:68:
f3:cf:f9:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:18 2024 by rpki-client on console-ams.rpki-client.org