Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/NfhPeblVbFU-fdmAmpykE78I-34.roa
File: NfhPeblVbFU-fdmAmpykE78I-34.roa (raw, json)
Hash identifier: KIMA3cEpf+uJdMKSJWA9iuuBeBthcz6vdDT6uufXZlE=
Subject key identifier: 35:F8:4F:79:B9:55:6C:55:3E:7D:D9:80:9A:9C:A4:13:BF:08:FB:7E
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 42AC6A47
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/NfhPeblVbFU-fdmAmpykE78I-34.roa
Signing time: Sat 01 Jan 2022 06:05:08 +0000
ROA not before: Sat 01 Jan 2022 06:05:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209313
IP address blocks: 94.25.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1118595655 (0x42ac6a47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:05:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35f84f79b9556c553e7dd9809a9ca413bf08fb7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:30:dc:d6:9a:f4:c5:7f:a8:f0:06:a0:6e:90:
11:d2:48:5a:ef:9b:97:92:e0:b3:68:3a:9c:92:98:
2e:5e:9c:41:44:b3:32:76:e9:aa:bd:39:d6:b4:c6:
96:58:4f:35:d2:34:8f:ad:f4:80:b1:17:44:75:ee:
c1:b4:0e:e4:eb:b0:32:f4:bb:90:d9:45:54:4f:7b:
ca:c7:d2:9e:ed:be:af:db:ff:4a:31:8d:29:37:5e:
57:68:08:fc:44:ff:0f:fe:ea:ab:f3:8c:84:74:c0:
14:79:a1:03:87:c7:56:40:22:89:ca:bf:72:d1:bf:
40:cb:da:16:55:41:8c:fd:81:e2:7b:7a:0b:b3:3d:
ce:30:45:13:5c:db:5e:ad:d1:ae:39:a4:8f:19:a7:
a6:81:93:2f:cd:99:0c:ee:d4:3f:c7:33:c3:90:17:
79:2b:ef:77:f4:5e:44:2d:6e:89:d9:4d:61:2b:92:
8a:40:42:57:ea:04:ba:94:d6:58:09:1b:2b:cb:94:
15:6f:44:1c:60:e5:fe:27:2a:9a:36:06:81:2c:f8:
db:1e:72:60:1a:e7:df:9f:cb:6b:37:ca:55:2b:53:
38:95:20:fa:19:eb:a2:6f:ab:32:36:d0:24:c0:62:
50:af:cf:5a:99:a5:eb:20:21:ea:9b:6d:89:48:07:
f6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F8:4F:79:B9:55:6C:55:3E:7D:D9:80:9A:9C:A4:13:BF:08:FB:7E
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/NfhPeblVbFU-fdmAmpykE78I-34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.25.30.0/24
Signature Algorithm: sha256WithRSAEncryption
39:38:5f:de:54:74:3b:25:26:f8:d5:30:2f:9a:45:07:fa:1d:
3f:36:6a:2d:a3:f5:90:41:6e:5b:ac:71:7c:65:00:eb:87:fe:
5c:f4:76:d6:56:dc:4c:0c:09:ce:84:1b:35:0b:1b:d4:5a:74:
39:c5:bc:82:66:87:4d:12:a9:12:4e:ae:47:f7:d9:38:3a:b7:
68:40:c9:46:c0:ad:90:32:f1:b3:f3:3f:14:ac:0b:7a:78:34:
6b:08:5b:53:b7:c6:79:e2:46:07:3c:1d:0a:0e:e3:ed:7b:d9:
b2:cb:67:43:5a:09:94:f3:9d:d4:6a:cd:1e:97:b8:3e:1a:22:
10:0b:44:8a:cc:aa:14:c6:7e:12:ee:b6:9b:b3:76:66:3c:9f:
af:19:85:30:c3:5b:c7:fb:ed:6b:43:37:59:62:b2:0a:0d:f5:
6b:6d:b5:b7:8f:48:99:63:98:b1:5c:3e:89:1b:90:b3:80:52:
58:3a:63:71:09:ca:6a:bc:d8:54:3d:f2:08:8c:c3:74:3a:a7:
a4:f0:29:54:12:95:8b:18:27:a0:60:80:07:64:fe:20:ed:96:
71:cb:c7:22:90:04:45:e5:06:65:fe:60:4c:27:6f:0d:25:d4:
c0:60:94:3c:b9:68:10:1b:c8:54:63:f1:ea:64:50:bd:4c:bd:
14:f4:9c:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:55 2024 by rpki-client on console-fra.rpki-client.org