Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/NILQABWwNTkc3I5zJ9YXH4sJnJU.roa
File: NILQABWwNTkc3I5zJ9YXH4sJnJU.roa (raw, json)
Hash identifier: rKK6IwuNr6HhjSvDI8dKKs6SO2tipkPD4jW7NJqZDl8=
Subject key identifier: 34:82:D0:00:15:B0:35:39:1C:DC:8E:73:27:D6:17:1F:8B:09:9C:95
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C6DC794
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/NILQABWwNTkc3I5zJ9YXH4sJnJU.roa
Signing time: Sat 01 Jan 2022 01:02:36 +0000
ROA not before: Sat 01 Jan 2022 01:02:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48917
IP address blocks: 91.92.106.0/23 maxlen: 23
87.121.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476956564 (0x1c6dc794)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3482d00015b035391cdc8e7327d6171f8b099c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4a:e1:50:b9:9d:2a:5e:71:da:6e:e5:e8:5e:
71:16:e9:94:7f:c3:c6:a7:22:5c:5b:b1:89:47:29:
12:9f:a5:04:f0:c3:87:f2:5e:a0:4f:ea:df:e9:48:
e1:c5:9a:84:5b:10:2f:bd:09:9e:71:6d:85:6e:44:
84:02:12:1b:d0:81:ea:19:57:60:ad:c2:a7:f1:ba:
19:86:c4:44:ef:c5:5f:91:53:35:08:5d:d5:27:ed:
54:90:58:f0:0c:e9:46:51:52:a9:e0:8c:57:70:a3:
f9:49:86:7f:35:fc:29:14:9e:b7:42:67:bb:d7:d9:
1a:1c:da:f3:36:ac:9b:1e:1a:89:cb:17:fb:5e:2f:
0f:74:60:ca:3a:55:8e:34:3b:3f:92:b6:c3:48:e5:
ef:67:c1:6f:0e:ec:c4:36:65:aa:38:7d:8a:a3:59:
c3:ee:58:9f:bd:71:9a:61:53:6a:1f:cb:e2:30:7f:
c5:05:ba:a9:93:5f:bc:20:f4:13:1e:1e:a0:42:83:
4b:70:35:47:f5:00:76:d8:ff:31:c2:03:7a:79:3a:
73:0f:37:7c:93:f2:3c:10:26:91:8f:c7:56:ba:3d:
d7:80:72:b7:c9:75:15:31:74:f4:e8:0b:75:f8:f5:
70:68:13:97:73:b8:9c:d2:59:5a:98:63:fa:ba:48:
e7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:82:D0:00:15:B0:35:39:1C:DC:8E:73:27:D6:17:1F:8B:09:9C:95
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/NILQABWwNTkc3I5zJ9YXH4sJnJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.119.0/24
91.92.106.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:56:76:df:32:4c:77:35:25:95:32:c4:16:1e:7d:42:62:e3:
72:4d:e8:e8:01:85:ef:f9:4e:64:ae:ad:34:c4:77:16:fe:b4:
e3:9b:c8:bd:1b:bd:6d:ac:d3:c5:1c:31:28:99:7e:b2:0a:cc:
6c:b0:69:92:aa:38:78:ba:a0:3f:61:e5:b3:79:d8:da:b7:76:
31:b8:7e:3f:47:25:52:ca:2f:10:28:40:4a:7e:7e:eb:ea:6a:
7b:bc:d3:34:0d:ab:e3:61:a7:18:5f:cf:a6:e0:43:a2:55:5b:
67:97:57:17:a9:83:1a:0d:a7:80:e6:ca:95:63:90:c6:f5:24:
29:37:c9:1b:45:c8:e7:09:a2:3a:8e:68:4b:9a:2b:ac:6c:be:
87:66:ec:04:79:0a:f5:94:07:d5:12:b5:41:79:26:cb:cb:40:
8b:38:05:b2:92:55:63:99:15:12:93:9f:55:ff:d7:cb:b8:95:
18:e2:ed:d3:6c:a3:c0:2b:ac:0c:6d:5c:39:df:4a:56:3e:c1:
8e:cf:ee:9b:2d:68:1e:f8:ff:a7:38:36:61:a6:eb:13:77:f7:
81:71:bf:b3:a8:3d:ad:20:0a:40:29:24:61:0c:94:af:56:24:
0e:09:b1:1e:97:06:37:7f:fd:3e:ab:76:c8:ba:bc:ff:93:63:
d8:73:8a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-ams.rpki-client.org