Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/7edd9a-fb72-43d7-b252-4cd11e8b7497/1/iN8myG70gIwW9PJN-NCBKBSudHQ.roa
File: iN8myG70gIwW9PJN-NCBKBSudHQ.roa (raw, json)
Hash identifier: nwXSyWAWy2j064RUqeAnTY55qFLORbSZ4FFFS7aYG0I=
Subject key identifier: 88:DF:26:C8:6E:F4:80:8C:16:F4:F2:4D:F8:D0:81:28:14:AE:74:74
Certificate issuer: /CN=178c8f20c939aaa9c80cce6a0d1567183ca1c599
Certificate serial: 0257C5F9
Authority key identifier: 17:8C:8F:20:C9:39:AA:A9:C8:0C:CE:6A:0D:15:67:18:3C:A1:C5:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F4yPIMk5qqnIDM5qDRVnGDyhxZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/7edd9a-fb72-43d7-b252-4cd11e8b7497/1/iN8myG70gIwW9PJN-NCBKBSudHQ.roa
Signing time: Sat 01 Jan 2022 08:53:12 +0000
ROA not before: Sat 01 Jan 2022 08:53:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.199.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39306745 (0x257c5f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=178c8f20c939aaa9c80cce6a0d1567183ca1c599
Validity
Not Before: Jan 1 08:53:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88df26c86ef4808c16f4f24df8d0812814ae7474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d4:91:a8:91:11:21:12:ef:af:62:1c:ad:42:
0f:62:a9:9e:9a:7a:94:78:ef:60:8d:f9:d0:5f:0f:
96:a4:a1:88:f6:23:35:40:92:0e:12:a4:56:9c:90:
cd:c1:4e:bd:8a:94:22:5c:13:de:be:f4:6f:26:40:
62:2c:2b:2d:0c:f0:7f:d6:a9:35:36:7a:f3:a4:ac:
c0:53:d5:29:23:6c:05:79:f3:83:10:73:c1:5b:80:
07:7a:53:0f:e4:b8:9a:82:14:f8:e2:97:bc:46:3e:
05:97:b9:e5:f5:a8:c2:cd:56:a4:eb:3c:17:ae:17:
82:db:b1:3d:e6:89:8a:d0:05:54:74:93:16:b6:78:
eb:42:cf:66:59:f7:a1:5c:a9:5e:40:a4:59:c3:42:
3a:02:62:01:2e:f6:68:e4:fb:02:0b:9a:cc:b0:c5:
0d:ad:a4:91:2d:bf:3e:dd:f1:23:91:54:9c:7d:4d:
58:b1:10:27:69:8e:92:4a:34:36:e0:05:a3:cb:94:
cd:43:d1:84:a0:2d:1c:a2:80:d2:7a:a8:6d:9b:34:
04:c3:54:d0:f2:a7:3a:21:29:49:3a:ba:db:45:d1:
6c:af:b7:52:df:b8:c0:8b:bc:ef:15:f8:b3:78:17:
d4:d0:7d:77:d5:bf:3c:75:53:bc:04:a2:ec:c4:5f:
0a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:DF:26:C8:6E:F4:80:8C:16:F4:F2:4D:F8:D0:81:28:14:AE:74:74
X509v3 Authority Key Identifier:
keyid:17:8C:8F:20:C9:39:AA:A9:C8:0C:CE:6A:0D:15:67:18:3C:A1:C5:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F4yPIMk5qqnIDM5qDRVnGDyhxZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7edd9a-fb72-43d7-b252-4cd11e8b7497/1/iN8myG70gIwW9PJN-NCBKBSudHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7edd9a-fb72-43d7-b252-4cd11e8b7497/1/F4yPIMk5qqnIDM5qDRVnGDyhxZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.74.0/24
Signature Algorithm: sha256WithRSAEncryption
53:5f:59:77:a3:2a:03:52:d0:11:e4:d5:e5:3d:10:c5:fd:de:
ca:d6:3d:08:0a:50:79:58:98:fa:94:22:f0:fb:9a:20:4a:73:
81:a9:a2:49:08:d8:13:ae:31:5d:be:65:e1:e6:81:0d:9d:90:
5b:cb:11:18:67:98:8a:bb:ea:19:41:4c:db:53:b7:03:b2:ef:
4c:63:26:3a:8f:37:6f:58:d3:2b:44:b5:93:a3:fd:ee:82:c1:
ec:3a:f2:77:e6:05:fd:7f:c0:0d:20:ee:2a:28:8a:1f:eb:23:
96:2b:46:33:02:95:81:e2:22:12:a1:00:3e:e7:db:2a:7b:dd:
a3:62:3b:c4:9f:b5:76:a8:6f:be:0e:cf:fd:ce:ad:99:79:85:
49:e1:e2:25:fe:b2:88:5b:1a:46:ba:c1:86:a8:72:1e:47:9f:
30:4d:52:3d:32:76:f9:5b:b9:0b:fd:38:98:fa:9f:61:cc:70:
59:66:50:05:da:aa:ef:ee:e9:11:29:0b:8a:95:2a:f4:67:a7:
3e:05:c3:35:eb:78:26:b3:30:28:13:bb:3a:d3:cc:0b:cf:2b:
62:dc:4b:36:08:ef:5f:e3:82:9d:a2:b8:9a:0c:ba:75:c3:98:
2f:95:db:1f:84:b0:ca:8c:07:de:05:75:03:01:77:14:e9:76:
9e:b4:f4:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:59 2023 by rpki-client on console-ams.rpki-client.org