Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9217f9-813d-47af-ad62-32208d544a84/1/nhUzisKQbjHyCaLERS1yJI7fub0.roa
File: nhUzisKQbjHyCaLERS1yJI7fub0.roa (raw, json)
Hash identifier: 4xJXXxRAYVBJvKs0Bkr1yDu5KN0uYP6rEfGRMJGnilI=
Subject key identifier: 9E:15:33:8A:C2:90:6E:31:F2:09:A2:C4:45:2D:72:24:8E:DF:B9:BD
Certificate issuer: /CN=181e4d608152fc244afffba2dc72b851b19b2527
Certificate serial: 09A3E498
Authority key identifier: 18:1E:4D:60:81:52:FC:24:4A:FF:FB:A2:DC:72:B8:51:B1:9B:25:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GB5NYIFS_CRK__ui3HK4UbGbJSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9217f9-813d-47af-ad62-32208d544a84/1/nhUzisKQbjHyCaLERS1yJI7fub0.roa
Signing time: Sat 01 Jan 2022 14:57:34 +0000
ROA not before: Sat 01 Jan 2022 14:57:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209867
IP address blocks: 86.62.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161735832 (0x9a3e498)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=181e4d608152fc244afffba2dc72b851b19b2527
Validity
Not Before: Jan 1 14:57:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e15338ac2906e31f209a2c4452d72248edfb9bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c0:ff:6c:d3:72:50:4d:9f:a1:b4:61:6c:9c:
c7:76:c0:44:01:83:c8:19:86:83:38:1d:bb:7e:5d:
25:b1:d8:78:ff:62:ca:3a:26:43:ba:ab:ae:b4:5e:
3c:76:ea:0f:ec:18:d3:79:37:7e:48:75:89:10:07:
36:98:50:42:08:e7:70:00:ee:39:97:97:2d:b8:34:
f2:92:fd:52:99:d6:d2:ec:3a:db:60:29:bd:c3:b1:
25:03:b3:a7:20:bd:3d:e1:79:41:b1:b8:bc:c2:0e:
2d:14:44:66:2d:ff:f8:05:c4:fc:25:5e:8f:79:e3:
07:d1:a1:45:df:ff:7b:36:00:08:7b:a1:99:48:2d:
00:45:2a:3c:11:2f:35:19:f9:9a:c2:29:fe:b7:f6:
65:f1:e4:d0:be:9f:43:1d:ae:31:fa:df:79:bd:46:
89:04:f7:54:1d:00:0c:c2:78:8e:92:fb:33:b8:7d:
8e:1a:3a:4f:5f:eb:11:29:63:f1:32:42:a1:0a:ab:
d1:1b:29:65:e0:3e:99:e9:6b:2a:59:8c:93:5b:16:
2a:5f:96:86:e3:16:63:06:47:1d:70:70:09:5b:32:
a7:c2:2a:57:69:e6:15:25:49:4e:00:c2:d2:cf:1e:
cd:0f:f1:11:06:8e:e4:1a:e8:7f:37:81:a1:6e:65:
45:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:15:33:8A:C2:90:6E:31:F2:09:A2:C4:45:2D:72:24:8E:DF:B9:BD
X509v3 Authority Key Identifier:
keyid:18:1E:4D:60:81:52:FC:24:4A:FF:FB:A2:DC:72:B8:51:B1:9B:25:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GB5NYIFS_CRK__ui3HK4UbGbJSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9217f9-813d-47af-ad62-32208d544a84/1/nhUzisKQbjHyCaLERS1yJI7fub0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9217f9-813d-47af-ad62-32208d544a84/1/GB5NYIFS_CRK__ui3HK4UbGbJSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.7.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ad:89:3c:1f:33:21:0e:c0:20:93:fc:dd:62:ea:a2:fc:aa:
c3:46:ce:dd:e5:44:52:ea:51:94:78:11:f5:01:53:40:d9:c2:
f8:1a:5a:ef:e4:ee:4c:ba:52:7d:27:d7:0e:c7:db:bc:ed:92:
9c:9f:f1:d4:3a:3e:57:cd:59:52:4c:c5:b6:ef:4d:4e:f8:57:
b6:2d:ea:15:b6:b2:01:52:9b:72:fe:11:cf:2b:20:e1:93:40:
83:98:5c:db:cf:e7:ae:99:39:ab:6e:e4:af:41:34:29:14:0c:
fa:ad:b5:60:7b:99:30:d8:25:59:e5:bc:7d:31:5b:69:35:13:
68:fd:ed:60:ae:5d:bd:40:79:d9:82:fc:df:60:80:9e:54:69:
e6:df:2c:ae:53:a4:a5:18:ed:d7:41:62:27:83:2b:d6:4c:40:
47:42:30:a2:69:3f:e8:a2:18:ed:0c:6b:49:1a:20:92:99:66:
4e:96:db:49:56:5a:cd:07:73:06:35:9f:77:58:34:23:ff:02:
ed:52:9b:5a:11:0c:79:18:e5:5c:73:7d:a5:7d:7b:a3:11:e0:
14:bc:29:dd:3c:cc:80:ae:80:8c:9c:8a:c9:78:71:e3:33:39:
fd:7d:c6:2f:81:62:7d:9f:42:c6:e5:03:df:74:be:60:4f:4e:
9b:3d:be:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:58 2023 by rpki-client on console-ams.rpki-client.org