Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/nMvp8MeQhnRZr00Ihb4pnTEmDy0.roa
File: nMvp8MeQhnRZr00Ihb4pnTEmDy0.roa (raw, json)
Hash identifier: oKjuHHFFXvzBm2k8t0NrRLxa5aFyFPZRz6Hor5wrW/s=
Subject key identifier: 9C:CB:E9:F0:C7:90:86:74:59:AF:4D:08:85:BE:29:9D:31:26:0F:2D
Certificate issuer: /CN=f21d5f37506de4905e173c0f581150817250efe1
Certificate serial: 01A65EAA
Authority key identifier: F2:1D:5F:37:50:6D:E4:90:5E:17:3C:0F:58:11:50:81:72:50:EF:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/nMvp8MeQhnRZr00Ihb4pnTEmDy0.roa
Signing time: Thu 24 Mar 2022 12:26:02 +0000
ROA not before: Thu 24 Mar 2022 12:26:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 194.69.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27680426 (0x1a65eaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f21d5f37506de4905e173c0f581150817250efe1
Validity
Not Before: Mar 24 12:26:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ccbe9f0c790867459af4d0885be299d31260f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cc:ae:33:08:ac:88:61:0a:03:22:a8:d2:0b:
f5:c7:f3:d0:61:37:d1:46:e2:a1:95:3c:aa:cb:03:
27:18:92:08:de:f2:7a:56:9f:17:21:a6:17:98:9b:
65:c4:ff:63:39:87:de:3c:29:1d:bc:ae:cf:01:4c:
6d:5f:03:6e:cd:34:84:22:57:0c:2f:5e:bf:9f:c9:
3e:21:37:e1:57:71:0a:30:5e:8c:95:79:52:3f:46:
7c:b7:f5:18:7a:2c:c0:21:e9:ba:ad:1a:a7:70:21:
35:2b:38:e3:39:80:19:a6:ec:94:0d:19:46:df:83:
f2:38:68:d6:7e:4b:15:ee:d8:fa:2e:af:b1:05:4b:
1c:11:23:0b:2b:f8:31:e2:07:69:f5:85:14:9b:c3:
87:40:a6:5d:61:a3:c9:22:bc:46:b6:3f:65:6e:ce:
93:c1:42:5c:af:2a:60:5c:ce:99:b0:7e:83:3b:ef:
45:bb:99:79:bc:78:1b:df:42:a4:e2:15:7f:bb:6a:
62:93:18:0a:85:de:47:cb:c3:88:13:19:7d:7d:64:
aa:df:4d:65:fd:ad:24:7b:7d:b5:79:00:61:ad:48:
34:1e:4f:fe:c2:46:5c:a5:44:22:59:d6:4f:51:28:
d2:03:ac:e5:c2:31:fb:50:2c:74:75:26:db:a2:8f:
a2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:CB:E9:F0:C7:90:86:74:59:AF:4D:08:85:BE:29:9D:31:26:0F:2D
X509v3 Authority Key Identifier:
keyid:F2:1D:5F:37:50:6D:E4:90:5E:17:3C:0F:58:11:50:81:72:50:EF:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/nMvp8MeQhnRZr00Ihb4pnTEmDy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.69.160.0/24
Signature Algorithm: sha256WithRSAEncryption
41:ee:e9:bc:d9:1d:74:d8:25:3e:b1:fe:18:ac:d8:40:1f:14:
ba:29:8c:d9:47:a0:79:f9:ba:ad:44:74:18:db:9d:9e:15:28:
e8:f8:3b:39:7b:b5:b0:e1:88:b5:f5:8c:e2:29:39:0b:4e:bd:
f3:40:77:ef:1d:84:c1:b5:0f:7a:76:65:bd:22:ea:fa:93:fb:
9b:f2:9d:1a:72:0a:41:31:d6:bb:01:d0:3e:be:5c:8c:29:0e:
1a:3b:a9:23:f5:86:24:a0:6c:f0:bf:27:05:a2:bc:8c:da:d9:
93:19:51:9a:81:57:ca:5d:35:81:a2:cf:bc:29:ff:bb:d7:8c:
0d:f6:cd:51:42:7c:e5:a6:42:c5:09:5c:5a:43:ed:cd:42:b9:
56:ae:80:db:a4:0c:bd:d5:5f:02:d0:40:be:3d:0f:b1:4d:93:
20:8a:8f:7e:7b:ea:2e:8a:88:7e:f5:08:9b:59:ed:58:5a:ae:
67:97:e5:37:39:d5:46:bb:40:c0:8c:fc:e3:cd:80:20:76:82:
53:3f:fe:68:f2:d6:36:e9:85:8f:01:4c:70:66:27:90:8d:92:
1f:f7:30:34:dd:88:3e:6e:51:d8:08:39:76:7e:f5:b8:41:4c:
39:9c:2d:6f:46:f8:5e:f8:15:22:d0:55:be:ea:43:f0:be:a5:
24:2f:de:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:27 2023 by rpki-client on console-fra.rpki-client.org