Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/NCaarfpfrw0l1cw_yjqZ2Hq7kg0.roa
File: NCaarfpfrw0l1cw_yjqZ2Hq7kg0.roa (raw, json)
Hash identifier: lb1IqmPQJekPH4M8GPTS8Hnsiy6uhHDGach0tFgPr5Y=
Subject key identifier: 34:26:9A:AD:FA:5F:AF:0D:25:D5:CC:3F:CA:3A:99:D8:7A:BB:92:0D
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 19317B90
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/NCaarfpfrw0l1cw_yjqZ2Hq7kg0.roa
Signing time: Sat 01 Jan 2022 11:57:09 +0000
ROA not before: Sat 01 Jan 2022 11:57:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34648
IP address blocks: 217.156.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422673296 (0x19317b90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 11:57:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34269aadfa5faf0d25d5cc3fca3a99d87abb920d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:74:fd:52:94:c7:9a:79:5d:f4:f8:e1:62:18:
71:b2:ac:af:e8:7c:f0:5a:4f:fc:0e:f2:a6:ec:f3:
d3:7e:ed:53:43:69:c7:4e:63:df:b6:b3:f4:5b:8a:
72:9d:24:41:85:09:8e:4d:c7:2a:12:72:62:9a:c6:
32:46:f1:a8:87:32:5d:0c:0e:06:db:f1:6b:27:14:
35:de:47:da:92:c1:14:e0:f3:61:0a:ff:e6:b1:d9:
bf:70:2b:52:c4:fe:b0:4e:b8:36:10:0a:23:ff:af:
a2:a1:82:e9:bd:df:20:ad:36:6f:1e:57:5b:ee:c2:
fb:52:16:87:e1:8d:75:a4:b6:a6:17:bc:a3:57:7d:
18:a6:dc:1e:93:dd:8e:49:05:3d:b9:3c:63:d4:50:
2b:a1:d2:f0:f5:91:ca:d8:19:cd:e0:fb:09:b1:af:
39:50:7c:ce:3c:6b:1c:af:5f:f6:24:f0:93:35:2e:
ae:e8:fa:b9:cb:30:b9:2f:79:10:94:2c:0e:2e:27:
7e:80:63:ce:73:cb:9c:52:3d:0d:c8:2a:c4:95:b9:
d6:df:5e:5b:f4:01:07:81:a3:c6:de:7c:92:ac:67:
5b:a1:a4:a4:f3:b8:59:39:21:d4:6b:f9:34:b0:7c:
c9:9d:6b:13:cc:82:17:c4:7b:38:31:99:8b:89:ad:
22:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:26:9A:AD:FA:5F:AF:0D:25:D5:CC:3F:CA:3A:99:D8:7A:BB:92:0D
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/NCaarfpfrw0l1cw_yjqZ2Hq7kg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.156.36.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:bc:d3:6b:41:1d:0f:37:61:50:0c:b3:c8:7e:d0:f6:f0:7a:
e6:62:a3:70:e0:4f:2f:40:70:04:1c:f3:27:fc:b6:94:51:01:
89:46:41:0d:4d:2f:a3:33:6d:45:19:21:42:b1:0d:37:d5:2c:
b5:30:57:7d:71:c1:5d:5f:09:e9:a6:9c:68:e1:81:d3:d1:b1:
db:00:9c:ad:d4:94:7a:da:3a:40:9f:9a:42:53:0b:aa:7e:0c:
dd:31:d5:7d:7f:bb:22:19:4a:a5:cf:e8:db:17:48:5d:e7:62:
23:2a:59:91:61:8b:40:7d:05:f3:89:b8:92:c8:8b:ab:52:73:
a8:6c:15:00:f8:1d:d4:8b:29:46:59:f8:d7:d4:ec:15:3e:a3:
c9:d6:b5:10:f1:4f:e6:26:c3:0f:df:6c:36:f0:ff:f5:f6:24:
29:41:7c:2e:74:fb:d4:19:1d:a7:44:65:7e:bf:63:d2:b7:39:
eb:de:21:aa:cd:8e:d2:00:4a:a4:74:04:cb:ef:90:1d:20:13:
ab:54:61:de:f2:6d:ae:a4:aa:07:0c:d8:fc:bf:c3:13:2d:84:
79:d9:46:f3:20:45:18:10:c3:ef:8c:9c:e6:7f:1d:3c:02:eb:
9e:9b:ce:57:0c:7d:b4:1b:5e:ea:1b:53:00:56:6f:32:89:4f:
88:6e:a2:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org