Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nX27KzY1GzgXbTaxmJu2mMlZgDg.roa
File: nX27KzY1GzgXbTaxmJu2mMlZgDg.roa (raw, json)
Hash identifier: XyqGv2ba7fZRQBdmbXnoCbMvXgaRhDe/poWr+c9xu74=
Subject key identifier: 9D:7D:BB:2B:36:35:1B:38:17:6D:36:B1:98:9B:B6:98:C9:59:80:38
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0938421E
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nX27KzY1GzgXbTaxmJu2mMlZgDg.roa
Signing time: Sat 01 Jan 2022 06:00:28 +0000
ROA not before: Sat 01 Jan 2022 06:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34936
IP address blocks: 204.11.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154681886 (0x938421e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 06:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d7dbb2b36351b38176d36b1989bb698c9598038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a1:c4:23:b1:35:ad:4c:24:8f:fb:78:2f:f5:
f3:37:a2:07:46:8d:ea:fe:81:72:c0:69:f3:58:df:
2e:0e:ce:fd:88:1e:e5:d2:15:8d:33:fc:8e:6e:f5:
a2:07:bc:17:3e:d9:85:31:45:d5:69:9d:3f:d5:3c:
30:27:5b:72:98:b6:86:66:78:40:b8:4c:2f:35:99:
b4:d8:df:c5:87:82:13:0e:e0:73:50:3d:2e:39:71:
30:d0:73:9b:d9:c1:75:4b:3f:96:a7:cb:c2:c7:76:
30:9e:20:a3:2a:66:b0:a2:a1:4d:09:00:f7:5b:54:
73:53:1e:d2:29:73:63:ba:de:d8:5e:8e:b4:4f:a9:
14:3e:05:91:df:ed:be:28:d2:95:56:65:43:0b:0a:
3b:63:32:c1:82:63:eb:e6:df:5e:a1:5e:7d:99:be:
58:2c:0a:31:af:f6:cc:01:bc:d9:16:c6:32:9a:5f:
19:fe:5b:8f:4c:50:49:f8:c8:fd:9a:23:31:d0:9c:
2d:b4:39:0c:c9:6b:6a:7e:02:82:08:1d:71:2c:5e:
db:fc:99:e8:4c:a2:29:3d:e3:d0:8a:77:e2:27:6c:
8d:4a:73:0a:e6:75:c6:e8:a4:29:de:e0:c2:f7:01:
57:e3:c0:f7:99:f1:88:14:d7:e0:b7:48:99:cb:73:
db:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7D:BB:2B:36:35:1B:38:17:6D:36:B1:98:9B:B6:98:C9:59:80:38
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nX27KzY1GzgXbTaxmJu2mMlZgDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
204.11.3.0/24
Signature Algorithm: sha256WithRSAEncryption
50:4f:9f:51:83:61:be:b2:37:14:07:f9:57:fb:62:70:d9:19:
67:83:83:bc:54:57:8f:97:36:9c:b6:15:e9:ae:32:83:4b:a9:
19:f1:2a:22:7b:81:d6:83:49:36:f0:aa:44:44:6c:55:49:16:
f6:8b:ff:84:1c:bd:03:86:7b:42:15:89:17:44:b0:f5:b9:7f:
e5:3f:3a:f1:cb:74:96:32:ae:fe:09:11:63:c5:65:ea:27:ac:
07:46:d5:75:64:9d:3b:9f:a0:86:55:56:68:97:6d:03:87:22:
71:2c:8d:7c:d6:ca:5b:bd:a8:be:3e:91:93:4a:db:3e:27:ce:
95:cf:bd:a9:df:a4:19:fc:3d:98:34:d0:0e:fc:84:e7:57:5a:
f6:55:66:96:1b:0a:10:b3:47:f5:3f:46:5a:98:65:24:04:82:
80:e7:61:0b:44:05:cc:34:2d:4f:64:82:8c:94:6f:dc:53:04:
f9:95:58:08:44:c1:c5:c9:3d:56:1e:d9:89:69:39:4a:38:15:
76:4e:92:07:c2:27:c8:6b:db:3d:a2:94:b5:97:68:6c:4c:79:
6d:58:8f:17:65:72:cc:b6:d2:ea:d3:ae:01:85:82:17:63:2c:
49:cc:11:bc:1f:5a:42:62:a5:00:6d:63:cc:f3:e8:d4:ec:cf:
31:3e:6a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org