Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Nbpj4xW04gXJ16jgwU5bPHfeMU8.roa
File: Nbpj4xW04gXJ16jgwU5bPHfeMU8.roa (raw, json)
Hash identifier: gEmzkcIQ+HZHP/0ke6L/T8EQgl+OTCyLyHbaVtuPHFA=
Subject key identifier: 35:BA:63:E3:15:B4:E2:05:C9:D7:A8:E0:C1:4E:5B:3C:77:DE:31:4F
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 0443D169
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Nbpj4xW04gXJ16jgwU5bPHfeMU8.roa
Signing time: Thu 03 Mar 2022 06:28:08 +0000
ROA not before: Thu 03 Mar 2022 06:28:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201383
IP address blocks: 84.47.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71553385 (0x443d169)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Mar 3 06:28:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35ba63e315b4e205c9d7a8e0c14e5b3c77de314f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:48:5f:84:8d:b4:9a:1d:d1:39:5e:3d:8f:d2:
03:4d:94:69:ed:87:02:51:ab:09:17:88:dc:3e:37:
47:57:ad:5b:16:18:9e:03:05:f3:44:8b:24:47:91:
da:97:a8:8c:d9:48:d5:91:08:34:32:18:1b:14:64:
08:6c:51:38:06:c1:e9:d9:88:1a:9a:53:a1:75:41:
15:a9:d2:26:0c:79:7b:1b:03:e5:5e:b6:bf:ec:59:
17:2b:dc:f4:ac:3c:6e:b4:94:bb:1c:b8:52:b7:99:
79:ca:03:b3:72:0f:6d:70:78:ae:f5:6f:a4:85:00:
fa:d3:41:53:1b:bb:19:52:d5:bb:cc:54:6d:5b:25:
f0:a5:60:5b:55:7b:a1:e7:7f:8d:f0:7b:26:4b:38:
f8:7e:73:a6:9c:b9:ba:3a:86:fc:5c:e7:14:cd:e0:
2c:e2:f1:6a:a9:ef:c4:72:dd:fa:49:b6:09:92:6a:
47:a0:81:f5:2c:dc:e8:aa:8b:a9:4b:bb:72:ad:0a:
68:25:44:a9:84:10:5b:6f:fc:fc:83:37:b2:6e:56:
29:84:5a:60:1d:27:1d:16:33:60:4f:8e:df:28:b2:
62:6c:05:ef:74:65:4b:20:65:41:c6:8f:c6:b9:27:
cf:d5:09:33:9b:e7:73:d3:76:df:e3:5d:2f:f5:f5:
7a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:BA:63:E3:15:B4:E2:05:C9:D7:A8:E0:C1:4E:5B:3C:77:DE:31:4F
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Nbpj4xW04gXJ16jgwU5bPHfeMU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.184.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:fb:9f:8e:5d:4b:c0:aa:d7:8b:4e:f7:99:ca:fb:a4:71:86:
91:e6:1c:b1:20:05:80:ff:b1:b0:16:75:42:ce:36:cb:37:32:
13:33:79:88:32:02:6e:f5:f3:fa:cb:5f:27:67:ce:28:05:77:
36:e7:6f:21:f0:84:1e:4d:17:6b:9b:6a:82:69:14:cc:35:5f:
a8:43:3f:01:ad:38:8a:4b:7d:68:2c:0f:8b:a5:8d:ca:be:47:
5b:70:6d:3c:0a:fc:9c:8f:c3:4d:4a:3e:23:a9:c0:06:b7:5f:
62:fe:d3:81:f8:48:f8:b0:86:4a:10:e5:71:f4:36:cb:ef:93:
30:56:a2:e6:bd:de:11:7d:08:1e:46:50:24:33:cb:25:5e:5a:
a9:bc:f8:e1:51:92:a4:82:bd:37:fc:31:29:f6:18:68:c1:c9:
00:ea:43:87:0b:52:17:b8:bd:e7:36:de:77:05:28:6f:55:56:
5a:83:0c:85:85:da:c7:5a:24:ab:0c:a4:89:af:07:49:b7:e7:
2e:59:c4:56:45:a9:ec:79:58:01:a2:35:18:27:80:e2:59:2d:
b5:dd:c1:38:42:56:59:a8:0b:cf:0e:57:b7:ab:52:2f:5b:70:
e3:dc:e0:2d:c5:91:b2:20:a6:db:6f:bf:3a:19:e1:a7:b6:83:
8e:ae:af:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:33 2023 by rpki-client on console-fra.rpki-client.org