Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/nsO5QDic6kENkEf-_WUtHCtkmmc.roa
File: nsO5QDic6kENkEf-_WUtHCtkmmc.roa (raw, json)
Hash identifier: +4dRyS8RM3tL93QJsgxXvkhirevUtYX/V85na+RG5MU=
Subject key identifier: 9E:C3:B9:40:38:9C:EA:41:0D:90:47:FE:FD:65:2D:1C:2B:64:9A:67
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0A738EA1
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/nsO5QDic6kENkEf-_WUtHCtkmmc.roa
Signing time: Sat 19 Feb 2022 11:40:15 +0000
ROA not before: Sat 19 Feb 2022 11:40:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137951
IP address blocks: 62.60.216.0/21 maxlen: 21
213.176.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175345313 (0xa738ea1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Feb 19 11:40:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ec3b940389cea410d9047fefd652d1c2b649a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b2:51:fb:f4:d9:9d:e8:dc:2e:77:5f:82:74:
4e:68:b8:44:fc:34:4b:62:32:2b:e4:80:68:19:22:
06:1a:6a:61:70:8e:59:1b:44:ac:da:37:d1:73:e9:
25:e1:80:d1:88:5e:9e:64:31:91:0e:ec:01:e1:07:
1b:81:41:92:28:10:16:ca:18:7b:9d:f0:12:78:ab:
29:fd:1a:27:52:40:9a:29:9c:f9:1a:a1:8a:ae:13:
a1:d2:60:4a:fd:87:38:53:74:36:8f:f0:c2:32:00:
b1:81:1e:57:f3:ae:2a:10:7e:9d:fd:2e:28:34:a0:
7f:c9:d6:61:26:4f:0e:10:71:a3:bf:1d:30:1e:0b:
ea:d5:8b:82:78:9b:c5:97:1c:f4:00:2b:ac:03:12:
68:d4:52:ad:4c:1c:a2:03:68:24:ff:ff:63:cb:c2:
3e:b7:63:8b:dd:10:c1:2b:ab:5d:4e:c3:26:72:ac:
69:48:b3:9e:c3:58:ec:db:e5:66:e5:7a:07:03:3a:
c1:5f:38:0b:f2:a4:2c:f2:fd:43:53:75:48:c2:0c:
67:4b:22:c7:b1:35:ea:94:11:5b:b7:08:f3:c5:87:
1c:be:ed:0a:e0:d0:dc:e3:65:ec:c3:2d:00:bb:38:
c8:16:b4:0a:39:e1:6a:f0:a3:bd:74:99:e1:bc:aa:
3c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:C3:B9:40:38:9C:EA:41:0D:90:47:FE:FD:65:2D:1C:2B:64:9A:67
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/nsO5QDic6kENkEf-_WUtHCtkmmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.216.0/21
213.176.91.0/24
Signature Algorithm: sha256WithRSAEncryption
70:5a:50:1f:70:a0:52:8a:2a:61:e8:2c:ee:1b:90:6a:c4:bc:
b4:9a:c4:09:2b:2c:f2:d5:c3:0d:9c:72:24:c9:0a:72:75:87:
80:56:73:e8:90:42:f2:d5:7f:2e:12:92:cd:2c:f1:04:25:26:
7a:69:c9:87:a9:99:b8:5d:2a:e1:dc:df:78:ae:50:8e:04:d4:
c4:78:4a:24:54:29:35:60:5d:e7:e6:b6:b0:d1:2e:3c:1c:28:
41:99:8d:6b:08:98:9c:45:35:e6:e9:48:ba:6a:65:28:25:94:
da:83:63:06:0e:f9:c1:44:2a:be:1a:42:72:8a:fe:8f:43:42:
cb:74:f8:1e:de:c9:f5:60:58:04:1a:8d:7f:8f:e2:5d:be:85:
3e:fb:71:a3:69:d9:c2:c8:51:96:00:15:4f:8f:c5:05:23:bd:
05:f4:c1:ac:94:96:e6:23:39:c1:4c:55:27:43:22:a2:e4:63:
b5:70:c1:d4:a4:46:83:41:c3:f9:bb:a4:9d:ed:52:fb:9c:1c:
4c:a6:72:88:7d:4f:91:90:93:10:02:f7:98:74:8c:4d:56:0c:
e9:3a:e4:2e:74:a7:c9:5f:e7:56:70:01:16:ea:e8:da:d6:ee:
61:6d:54:0d:b5:52:89:e5:02:42:5e:68:d3:c2:2e:62:77:20:
bc:b8:28:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:39 2024 by rpki-client on console-fra.rpki-client.org