Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/nzovnh6xsCcTPMn1oO1ow_CYMEM.roa
File: nzovnh6xsCcTPMn1oO1ow_CYMEM.roa (raw, json)
Hash identifier: sJB6ugng8HVDSsmTVoJvd/D9Y8rMfaGS5//vo4gxAlc=
Subject key identifier: 9F:3A:2F:9E:1E:B1:B0:27:13:3C:C9:F5:A0:ED:68:C3:F0:98:30:43
Certificate issuer: /CN=095dff1f6bd8813de5ff9af167247f78b88439bd
Certificate serial: 0199076B
Authority key identifier: 09:5D:FF:1F:6B:D8:81:3D:E5:FF:9A:F1:67:24:7F:78:B8:84:39:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CV3_H2vYgT3l_5rxZyR_eLiEOb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/nzovnh6xsCcTPMn1oO1ow_CYMEM.roa
Signing time: Sat 01 Jan 2022 12:57:29 +0000
ROA not before: Sat 01 Jan 2022 12:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3246
IP address blocks: 94.126.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26806123 (0x199076b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095dff1f6bd8813de5ff9af167247f78b88439bd
Validity
Not Before: Jan 1 12:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f3a2f9e1eb1b027133cc9f5a0ed68c3f0983043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:43:af:3e:48:0f:6b:9e:bf:59:3b:8c:b1:26:
ec:6a:42:0f:78:2a:9f:38:d8:0c:b3:91:25:d1:ec:
a4:49:c2:ba:89:a9:1b:a5:29:b0:44:ed:43:98:e6:
12:f3:79:30:6c:bb:67:2d:f8:e6:57:bf:6b:63:13:
94:cb:3f:8a:f5:5b:f4:55:ab:5b:f9:45:55:6d:54:
47:4c:c7:a1:23:c5:db:d0:ca:26:8a:01:84:5e:1c:
cb:36:f9:b1:4e:ab:aa:22:72:e0:14:62:33:62:30:
3b:3c:12:03:47:db:e0:d9:b0:76:02:6e:37:24:48:
79:70:9b:1b:1e:38:fa:1d:e1:ae:9f:5d:5d:32:9c:
ae:cc:75:2b:55:f7:fc:20:6d:e7:a0:4e:1f:17:f6:
55:4e:8c:0f:9d:fe:4f:c0:6d:b8:cb:34:a3:c0:1b:
13:a2:74:a7:9b:e0:bc:6b:e5:60:d1:ac:fb:ee:06:
7d:20:f0:e3:f8:b7:98:69:e7:2b:15:16:1b:03:60:
23:47:c3:b1:94:47:43:3c:49:dc:27:c9:f5:16:9d:
bb:b0:32:8f:ec:9d:f7:3b:48:93:03:10:62:99:48:
d5:69:83:fb:4c:af:dc:59:99:13:dc:b1:39:3f:af:
c4:0f:da:75:08:bd:0a:ec:1a:1a:98:f9:f1:25:58:
dc:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:3A:2F:9E:1E:B1:B0:27:13:3C:C9:F5:A0:ED:68:C3:F0:98:30:43
X509v3 Authority Key Identifier:
keyid:09:5D:FF:1F:6B:D8:81:3D:E5:FF:9A:F1:67:24:7F:78:B8:84:39:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CV3_H2vYgT3l_5rxZyR_eLiEOb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/nzovnh6xsCcTPMn1oO1ow_CYMEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5d0278-216e-4712-9487-19b3d1544c39/1/CV3_H2vYgT3l_5rxZyR_eLiEOb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.126.224.0/21
Signature Algorithm: sha256WithRSAEncryption
14:6b:7d:19:58:7f:7b:3b:b1:42:31:76:45:cb:ec:8c:91:92:
69:92:72:02:75:ec:38:7c:e2:43:c9:ee:9f:62:69:6d:45:a5:
ec:2e:67:91:0a:23:c3:74:3e:97:63:52:65:d5:c0:a7:73:68:
82:52:d0:94:84:7c:a5:24:22:4b:6f:6a:94:ca:3c:dc:d4:ca:
7f:40:e5:9d:a4:68:d6:34:34:99:ec:0b:0e:cd:31:5b:19:95:
a0:9f:72:b6:3e:49:1f:ec:1d:2c:c4:36:45:7a:99:36:3c:ab:
d8:c3:81:71:cb:51:6c:42:b4:fa:b3:56:93:ce:27:4c:f8:b9:
bb:fb:cb:98:8c:fd:20:35:3c:61:2d:7c:3b:44:80:ad:d9:cc:
c2:ba:59:96:62:78:43:96:ae:90:4f:c9:e5:49:f1:3d:de:72:
17:a9:dd:0d:b6:48:bf:68:ae:f4:23:3b:e8:71:1b:2a:12:dd:
62:6e:95:ac:25:30:0f:76:a6:65:c8:ad:64:0e:7f:8d:c5:83:
2a:18:54:61:cd:fb:05:36:58:d5:d9:ad:a0:bc:d7:0f:5b:31:
60:58:cd:17:a0:2d:a7:a0:03:75:f8:53:c7:90:88:08:fa:d5:
81:11:22:e6:49:77:36:79:c8:47:b7:c6:a6:7d:ca:10:21:d8:
fa:74:23:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:32 2024 by rpki-client on console-fra.rpki-client.org