Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/NsKqHalWPWVTg7OSa2vynXJuaAM.roa
File: NsKqHalWPWVTg7OSa2vynXJuaAM.roa (raw, json)
Hash identifier: hKA99Txu9wdMcfkxcBz1LA8Qe7ljnfiln7WpHpox4f8=
Subject key identifier: 36:C2:AA:1D:A9:56:3D:65:53:83:B3:92:6B:6B:F2:9D:72:6E:68:03
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018354F022C49A39F721EDE2C8CEB712D188
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/NsKqHalWPWVTg7OSa2vynXJuaAM.roa
Signing time: Mon 19 Sep 2022 08:49:27 +0000
ROA not before: Mon 19 Sep 2022 08:49:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212154
IP address blocks: 2a0e:8f02:f047::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:54:f0:22:c4:9a:39:f7:21:ed:e2:c8:ce:b7:12:d1:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Sep 19 08:49:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36c2aa1da9563d655383b3926b6bf29d726e6803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:aa:8d:db:b8:17:a8:00:57:95:64:8a:dd:7e:
ad:06:df:54:f3:39:7a:56:c3:ad:45:e9:e9:79:cf:
cb:c7:07:13:a6:3b:3a:0f:40:38:93:3e:a7:50:a7:
65:c7:a2:70:55:4a:9c:ce:dc:74:d7:bb:da:bd:8f:
89:de:19:25:4e:66:ff:0d:47:53:af:23:47:40:ab:
4f:90:9a:e2:b2:81:34:c2:b5:73:10:4c:53:ab:32:
83:5a:a8:cb:f5:be:c0:77:fb:e0:7a:c9:f1:07:41:
0f:c5:4b:8d:b4:87:1d:e4:f3:22:78:c8:34:92:23:
d6:64:cd:f7:d4:48:04:5d:f2:4f:eb:1d:fa:77:93:
dd:b1:e9:4d:02:ab:9a:fb:2c:0f:74:39:9e:b0:f9:
1e:3d:b7:0e:2b:47:12:d4:ce:e1:71:0e:33:1d:36:
3c:8d:18:47:72:09:47:8c:43:08:07:ab:5e:c5:a2:
9e:3e:8f:b9:98:02:ff:3f:b9:0c:4e:ae:ee:d3:79:
b6:82:23:c4:a0:9b:f4:90:c5:5c:43:7e:1f:6d:d0:
97:77:36:17:76:33:e9:99:52:09:33:32:4a:1e:c3:
e1:cc:67:62:0d:71:84:6c:d0:b3:4b:03:60:0a:ad:
a6:8c:2a:35:de:2d:ed:aa:84:d6:86:36:fa:2b:da:
ef:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C2:AA:1D:A9:56:3D:65:53:83:B3:92:6B:6B:F2:9D:72:6E:68:03
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/NsKqHalWPWVTg7OSa2vynXJuaAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f047::/48
Signature Algorithm: sha256WithRSAEncryption
6b:62:9d:c4:c3:19:b5:6b:fd:8b:bc:4b:03:6a:8f:35:e2:3b:
6d:c1:1a:9a:33:78:33:8c:8a:6f:59:fc:cd:ed:e9:d6:e5:d7:
22:63:71:cb:fa:ac:08:a0:38:8c:11:7f:5f:ac:1a:58:68:fb:
74:57:16:93:0f:ad:5e:53:55:75:e4:41:dd:9f:d9:e3:f3:33:
ae:70:c3:62:6f:a5:cc:8e:c7:bb:c6:5a:16:9a:ff:a2:ea:3b:
eb:f4:01:92:07:c3:54:a4:a7:2b:90:81:cd:64:34:67:ec:7d:
41:7f:56:9c:b9:cd:c1:a2:33:2f:73:33:7c:16:41:f8:64:98:
5a:5c:6d:f7:4f:44:79:ea:36:7e:eb:4d:9b:b4:e9:dd:fe:dc:
1b:9e:db:c4:60:48:a6:22:64:5a:0b:c1:a4:77:7b:dd:e9:9d:
b0:26:65:01:d1:ec:cd:b1:e0:fd:e1:88:ee:b4:17:7b:0f:4d:
66:59:55:32:06:9a:d5:29:fa:a6:fc:ce:91:ef:60:99:67:ae:
b2:98:3d:af:db:f8:0d:3c:f8:e6:f4:f8:ac:77:0a:7f:f4:ff:
20:f6:fe:0d:3f:46:c6:dd:a8:5c:74:1e:73:e8:f9:65:1f:64:
58:24:a7:85:1f:82:28:bf:b7:02:0d:9b:dc:b2:4d:e9:d0:36:
2a:b9:63:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org