Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/NfP8AhCB1xbnSfxpJloYAlwKTxM.roa
File: NfP8AhCB1xbnSfxpJloYAlwKTxM.roa (raw, json)
Hash identifier: JYus0EVxpIbLwEyUVNqXaGjBw/9Svg3dG14VkmVSRZA=
Subject key identifier: 35:F3:FC:02:10:81:D7:16:E7:49:FC:69:26:5A:18:02:5C:0A:4F:13
Certificate issuer: /CN=15ffa042114301368b4069abd68a1efbac47fdce
Certificate serial: 1AE626E5
Authority key identifier: 15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/NfP8AhCB1xbnSfxpJloYAlwKTxM.roa
Signing time: Sat 01 Jan 2022 07:54:29 +0000
ROA not before: Sat 01 Jan 2022 07:54:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196820
IP address blocks: 62.215.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451290853 (0x1ae626e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15ffa042114301368b4069abd68a1efbac47fdce
Validity
Not Before: Jan 1 07:54:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35f3fc021081d716e749fc69265a18025c0a4f13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:84:06:fa:2b:a6:af:aa:a3:50:40:75:a3:3d:
7d:8b:f7:ee:6a:07:c1:6d:d7:b3:f0:37:5c:31:f3:
30:4e:b5:57:ad:fd:6d:b5:6e:6a:5c:9e:bd:fe:8e:
d8:3c:a3:78:dd:f5:c3:46:93:8e:06:59:3d:1f:25:
47:ea:93:72:68:5c:fd:60:15:aa:25:d8:57:5a:c9:
da:2f:e8:f1:2d:b8:54:1d:ea:6d:18:58:0d:9d:58:
01:90:69:fd:08:ed:48:92:48:a3:c8:7e:7c:9a:de:
8e:6d:5c:82:9f:42:bd:75:11:29:7a:e3:c1:b1:10:
a0:64:66:c2:e3:40:96:7d:45:22:4e:8a:59:53:ba:
31:26:13:23:01:d4:95:67:4e:e6:46:60:94:90:fa:
da:4b:5c:2d:a3:6a:3e:0d:05:2b:c6:d7:65:72:28:
3f:67:c9:8a:7e:4d:d5:00:a2:bb:5f:91:65:82:30:
95:e7:f6:6c:da:81:b8:a7:4a:de:20:c8:b1:9a:59:
b5:7e:7d:38:24:02:7d:4e:1e:c1:2a:a3:eb:98:ab:
cb:5a:8e:97:2d:73:57:97:2b:ff:89:5e:4f:b1:41:
39:03:af:bb:39:e9:f8:65:a1:54:c3:b9:fd:21:11:
5b:ab:05:80:8e:87:65:4a:e0:0b:5b:1c:f3:45:c7:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F3:FC:02:10:81:D7:16:E7:49:FC:69:26:5A:18:02:5C:0A:4F:13
X509v3 Authority Key Identifier:
keyid:15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/NfP8AhCB1xbnSfxpJloYAlwKTxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/Ff-gQhFDATaLQGmr1ooe-6xH_c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.215.111.0/24
Signature Algorithm: sha256WithRSAEncryption
36:b2:b7:e5:66:3f:01:a6:3c:a1:29:06:c4:8e:9e:0e:ae:ad:
74:03:86:9b:6a:25:95:77:a4:89:c0:51:77:13:82:dd:87:12:
48:94:d3:42:13:1a:7e:f4:1a:d1:7b:db:9e:ac:2e:73:36:33:
8e:58:64:a9:77:03:c5:be:bc:9d:68:b5:80:d5:bb:49:02:b9:
8c:7d:cd:87:d6:ca:1b:d7:fc:41:34:5b:91:24:8e:0e:0a:9b:
13:af:4b:6d:58:d9:b2:b5:36:d3:c4:bd:b4:6e:49:c4:18:5b:
b5:ff:a6:75:a3:63:fa:06:56:2a:24:06:25:81:84:02:4d:75:
69:94:9e:16:38:a3:d1:ee:aa:bd:12:74:75:fc:31:c7:be:87:
11:ff:91:7b:46:ee:c6:52:e2:d5:c9:c6:aa:75:f8:de:4d:8e:
86:5b:3a:f2:80:10:40:9a:10:79:b1:5d:5e:f6:6a:11:86:24:
ba:c8:4b:cf:92:74:0d:62:bc:25:16:8a:b8:5a:d0:0b:4e:9f:
6b:d6:d7:18:ca:79:2d:2f:79:d4:f5:80:90:09:8b:3c:b8:e0:
04:e2:37:94:9a:20:50:b1:44:84:8b:91:11:ae:d9:95:e3:7a:
ef:b9:9d:30:13:6b:f2:8c:f5:24:a2:f0:0b:86:d0:72:7f:d2:
f1:68:49:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:46 2023 by rpki-client on console-fra.rpki-client.org