Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/NCntJ-XFnl7-IDGYGatA0dMYXOY.roa
File: NCntJ-XFnl7-IDGYGatA0dMYXOY.roa (raw, json)
Hash identifier: VSIg727pkErGvzvs9u2yU3l4XLl+vdvjri2Urwj4KHA=
Subject key identifier: 34:29:ED:27:E5:C5:9E:5E:FE:20:31:98:19:AB:40:D1:D3:18:5C:E6
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 018341260D5C4AB032E385291E0298B06E4A
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/NCntJ-XFnl7-IDGYGatA0dMYXOY.roa
Signing time: Thu 15 Sep 2022 12:35:56 +0000
ROA not before: Thu 15 Sep 2022 12:35:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206150
IP address blocks: 86.106.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:41:26:0d:5c:4a:b0:32:e3:85:29:1e:02:98:b0:6e:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Sep 15 12:35:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3429ed27e5c59e5efe20319819ab40d1d3185ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5c:9c:2f:b6:87:35:61:03:98:d7:65:da:e0:
ec:34:df:35:6d:27:02:16:8d:d9:a6:b8:b0:2f:57:
53:54:7e:1a:29:d1:6a:20:d1:28:09:ce:32:23:89:
db:f4:8a:a5:07:71:84:90:f7:9b:9e:75:67:44:2d:
f7:36:5a:e3:ae:e7:87:be:49:31:fd:20:3a:ad:a0:
6e:4d:d9:e9:0d:1f:54:59:3d:00:25:50:e7:7a:6e:
4f:f3:ff:0f:31:37:1b:0a:44:d3:67:2c:6a:52:4d:
ee:9c:32:70:7b:cb:b0:79:b3:4a:2d:e6:8b:78:99:
95:5a:31:c7:2e:8f:ef:d5:f3:0c:a4:ba:05:c1:49:
e2:77:1c:a1:37:a5:c4:28:b9:43:f2:9b:e5:d5:84:
3b:56:64:de:da:a5:68:69:99:33:63:03:ac:f0:db:
96:09:5e:03:a7:16:93:7b:ad:fe:69:e7:19:14:3c:
27:72:38:63:c0:f5:93:0e:5c:6c:c7:38:64:bd:a9:
99:a0:40:06:ae:a6:68:f1:2e:cd:66:5b:51:28:d6:
26:28:61:bf:98:56:a9:59:8d:35:a6:b8:26:8d:17:
53:d5:4b:74:31:67:50:d7:8c:8c:5a:b2:ae:bf:6a:
fb:67:03:c2:91:a5:49:64:cb:5d:96:f3:f2:f1:ca:
2f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:29:ED:27:E5:C5:9E:5E:FE:20:31:98:19:AB:40:D1:D3:18:5C:E6
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/NCntJ-XFnl7-IDGYGatA0dMYXOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.97.0/24
Signature Algorithm: sha256WithRSAEncryption
21:46:49:0b:e6:be:88:ab:4a:8c:17:f9:75:1b:86:ea:f9:f0:
49:41:90:11:16:1e:6d:b7:2f:f7:79:24:2c:40:2c:c0:bf:49:
11:c1:f1:e0:50:b8:a2:b2:67:7a:24:2f:0d:b8:3d:2c:cd:7f:
3e:39:20:83:22:b1:a5:5f:f8:c7:aa:ba:3c:bf:08:1a:b0:27:
6e:e5:0e:4c:40:44:25:26:17:83:6a:81:7c:d2:2d:21:e6:53:
4f:c7:98:69:1b:76:93:33:cf:0e:65:db:a0:8c:41:6a:9b:1b:
ae:f4:86:59:e1:c7:15:c4:47:6a:75:82:24:0e:65:d8:b7:43:
06:a3:5e:6c:1d:90:5d:c4:fb:13:26:f7:bf:e3:23:93:b2:13:
e6:f4:45:f1:3e:15:8a:13:f0:60:df:3a:9c:cc:66:c3:64:2c:
dd:4b:cb:82:53:d7:4c:5a:e9:51:e3:c0:98:8b:e2:19:57:d1:
7b:cc:6f:dd:60:cd:f2:41:e7:5a:35:2f:88:d4:da:66:13:81:
af:62:bc:2b:81:b6:d1:bc:b0:c5:2a:04:1b:09:b5:0c:8a:b0:
fa:ef:3a:9b:d7:ce:a8:e7:34:d6:10:60:8e:0d:2a:77:a8:4c:
c4:70:cb:90:06:a1:06:ff:4d:9b:25:34:ce:c1:b7:e2:74:e5:
39:ab:af:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org