Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/NhqKujxxM0WUwZVwZHvdPqOyu2s.roa
File: NhqKujxxM0WUwZVwZHvdPqOyu2s.roa (raw, json)
Hash identifier: OpM/wFqmPER/cRssK6Nh/sifRW5oPkGh+1Bjm7SUpfM=
Subject key identifier: 36:1A:8A:BA:3C:71:33:45:94:C1:95:70:64:7B:DD:3E:A3:B2:BB:6B
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0B44805E
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/NhqKujxxM0WUwZVwZHvdPqOyu2s.roa
Signing time: Sat 01 Jan 2022 13:04:57 +0000
ROA not before: Sat 01 Jan 2022 13:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39107
IP address blocks: 86.104.125.0/24 maxlen: 24
2001:7f8:64::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189038686 (0xb44805e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 13:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=361a8aba3c71334594c19570647bdd3ea3b2bb6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f5:33:67:c2:c0:42:7f:86:c3:30:a8:be:76:
fe:5e:92:72:f9:09:66:70:b6:aa:d3:ee:94:3c:ab:
bd:9d:35:6b:b1:24:42:61:5d:26:8e:83:73:c5:e8:
0a:c8:de:3b:12:e3:dd:96:d8:d1:47:43:1d:5b:0d:
06:35:38:a2:d6:5d:fa:0a:23:32:5d:4a:25:b6:b9:
fb:53:72:c7:a9:80:ed:29:4a:93:6f:2d:8e:a7:3e:
fb:2d:e4:6a:34:d2:60:6e:dc:00:c5:6e:cf:49:0f:
9d:50:cd:26:ab:53:36:18:40:be:4c:43:92:4c:fc:
29:4a:3c:3e:63:0c:48:4e:aa:0a:ac:81:d8:7c:81:
b4:be:10:65:e9:a5:dd:07:fa:4d:96:60:a1:58:9a:
51:12:3f:49:99:8d:6a:b2:63:16:41:d6:0c:d4:cd:
a9:f2:7d:60:82:38:e5:88:bc:b4:54:03:cc:46:df:
9d:b7:29:29:51:c1:2c:ac:af:cf:06:6a:d4:cc:d8:
03:c2:37:1f:95:1d:e1:08:81:8d:4f:11:34:e0:47:
62:8b:a1:13:db:46:38:a8:83:b5:04:99:d9:c6:4e:
90:00:14:2f:f6:fa:bd:12:09:5d:24:bf:51:7a:d8:
d5:67:88:70:4e:d9:ac:86:c0:25:a4:f3:f7:8a:36:
d5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:1A:8A:BA:3C:71:33:45:94:C1:95:70:64:7B:DD:3E:A3:B2:BB:6B
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/NhqKujxxM0WUwZVwZHvdPqOyu2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.125.0/24
IPv6:
2001:7f8:64::/48
Signature Algorithm: sha256WithRSAEncryption
38:17:a1:11:3b:8e:81:ad:af:a8:f8:33:f3:d4:bb:a6:c5:06:
64:2e:d4:78:6b:80:53:db:9f:1a:f5:5a:39:14:ea:7d:38:f1:
dd:0b:c8:5c:81:4c:b6:18:44:16:da:48:62:33:1e:85:f9:bb:
6f:6d:6a:98:1e:bc:e1:f7:18:67:f2:4f:b9:d1:2f:2f:8b:40:
e9:b6:75:13:96:26:83:00:ce:e8:4e:ef:37:48:64:6d:89:3b:
3b:7a:19:81:2a:22:e6:3e:ab:a7:2a:07:f3:6c:87:4e:a5:77:
d1:49:cd:16:d5:9d:2c:ea:b3:33:76:62:d0:40:4f:ee:e0:96:
3d:96:9f:e4:2b:28:d6:d7:1a:00:d0:2b:4d:47:75:53:41:a3:
0b:3e:a0:a1:11:b6:31:c8:33:ae:3a:42:be:a1:aa:b9:60:2a:
2a:8c:ee:2f:4a:27:50:e9:17:7a:ff:e5:1e:24:35:3d:b5:79:
d2:39:7d:4b:bb:6c:2a:84:f6:71:c4:f0:b4:b6:3a:4f:c7:d1:
a1:fe:11:8d:a4:bf:8e:6a:a6:da:10:eb:b4:35:fa:35:a5:23:
fe:07:c6:48:01:83:e3:6e:72:cb:ca:8e:cb:81:c4:1b:30:78:
e6:0b:3a:b9:3b:87:66:30:e7:92:99:12:5d:56:61:88:de:ea:
2a:d4:2b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org