Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/5e3895-ae95-43e2-b7a1-75863f43476a/1/nGcKg-mInEZGedrUsRmBacgsJ0E.roa
File: nGcKg-mInEZGedrUsRmBacgsJ0E.roa (raw, json)
Hash identifier: r9kFoF9PuHd6SjvZkHspxWmlMkSC/JuSIL5BiexglZQ=
Subject key identifier: 9C:67:0A:83:E9:88:9C:46:46:79:DA:D4:B1:19:81:69:C8:2C:27:41
Certificate issuer: /CN=554adb72b82ecfafc5705e25febcab5c82d76ee6
Certificate serial: 08615943
Authority key identifier: 55:4A:DB:72:B8:2E:CF:AF:C5:70:5E:25:FE:BC:AB:5C:82:D7:6E:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VUrbcrguz6_FcF4l_ryrXILXbuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/5e3895-ae95-43e2-b7a1-75863f43476a/1/nGcKg-mInEZGedrUsRmBacgsJ0E.roa
Signing time: Sat 01 Jan 2022 01:01:15 +0000
ROA not before: Sat 01 Jan 2022 01:01:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16210
IP address blocks: 217.18.96.0/19 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140597571 (0x8615943)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=554adb72b82ecfafc5705e25febcab5c82d76ee6
Validity
Not Before: Jan 1 01:01:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c670a83e9889c464679dad4b1198169c82c2741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d2:e8:59:e8:49:8b:c7:cc:59:d1:fd:22:8e:
47:c3:8d:a7:fc:ed:b6:62:54:fc:72:d9:66:a4:3f:
a3:84:fd:f6:5b:d1:39:02:24:6e:08:56:67:cb:de:
df:51:cb:49:76:3c:b6:9e:2f:32:6b:96:88:93:c6:
4a:64:0a:df:5f:a9:0f:99:65:7a:3c:b6:51:ec:9b:
29:d1:75:af:60:eb:3a:c8:1a:7b:9b:bb:8a:00:e3:
bb:c6:22:4a:c0:94:2c:fc:38:48:3a:06:91:d0:10:
03:b7:2a:98:e9:9c:ae:5b:74:8d:b2:d5:86:fb:fd:
50:98:5f:42:52:cd:1c:84:31:8d:73:ba:07:0f:88:
9b:c4:c8:15:0b:36:17:1a:8c:1c:87:5a:2e:0a:0a:
dc:c7:1a:04:63:3c:ba:49:32:7b:75:a4:77:fa:7e:
02:e4:25:3c:9c:3a:70:9a:90:e8:e2:9a:67:9b:c9:
d1:71:7b:41:f3:d0:03:fa:ac:9d:a8:a0:63:36:1c:
52:16:ee:0f:1b:52:97:1f:12:94:a4:eb:6a:50:d4:
c9:99:e4:5c:08:5e:46:6d:e5:30:fe:c6:57:95:71:
5c:c1:15:8b:e6:3a:b2:8d:0d:c1:eb:c8:92:a0:65:
01:13:77:49:84:5b:af:61:ab:2d:2d:d5:ef:d7:c1:
29:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:67:0A:83:E9:88:9C:46:46:79:DA:D4:B1:19:81:69:C8:2C:27:41
X509v3 Authority Key Identifier:
keyid:55:4A:DB:72:B8:2E:CF:AF:C5:70:5E:25:FE:BC:AB:5C:82:D7:6E:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VUrbcrguz6_FcF4l_ryrXILXbuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/5e3895-ae95-43e2-b7a1-75863f43476a/1/nGcKg-mInEZGedrUsRmBacgsJ0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/5e3895-ae95-43e2-b7a1-75863f43476a/1/VUrbcrguz6_FcF4l_ryrXILXbuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.96.0/19
Signature Algorithm: sha256WithRSAEncryption
27:37:05:d0:13:d5:08:d7:81:5d:1e:8e:5e:b4:f0:8a:cb:8b:
94:fb:f6:c5:a6:94:25:c7:19:5d:93:b4:3e:68:ae:4c:3d:c4:
39:98:96:f1:b5:fd:6d:63:ca:ed:4d:30:34:1f:e9:78:74:bd:
9d:9a:2a:7b:a2:7d:53:f0:34:f3:f8:d7:b9:2b:42:5f:5c:72:
ae:37:1c:8f:e7:a0:16:c4:ad:51:09:a1:23:75:86:01:39:14:
5e:ef:f7:6f:b0:95:21:4a:46:b0:1e:65:82:03:38:ca:ec:bc:
5b:29:3a:2b:28:9e:53:61:5a:38:08:2f:9c:28:5d:bf:e3:b4:
d7:c1:ab:3e:25:23:48:60:8a:52:08:a0:6e:44:4d:9e:6e:79:
60:5a:33:4c:2e:37:43:7b:fd:37:7b:09:6f:3a:0b:4e:f6:12:
16:1e:ea:22:86:51:14:90:f3:e6:2b:54:c3:91:45:d3:23:53:
55:b3:0e:78:3c:99:0f:49:db:67:44:cb:4e:9b:2a:f0:84:b8:
c3:93:4c:56:1b:9e:5b:a7:50:81:4d:88:50:1f:dd:63:77:d2:
60:97:bb:42:03:5b:52:41:60:2f:02:43:7b:79:d1:16:37:3d:
be:1f:e7:79:15:da:a5:1f:ce:6b:0f:bd:be:16:7b:c5:c2:00:
7a:a4:19:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:37 2024 by rpki-client on console-fra.rpki-client.org