Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/nPkyD61w3Db8MQsc0WIUpWNiuD8.roa
File: nPkyD61w3Db8MQsc0WIUpWNiuD8.roa (raw, json)
Hash identifier: cJcOMIEPCFriq2hBnBqrOA783ojj8cb5o0Pnt62Fqx4=
Subject key identifier: 9C:F9:32:0F:AD:70:DC:36:FC:31:0B:1C:D1:62:14:A5:63:62:B8:3F
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018369578ADB3EBE62F937A96566D97AF42C
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/nPkyD61w3Db8MQsc0WIUpWNiuD8.roa
Signing time: Fri 23 Sep 2022 07:54:48 +0000
ROA not before: Fri 23 Sep 2022 07:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133929
IP address blocks: 185.243.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:69:57:8a:db:3e:be:62:f9:37:a9:65:66:d9:7a:f4:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Sep 23 07:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9cf9320fad70dc36fc310b1cd16214a56362b83f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:61:2d:0a:18:80:41:7a:e3:a6:16:a1:66:84:
f2:6c:c5:b7:f4:b1:99:8c:61:25:e7:19:32:f9:41:
73:8c:cb:5c:cb:44:35:4b:ca:9f:6a:0f:5b:10:be:
c3:ee:9c:43:95:9c:39:fa:69:03:9e:8b:c7:32:18:
38:ba:cf:aa:60:fa:61:5a:26:c4:1c:90:2b:6f:30:
45:b0:39:44:ec:d9:b3:ad:9b:b5:58:e9:49:f7:d1:
fc:74:ab:a5:3f:40:54:3b:5b:9e:68:02:f1:4a:ee:
01:00:ac:58:ed:2c:bb:57:ad:20:6a:c9:68:94:96:
f9:48:1c:85:73:01:37:38:9d:10:ab:bc:20:76:fd:
9a:66:eb:0a:f5:a2:c0:88:9b:3e:04:58:f6:27:b7:
fa:ee:ec:50:2f:8a:9b:e4:4e:95:fa:88:93:86:ef:
60:e6:be:7d:25:16:ec:13:90:85:f4:53:65:9f:64:
dd:33:3b:29:b2:b9:43:8e:27:2b:ff:ec:88:94:fe:
5f:2a:d0:13:42:8b:0f:c7:02:51:ff:80:9d:2b:9d:
07:4d:1e:88:67:77:24:06:36:ef:d7:30:11:aa:6d:
25:df:43:05:94:6d:54:07:4f:9a:30:34:f8:c3:36:
06:b4:8c:ea:1b:66:7a:9d:6c:d0:76:b6:58:84:b7:
04:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F9:32:0F:AD:70:DC:36:FC:31:0B:1C:D1:62:14:A5:63:62:B8:3F
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/nPkyD61w3Db8MQsc0WIUpWNiuD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.6.0/24
Signature Algorithm: sha256WithRSAEncryption
28:d4:6f:b1:a0:f5:d7:e1:30:51:94:81:6c:d3:95:de:8f:83:
27:ab:6f:6d:e8:53:38:3e:a8:a8:d2:9b:d2:81:28:f2:0b:b9:
e1:1f:ef:df:b4:84:1c:a7:2c:45:8b:1a:08:0f:9f:c4:66:38:
23:32:36:f7:08:0e:a5:e2:cf:53:8a:ae:27:8f:a5:e1:49:66:
31:61:bd:07:7b:36:fb:2a:c2:2c:7d:db:2c:ea:b7:75:6e:e7:
ea:b8:2e:0c:a4:44:0d:33:35:61:74:cc:04:00:14:4f:2f:19:
16:86:a3:b4:d9:1b:3c:b5:5e:85:05:96:fe:3b:7d:b7:22:f9:
3d:c9:89:e5:69:38:bc:1f:3a:b3:57:c9:b6:e6:a0:c0:6d:6f:
5a:5a:a4:b5:63:fa:02:09:6c:1d:74:77:89:76:c3:d9:c5:9e:
a1:34:86:8e:24:f6:b0:43:6e:3e:b5:7f:d2:b3:dd:9f:dd:cb:
ee:9e:24:fc:b6:7e:c2:a6:2f:8d:3a:93:3c:9e:d3:45:54:bb:
fe:3b:1a:68:ca:d9:da:7d:94:90:71:2b:82:13:e6:fc:a8:6e:
87:f7:45:bd:34:27:43:65:4f:59:e3:a4:16:a2:d7:ad:07:f7:
f1:6f:e5:4c:3b:5a:9d:69:f7:5c:98:2f:c9:d9:5d:94:df:64:
b6:f3:d4:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org