Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/NYWAb8EJ9aHFWZV-yHQvADBNLOg.roa
File: NYWAb8EJ9aHFWZV-yHQvADBNLOg.roa (raw, json)
Hash identifier: GM3f/ojeHamYRQw+YeQpFmtg7CAJsFdzPBn/hw1Ke0w=
Subject key identifier: 35:85:80:6F:C1:09:F5:A1:C5:59:95:7E:C8:74:2F:00:30:4D:2C:E8
Certificate issuer: /CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Certificate serial: 018387FFCCCB17EC84DCFFD0845FC08D28D4
Authority key identifier: 65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/NYWAb8EJ9aHFWZV-yHQvADBNLOg.roa
Signing time: Thu 29 Sep 2022 06:47:11 +0000
ROA not before: Thu 29 Sep 2022 06:47:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20926
IP address blocks: 194.147.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:87:ff:cc:cb:17:ec:84:dc:ff:d0:84:5f:c0:8d:28:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Validity
Not Before: Sep 29 06:47:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3585806fc109f5a1c559957ec8742f00304d2ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:34:8f:7e:ff:0d:c6:f5:f9:50:67:c9:47:44:
d6:77:b0:46:e2:b7:e2:c1:43:b0:1f:6f:1a:98:e5:
2d:d7:72:42:dc:a5:24:ce:1e:71:15:68:dc:38:36:
37:97:8d:e2:90:6e:3d:de:66:bd:93:2c:93:69:39:
af:96:02:08:ed:25:21:a9:0f:14:5f:cd:88:8f:7a:
11:06:1f:3c:a1:f1:2c:9c:0f:17:7d:7a:a5:a7:e5:
b0:fc:2f:32:9a:1c:fc:41:c5:4a:1d:d1:02:bb:94:
2d:6c:79:43:0e:1c:0c:09:4b:dd:4b:52:b2:1d:f4:
04:e9:5b:b5:09:66:6c:46:9d:76:89:79:45:30:26:
c6:b6:5c:0c:fa:4c:30:e2:d1:44:33:3a:10:56:f4:
81:14:77:95:5b:82:42:56:3c:4c:ba:b7:2b:11:4d:
5a:fe:02:f1:b9:7b:81:1b:be:c8:e4:27:78:d8:1d:
33:e4:2f:0f:fc:0c:c5:77:06:82:3e:5f:62:53:0b:
fa:21:d6:e1:8c:e4:bb:eb:9b:69:45:25:e7:1f:f1:
22:aa:82:d9:4f:88:f7:db:da:cc:3f:b2:dd:a8:cc:
76:d9:36:6a:16:fe:62:f8:bf:94:7c:8c:53:89:ee:
9c:c8:11:2c:12:30:93:48:00:a6:1b:0b:e6:b2:38:
82:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:85:80:6F:C1:09:F5:A1:C5:59:95:7E:C8:74:2F:00:30:4D:2C:E8
X509v3 Authority Key Identifier:
keyid:65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/NYWAb8EJ9aHFWZV-yHQvADBNLOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/ZYwMSZqOadl5X0vQtb8WgrHwD5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.248.0/24
Signature Algorithm: sha256WithRSAEncryption
26:2d:36:dd:50:d0:c3:4d:bd:4d:4b:9d:e5:c6:2f:94:6b:e1:
a9:4d:7c:bc:55:0e:f6:3a:a3:26:7d:a0:ec:ce:5c:2c:4b:90:
19:c2:07:5c:8d:1a:eb:ea:d1:46:c8:eb:47:9e:23:27:89:46:
62:a1:37:a5:45:16:ee:7f:fe:8a:c8:b0:f9:22:a2:06:79:ff:
35:aa:c0:14:66:1a:3e:0c:94:59:64:29:53:e7:1b:17:bc:5d:
6e:23:0b:e4:7e:1e:ca:42:53:60:92:5e:87:d4:05:34:f3:43:
55:89:07:cd:c3:d5:c9:f8:26:31:af:0e:8b:61:51:86:df:89:
70:9c:86:de:20:9e:26:37:df:4d:ac:80:c0:7d:06:80:e7:c4:
0a:f8:cf:0a:34:94:ee:c1:b5:0e:b2:57:28:0c:7e:af:08:a9:
ae:e9:22:48:1f:a8:5a:dd:71:00:8a:7d:79:b3:a6:0f:9b:42:
87:05:db:dd:36:f3:fa:18:a4:f3:07:b8:62:ff:5a:1b:e2:e8:
4b:70:ce:3a:0f:b3:21:24:4a:e8:86:e2:d8:ce:ae:a9:9a:a7:
a2:ee:8c:e3:cf:5b:a4:4b:d3:24:24:c4:3f:5e:92:3e:00:a1:
02:16:69:2c:99:c7:6a:0a:d8:35:86:64:f7:6a:30:0f:1e:b5:
a2:5d:ba:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:50 2024 by rpki-client on console-fra.rpki-client.org