Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/ns17LzGGh7DDu2OMDAjMPH0r5NA.roa
File: ns17LzGGh7DDu2OMDAjMPH0r5NA.roa (raw, json)
Hash identifier: CqoPgiUVkslW8WXQRQDwwRNP3xp5u1CAe542NIcI5vM=
Subject key identifier: 9E:CD:7B:2F:31:86:87:B0:C3:BB:63:8C:0C:08:CC:3C:7D:2B:E4:D0
Certificate issuer: /CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Certificate serial: A29479
Authority key identifier: 61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/ns17LzGGh7DDu2OMDAjMPH0r5NA.roa
Signing time: Fri 06 May 2022 01:14:14 +0000
ROA not before: Fri 06 May 2022 01:14:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 159.60.0.0/20 maxlen: 24
159.60.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10654841 (0xa29479)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Validity
Not Before: May 6 01:14:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ecd7b2f318687b0c3bb638c0c08cc3c7d2be4d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ca:be:04:8c:fb:38:d7:b9:87:58:ee:21:d8:
f8:72:c7:96:58:56:22:cb:53:e2:d1:19:06:61:88:
58:54:a9:44:e5:9f:bd:2f:c3:c2:77:63:4e:63:40:
f7:b2:c7:de:e3:ef:bd:1c:0d:fa:89:43:65:ec:34:
e1:94:df:56:0c:dd:da:39:f2:46:56:b2:1b:da:6d:
ca:83:03:38:7d:44:3b:eb:83:45:bb:85:91:16:85:
d1:43:b7:15:ed:bc:21:78:30:2f:22:02:ca:aa:8f:
7b:40:65:76:20:22:4d:a3:31:c1:e9:07:59:c6:41:
5b:31:f5:69:b6:52:5d:83:e2:d3:2b:5b:9e:89:44:
ba:f8:51:28:69:19:e0:b4:84:47:ca:38:7c:01:98:
e1:1b:cf:c1:93:84:32:f9:44:ea:30:57:90:93:0a:
83:52:80:d1:1a:6c:65:63:7a:af:fb:60:73:ab:52:
08:a0:12:ed:06:7a:1d:44:d8:c5:6e:ae:a1:9e:98:
b3:fc:71:8d:88:a7:8b:a4:b1:5c:9d:82:93:a3:d8:
52:58:45:19:45:2c:a0:68:f3:a7:bd:c1:66:cc:76:
43:7f:43:fa:ab:88:d7:89:ec:35:16:60:35:c1:bd:
fe:16:49:51:09:0c:99:76:bd:9e:a3:d9:34:21:b3:
82:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:CD:7B:2F:31:86:87:B0:C3:BB:63:8C:0C:08:CC:3C:7D:2B:E4:D0
X509v3 Authority Key Identifier:
keyid:61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/ns17LzGGh7DDu2OMDAjMPH0r5NA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.60.0.0/20
159.60.192.0/18
Signature Algorithm: sha256WithRSAEncryption
13:93:1e:01:19:4f:50:74:76:2c:ae:fa:a1:05:fa:ec:26:86:
69:f1:80:5c:80:9b:af:06:17:5d:a5:0c:7b:5e:72:08:70:40:
e9:e2:c2:89:d3:cf:02:ad:3e:63:35:9d:f2:53:4c:71:c5:89:
b3:48:86:82:ed:42:32:77:56:80:17:29:25:0e:12:ce:33:f6:
94:5e:9d:e4:4c:c5:62:eb:69:2b:c9:76:65:16:15:f0:d5:fa:
f4:76:1c:17:9b:21:b3:6c:51:c3:5a:a1:0f:78:35:b7:7f:f6:
b6:ff:7c:56:0f:11:ca:a8:be:0a:ce:bc:cd:c4:01:15:58:8e:
89:bb:ac:46:37:3c:6b:bd:f7:3d:e9:58:cb:8f:bd:2e:5c:ad:
50:38:f5:6b:16:62:5f:e4:03:c1:12:0c:bc:3d:d9:df:de:3b:
20:f1:3a:56:f8:c0:26:2c:05:01:ea:b0:7c:af:94:69:cf:76:
ee:81:20:5d:a4:34:a6:1e:a8:3f:b2:dc:9f:39:1c:fa:86:12:
6a:cc:08:10:52:1e:37:2f:e3:37:90:9d:1d:5b:c5:b9:1d:8c:
22:1d:02:e4:f3:91:18:f3:02:91:44:06:e8:7c:da:46:67:5c:
52:15:c8:e6:c0:f2:06:91:5b:d7:34:5f:71:6b:35:7a:64:e4:
13:e3:6a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:15 2024 by rpki-client on console-ams.rpki-client.org