Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/0846e2-337d-4f13-9fd3-651c939f30d6/1/ISt_ntqgod5M1qRH8cmM05T8LwQ.roa
File: ISt_ntqgod5M1qRH8cmM05T8LwQ.roa (raw, json)
Hash identifier: qHVkEB3aVwyf+FPRmP+xyxrUSL30ZyXOoZT7S4uAhr4=
Subject key identifier: 21:2B:7F:9E:DA:A0:A1:DE:4C:D6:A4:47:F1:C9:8C:D3:94:FC:2F:04
Certificate issuer: /CN=786d64eae4a29c665dc065d53e3c60d3c3190d73
Certificate serial: 0130AA
Authority key identifier: 78:6D:64:EA:E4:A2:9C:66:5D:C0:65:D5:3E:3C:60:D3:C3:19:0D:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eG1k6uSinGZdwGXVPjxg08MZDXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/0846e2-337d-4f13-9fd3-651c939f30d6/1/ISt_ntqgod5M1qRH8cmM05T8LwQ.roa
Signing time: Thu 03 Feb 2022 15:13:17 +0000
ROA not before: Thu 03 Feb 2022 15:13:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8893
IP address blocks: 194.246.72.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77994 (0x130aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=786d64eae4a29c665dc065d53e3c60d3c3190d73
Validity
Not Before: Feb 3 15:13:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=212b7f9edaa0a1de4cd6a447f1c98cd394fc2f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:af:c8:58:5d:86:60:37:9f:46:c6:d6:e8:21:
40:22:3b:bc:f9:fa:c5:6c:be:ff:96:0a:22:e3:a0:
81:8c:6e:8d:98:58:1c:b1:e8:42:f3:11:bf:2c:45:
21:09:41:9b:f6:07:4f:db:5b:26:7e:6a:b6:df:7e:
58:95:e0:f2:53:3b:c2:9f:48:cc:8f:a7:61:de:e9:
6a:6a:ea:20:e0:67:cb:c8:0c:8e:88:d9:20:f1:63:
f4:9f:f3:18:0d:43:19:18:f8:d9:ce:c2:8e:e9:2e:
0f:46:50:de:61:33:0a:6f:f4:1e:18:a6:2e:0c:6f:
a5:4c:d1:ea:f2:34:29:09:79:0f:68:ff:63:9a:fe:
c4:c6:fc:8d:6d:b6:64:32:bb:9c:a8:57:c7:c9:c4:
80:d7:9c:69:02:cb:73:d3:15:95:7c:1e:6c:c8:8e:
5a:64:c3:ea:08:13:6a:3b:5e:6f:50:0b:66:dd:4f:
15:82:2b:fe:09:4c:c0:fb:16:fc:3b:2d:c5:e9:91:
62:4f:e3:0d:d9:1a:c2:e0:83:24:0d:de:42:5a:3d:
fd:9c:3c:27:ea:b9:6f:82:35:a3:0b:2b:fa:b6:af:
a6:ef:97:01:df:a5:cf:a2:c8:c3:8c:2c:0a:19:d9:
82:b9:be:1b:8e:0b:74:db:94:07:3f:d6:65:29:75:
01:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:2B:7F:9E:DA:A0:A1:DE:4C:D6:A4:47:F1:C9:8C:D3:94:FC:2F:04
X509v3 Authority Key Identifier:
keyid:78:6D:64:EA:E4:A2:9C:66:5D:C0:65:D5:3E:3C:60:D3:C3:19:0D:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eG1k6uSinGZdwGXVPjxg08MZDXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/0846e2-337d-4f13-9fd3-651c939f30d6/1/ISt_ntqgod5M1qRH8cmM05T8LwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/0846e2-337d-4f13-9fd3-651c939f30d6/1/eG1k6uSinGZdwGXVPjxg08MZDXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.72.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:9c:43:a1:c9:a1:ee:e4:60:b4:21:76:9b:26:89:42:86:4b:
d7:df:32:88:d1:14:1f:5e:f9:cd:ac:a6:f5:02:6f:71:2f:9e:
4d:dd:3e:4f:b8:2a:ca:f4:0d:68:54:50:d0:54:73:bf:05:59:
c0:d7:e5:d4:f3:02:7b:70:42:ab:e4:7e:b8:17:c6:08:8e:85:
12:c8:1c:1c:0f:9e:c4:ca:07:5a:4a:c9:35:b1:17:35:29:66:
64:f5:9b:f1:4b:94:23:9d:e4:f8:95:75:38:09:a6:70:d6:7c:
56:fb:e6:e5:32:a1:b5:d7:ec:92:e7:e4:11:05:51:05:5e:7c:
4e:f8:7e:5a:5a:63:7f:38:11:7d:01:5d:a5:e8:09:77:04:60:
05:fb:ca:9c:ca:c6:6f:8c:38:1a:4c:68:73:de:13:62:53:d4:
f0:cc:5a:7a:d2:17:a4:14:e7:98:7b:8c:98:56:36:96:4a:7d:
28:16:f1:bf:b0:78:48:9f:a5:e9:b8:b1:20:10:88:08:3c:fe:
22:f8:ca:2e:53:ec:06:11:31:26:3b:80:dc:de:b4:18:91:0e:
dc:3f:36:13:0d:93:8f:63:52:82:e6:a9:a3:f6:46:74:40:a8:
d2:cf:aa:35:5a:2b:ab:d2:d5:81:16:a9:e7:40:00:dc:c6:fd:
8f:75:09:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:09 2024 by rpki-client on console-ams.rpki-client.org