Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/nKxNRsr9OVuwRuO4xEs7nYPxL0Y.roa
File: nKxNRsr9OVuwRuO4xEs7nYPxL0Y.roa (raw, json)
Hash identifier: fz8wQTYTCDLWQ/i3sTVdeLdtg1TdP5DUeP+c5xeJJMA=
Subject key identifier: 9C:AC:4D:46:CA:FD:39:5B:B0:46:E3:B8:C4:4B:3B:9D:83:F1:2F:46
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 01840ED38058FC2373077463425EE9BC0CD9
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/nKxNRsr9OVuwRuO4xEs7nYPxL0Y.roa
Signing time: Tue 25 Oct 2022 11:07:32 +0000
ROA not before: Tue 25 Oct 2022 11:07:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211439
IP address blocks: 86.62.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:d3:80:58:fc:23:73:07:74:63:42:5e:e9:bc:0c:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Oct 25 11:07:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9cac4d46cafd395bb046e3b8c44b3b9d83f12f46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b9:e4:a5:73:3a:28:a1:35:35:f0:24:9d:31:
4f:ed:fe:ed:92:d3:03:9e:d2:dc:94:bd:f4:5d:46:
af:b1:a8:83:c2:29:2e:3a:1b:9e:d7:fa:14:dc:ab:
66:45:80:f7:5a:38:41:99:6c:e5:0d:d1:4e:d0:7a:
f6:89:48:8b:72:37:2c:3d:9b:c5:2e:5c:99:00:40:
c8:b8:c6:d7:4b:ae:fb:0c:f9:81:3a:05:5b:e6:e8:
cb:63:eb:af:d4:56:5e:db:ec:65:8b:b7:e7:f7:84:
78:97:de:9a:05:a0:59:ab:34:0b:d6:a8:b6:55:65:
d8:f2:f0:1c:a5:f5:73:43:3f:75:fb:98:50:d1:e6:
3b:63:20:83:f5:ed:b8:bf:28:45:6d:73:0f:83:76:
f2:fe:af:14:18:a4:ee:71:e2:26:8d:72:c7:75:b5:
4c:17:d1:e0:ed:f0:19:85:ee:0f:cf:61:5f:cd:92:
31:c8:ed:43:60:38:ec:cf:8c:3d:fb:f2:ee:e7:c5:
a0:30:44:0b:f8:58:d3:93:07:af:ce:f4:cc:a3:8d:
e1:0f:70:86:0e:10:97:74:0f:16:5e:65:d4:32:1a:
1f:2d:41:3e:22:da:93:d8:04:de:f2:62:33:01:d0:
8a:bb:15:c7:14:21:a6:25:bf:13:a1:b9:7a:aa:ce:
b9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:AC:4D:46:CA:FD:39:5B:B0:46:E3:B8:C4:4B:3B:9D:83:F1:2F:46
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/nKxNRsr9OVuwRuO4xEs7nYPxL0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.29.0/24
Signature Algorithm: sha256WithRSAEncryption
29:bf:ac:34:34:70:fd:99:23:a6:4d:78:38:48:85:ea:ae:87:
d2:9f:ac:c6:0a:19:26:67:3a:6f:8f:5c:3b:6e:70:bf:79:85:
f0:54:73:f7:45:14:0a:08:50:14:4f:f7:fc:e8:43:8e:97:d3:
fb:90:cd:3e:da:62:8c:01:de:fb:5b:2d:30:fb:92:8a:3c:1f:
4f:94:10:06:28:9d:b4:0f:55:f1:fb:e6:02:ab:b5:dd:8a:2e:
49:17:88:e5:0c:b6:05:12:54:fa:e6:5f:98:5f:68:d9:6b:df:
16:07:71:49:7e:d9:f2:04:83:ea:7c:10:3c:96:54:2f:c4:5a:
a8:8e:5a:71:af:7e:a4:12:ce:ec:81:39:a3:46:a8:f9:d8:6f:
10:9a:1b:dd:77:4c:fe:68:f4:8d:6e:a1:80:9b:1a:5b:dd:f8:
07:ae:4c:dc:bc:3f:9d:18:f3:81:85:54:8d:3d:29:8c:79:99:
35:64:7d:b7:be:f2:8f:94:94:d5:eb:20:37:b9:9a:e5:66:46:
be:fd:c3:b6:a2:97:85:66:b3:81:ef:1c:d8:14:45:cf:54:9a:
b6:65:66:1d:c6:c3:b6:db:57:e0:1d:3d:36:67:0d:95:57:d4:
74:5b:c1:d7:06:84:f1:25:70:40:0d:e6:fb:1e:c7:29:5f:46:
49:4d:65:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:39 2024 by rpki-client on console-ams.rpki-client.org