Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/nIFKPK0Q58C3-5Jf8kBuDM3-QGs.roa
File: nIFKPK0Q58C3-5Jf8kBuDM3-QGs.roa (raw, json)
Hash identifier: AQIpCfYJyqCpOrJxk9qSN0pViO4te/oX+gKCKKhiJWQ=
Subject key identifier: 9C:81:4A:3C:AD:10:E7:C0:B7:FB:92:5F:F2:40:6E:0C:CD:FE:40:6B
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1C6E6C26
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/nIFKPK0Q58C3-5Jf8kBuDM3-QGs.roa
Signing time: Fri 14 Jan 2022 11:35:00 +0000
ROA not before: Fri 14 Jan 2022 11:35:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 195.178.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476998694 (0x1c6e6c26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 14 11:35:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c814a3cad10e7c0b7fb925ff2406e0ccdfe406b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:99:e9:2f:98:ef:d7:54:6b:c6:cb:00:ec:2f:
a3:ce:43:0f:a8:d2:e1:2a:dc:13:84:49:49:08:14:
b8:73:74:8f:6e:3f:d7:76:3f:29:62:8e:64:8f:a4:
68:05:bf:58:8d:48:53:49:f7:c2:c0:2a:79:4a:f9:
bb:15:99:34:ec:55:45:8b:83:7d:45:9c:59:57:62:
cf:d2:61:d2:61:f2:a5:e8:7c:ea:68:1f:7e:2b:26:
1a:b9:1d:fa:ba:e2:9d:70:91:fb:9e:b9:59:65:c0:
7d:83:3c:08:bf:3f:0c:fb:89:76:eb:e0:d4:f1:2e:
6f:1d:1f:b1:8a:07:7f:a8:19:ad:f9:a2:55:81:e6:
ea:2f:16:5b:26:f7:de:a5:f2:be:5b:4f:4e:2a:e2:
1d:59:3e:96:bc:14:bb:40:92:25:fa:d4:e4:70:4c:
fa:82:bb:25:40:d9:60:17:85:2f:0e:cc:74:a7:85:
53:77:c4:63:84:e1:06:a6:ec:af:7b:96:56:3c:7d:
78:c9:4b:60:c2:7a:cb:b8:49:cd:8b:83:de:be:4c:
08:ea:2b:4c:7a:61:ce:ec:11:31:f7:fd:9f:d9:20:
ed:8d:c4:27:02:1a:e5:0a:37:b2:61:6b:d9:22:11:
c7:57:fe:7c:5f:7a:df:32:d8:8a:0e:93:50:21:44:
09:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:81:4A:3C:AD:10:E7:C0:B7:FB:92:5F:F2:40:6E:0C:CD:FE:40:6B
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/nIFKPK0Q58C3-5Jf8kBuDM3-QGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.159.0/24
Signature Algorithm: sha256WithRSAEncryption
86:bf:0c:f5:02:e0:92:6f:d5:66:5f:57:b5:dd:42:af:3b:fb:
51:00:04:86:14:a3:eb:bd:ba:e7:2f:bd:96:a3:4a:df:56:cc:
d5:f5:15:15:f1:14:e7:c4:b9:3c:72:0f:c5:d9:24:d7:b0:7b:
ee:37:d2:6e:31:ba:0e:42:a3:9f:7f:fa:1b:a1:2c:3b:b0:e2:
79:84:15:4f:30:89:28:be:00:c4:72:cc:3a:ab:14:84:7c:69:
0a:12:1d:b8:58:bc:5b:da:e5:8b:0b:73:a8:53:38:0d:63:bd:
29:24:38:e3:ec:19:b5:3b:b3:7b:07:47:4e:f8:22:8b:fc:21:
3f:a3:f3:f1:c7:f8:8a:87:92:d4:85:13:28:07:7b:49:fa:ef:
46:5d:b2:46:15:1e:4c:a1:cc:31:37:78:17:ce:df:51:73:1b:
75:99:af:03:de:e1:45:56:51:5e:38:b8:d2:22:48:cd:b5:30:
d4:b1:5e:d1:6d:06:b1:16:18:c1:f0:a6:2b:4d:32:92:6c:22:
49:cd:ca:4d:c8:15:0e:8c:99:79:63:3a:c9:42:9c:9d:24:55:
49:dc:af:84:95:5a:18:b5:bc:1e:ab:f8:74:41:9d:af:04:ed:
82:d8:84:03:47:f0:a9:f2:eb:b4:4c:26:78:ca:87:c6:59:b2:
fa:fc:51:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org