Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/nkYoPLCCT4rMi3cV8g_WK16EiH8.roa
File: nkYoPLCCT4rMi3cV8g_WK16EiH8.roa (raw, json)
Hash identifier: Ytr63+w7vVIYHke4JGc7sFt+WAf7wp4rq1n3u0VFHEI=
Subject key identifier: 9E:46:28:3C:B0:82:4F:8A:CC:8B:77:15:F2:0F:D6:2B:5E:84:88:7F
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 014CBA
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/nkYoPLCCT4rMi3cV8g_WK16EiH8.roa
Signing time: Thu 28 Apr 2022 10:04:53 +0000
ROA not before: Thu 28 Apr 2022 10:04:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8930
IP address blocks: 193.47.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85178 (0x14cba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Apr 28 10:04:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e46283cb0824f8acc8b7715f20fd62b5e84887f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e7:4a:e7:27:14:21:94:28:4a:b6:b1:9a:34:
ee:1c:6a:b2:b4:3e:f4:03:d9:ed:fe:21:5c:3c:f0:
67:fd:9d:12:9f:5e:27:94:73:17:0b:27:79:f9:3f:
39:d2:34:e5:5b:ff:01:5b:80:91:bd:24:9b:ac:2e:
f6:d5:c9:5e:3d:bc:ec:10:99:0a:c2:29:c7:87:9f:
56:ea:cc:2c:29:cc:c3:51:04:aa:33:41:a2:f9:4d:
f3:70:e4:be:8f:23:d0:81:f0:0f:c7:0d:95:37:69:
40:6f:76:4e:d6:0a:04:d4:a3:b7:06:40:1f:a1:91:
c0:a6:9a:d0:28:cf:3c:7f:98:5b:4c:34:ba:33:b9:
9c:62:f1:ec:e1:28:fe:b2:8b:98:6b:b3:3d:2d:4f:
9d:d0:87:72:77:1d:6a:47:88:84:a0:ea:c3:8a:72:
fc:10:8b:d1:4a:d8:65:37:8b:1b:57:dc:cd:a3:72:
f9:9c:22:1b:cf:9e:d9:59:d7:03:8d:3f:52:b3:93:
a7:c7:4a:4a:da:08:6f:99:8d:cd:43:b8:d2:e6:3e:
60:82:9e:cb:c0:ec:a8:0b:5f:d8:d1:48:a5:d1:e7:
96:84:f6:6e:d3:32:cc:16:e0:3b:fd:34:83:04:07:
71:cf:74:c4:37:64:d1:bf:be:1b:3f:1e:69:d7:9f:
fb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:46:28:3C:B0:82:4F:8A:CC:8B:77:15:F2:0F:D6:2B:5E:84:88:7F
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/nkYoPLCCT4rMi3cV8g_WK16EiH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.101.0/24
Signature Algorithm: sha256WithRSAEncryption
79:e7:be:06:0c:48:11:7d:3a:d2:32:00:56:cd:03:48:98:91:
bb:55:c0:16:ce:0b:f1:cd:12:49:1f:49:11:e6:5f:a0:5c:2d:
50:36:41:d4:3b:e2:74:13:d1:69:cf:1e:62:25:61:a4:ec:d6:
cc:46:d8:23:4e:80:84:4a:d5:93:d3:d5:56:63:09:80:dc:01:
5b:3b:e2:90:35:28:19:b8:63:b6:55:22:b8:44:6e:2f:af:1b:
53:66:02:51:69:cd:eb:64:24:80:5d:cd:64:89:4a:76:c0:54:
f2:b9:59:2f:0b:e2:96:d8:78:19:9a:3e:de:db:f5:c8:39:62:
de:de:e1:97:6b:2a:61:51:50:79:73:a3:c9:f0:2c:5b:b7:7c:
18:30:cf:47:86:c0:ce:e5:37:ef:6a:5f:ea:0e:dc:31:5c:0a:
9c:25:b8:a4:52:21:13:70:b7:28:15:98:18:b7:c1:fc:e9:3e:
08:3b:0d:1e:b8:ef:43:43:b4:c5:ca:f9:b7:b9:dd:4c:6a:08:
a1:08:83:ba:56:4d:f8:5c:9d:16:1c:1a:45:05:24:a9:b4:da:
9f:d5:a3:60:fc:51:ff:1f:79:7d:8f:63:9a:fd:0b:09:1d:17:
3d:21:2e:05:90:97:99:b7:01:49:32:88:87:01:5b:98:f0:b5:
c0:27:ff:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:46 2024 by rpki-client on console-ams.rpki-client.org