Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7b13fe-f62f-4e93-821e-e33ae106b54d/1/nViAtxiR_UXNJk76QxXrjVVf978.roa
File: nViAtxiR_UXNJk76QxXrjVVf978.roa (raw, json)
Hash identifier: I7SNqQw8Mp5gMg+SHoFsRpMVJPsTIipDvAQ7e10elMs=
Subject key identifier: 9D:58:80:B7:18:91:FD:45:CD:26:4E:FA:43:15:EB:8D:55:5F:F7:BF
Certificate issuer: /CN=d3592aac489522d5db18fd6391e035a9778ea3b1
Certificate serial: 0481F782
Authority key identifier: D3:59:2A:AC:48:95:22:D5:DB:18:FD:63:91:E0:35:A9:77:8E:A3:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/01kqrEiVItXbGP1jkeA1qXeOo7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7b13fe-f62f-4e93-821e-e33ae106b54d/1/nViAtxiR_UXNJk76QxXrjVVf978.roa
Signing time: Tue 15 Mar 2022 14:51:33 +0000
ROA not before: Tue 15 Mar 2022 14:51:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24768
IP address blocks: 176.111.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75626370 (0x481f782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3592aac489522d5db18fd6391e035a9778ea3b1
Validity
Not Before: Mar 15 14:51:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d5880b71891fd45cd264efa4315eb8d555ff7bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3c:2f:77:db:f0:83:a6:ed:21:e4:33:45:6e:
44:f2:1c:61:3a:38:9b:94:ff:d1:fe:00:2e:2e:12:
a3:32:a8:b4:03:1b:00:8b:16:d6:bd:68:2d:4c:93:
18:54:31:a6:4c:27:28:23:b6:72:f4:91:2e:87:74:
01:c8:e9:45:f0:0f:d3:13:74:0e:f7:db:af:cf:01:
c0:2f:f3:96:12:7d:22:0c:f0:19:0d:e6:2c:12:52:
63:35:b4:37:47:6c:c0:40:7a:12:20:5c:83:9e:44:
db:30:27:42:5a:0b:ed:73:87:6a:37:c7:46:26:f4:
a2:e0:06:79:27:86:9c:5d:d0:dc:bb:5e:7f:00:87:
4d:3c:7c:0b:7d:43:51:e9:5c:56:05:26:86:0e:d4:
ab:39:09:7b:e1:5e:a0:6d:98:1c:bd:b9:2a:a5:ee:
56:34:32:98:65:94:b5:44:39:34:d9:79:4d:4c:17:
01:99:bf:8c:dd:b4:db:79:3c:77:1a:e2:05:a1:da:
32:95:7e:dd:7c:62:4c:69:0f:68:6a:1e:8a:19:43:
7b:2c:e2:5a:ea:41:59:7d:f7:b9:fc:9c:bd:4e:08:
e3:01:98:0a:09:2e:bc:ef:d5:15:d9:e6:3e:c6:0a:
1c:06:54:f2:62:59:ec:46:ba:fc:75:25:d6:48:09:
8d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:58:80:B7:18:91:FD:45:CD:26:4E:FA:43:15:EB:8D:55:5F:F7:BF
X509v3 Authority Key Identifier:
keyid:D3:59:2A:AC:48:95:22:D5:DB:18:FD:63:91:E0:35:A9:77:8E:A3:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/01kqrEiVItXbGP1jkeA1qXeOo7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7b13fe-f62f-4e93-821e-e33ae106b54d/1/nViAtxiR_UXNJk76QxXrjVVf978.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7b13fe-f62f-4e93-821e-e33ae106b54d/1/01kqrEiVItXbGP1jkeA1qXeOo7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.111.108.0/22
Signature Algorithm: sha256WithRSAEncryption
18:39:80:d5:84:49:92:dc:75:5a:5f:a7:89:96:14:19:d0:4f:
36:f3:33:06:65:90:fe:e3:c5:39:8b:bb:43:7f:1e:c6:85:09:
30:36:1e:64:ad:36:cd:82:9f:34:63:f9:b0:96:2d:ff:ac:ed:
29:ed:48:8e:d0:82:f4:55:70:c0:54:d7:4d:6c:f5:85:9c:ce:
4c:9d:b2:49:86:36:8b:2e:23:b6:c1:b9:2b:0c:f9:39:d8:51:
6d:21:bf:c7:38:78:b5:ea:09:59:2e:bd:ce:5a:44:4d:f8:b3:
b8:e5:8a:04:b0:4e:e2:ec:84:82:e1:39:6b:8c:26:46:4d:d3:
52:9c:d0:a8:4d:72:64:e1:72:df:d9:90:c4:74:8f:5c:8b:f0:
6c:27:a9:0e:fb:e8:f3:a0:c2:7c:45:da:d3:c1:f4:89:88:37:
3f:ed:64:c5:72:79:e6:a5:03:4b:35:2c:e8:84:12:55:b7:59:
c5:02:a0:bf:fe:81:fe:95:0f:7a:76:94:9f:73:2f:c6:fa:96:
e4:bd:f9:da:29:43:40:49:23:c1:fc:e4:01:36:a0:8d:86:66:
ec:e5:f7:b1:a8:98:44:b1:49:a0:df:f1:6b:ea:b7:37:15:13:
c8:82:ec:ae:50:95:1e:25:cd:a2:4b:0e:fb:bd:e8:71:1c:e8:
ca:5d:f3:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:05 2023 by rpki-client on console-fra.rpki-client.org