Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/nFt3InGkbjUj7S3wQm0YstCae1o.roa
File: nFt3InGkbjUj7S3wQm0YstCae1o.roa (raw, json)
Hash identifier: ge17zjSsX++ojaiYMvED9X6MDDXl6MC+RxDVVqj1Dp8=
Subject key identifier: 9C:5B:77:22:71:A4:6E:35:23:ED:2D:F0:42:6D:18:B2:D0:9A:7B:5A
Certificate issuer: /CN=5ed99d49c4b0e46b2786842731e153485c8ac48b
Certificate serial: A6CA
Authority key identifier: 5E:D9:9D:49:C4:B0:E4:6B:27:86:84:27:31:E1:53:48:5C:8A:C4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtmdScSw5GsnhoQnMeFTSFyKxIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/nFt3InGkbjUj7S3wQm0YstCae1o.roa
Signing time: Thu 28 Apr 2022 12:37:01 +0000
ROA not before: Thu 28 Apr 2022 12:37:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1836
IP address blocks: 194.150.160.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42698 (0xa6ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ed99d49c4b0e46b2786842731e153485c8ac48b
Validity
Not Before: Apr 28 12:37:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c5b772271a46e3523ed2df0426d18b2d09a7b5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fc:53:b7:4c:0f:06:61:2e:f1:68:af:c2:37:
c3:dd:05:5c:b1:3b:2b:23:c6:47:4b:5d:c9:d8:fb:
54:b9:45:a1:92:65:45:da:6a:fa:e5:3b:7a:85:16:
9b:87:ae:c6:84:db:b4:33:89:8d:aa:06:8c:f0:22:
8c:e9:49:51:6c:80:8b:fe:dc:da:61:51:7c:b0:ab:
22:73:c4:a6:2f:90:9c:f3:8f:0b:82:4e:e2:29:cc:
93:1c:f8:53:dd:1e:c6:93:81:c3:24:06:c2:fd:03:
9f:75:12:bd:34:f9:39:b8:08:5a:13:87:b7:51:4a:
45:0e:60:fe:cd:d2:5d:3b:a6:fe:d3:1e:8b:30:7a:
9b:d6:dd:6e:f2:62:f9:2f:ef:f9:53:fa:35:c4:bc:
54:e5:13:61:c5:5d:aa:1b:4b:22:e9:db:93:b2:6e:
19:7c:dd:35:a0:23:ac:16:f2:d8:b9:9f:55:03:f3:
46:2d:86:3a:df:e2:12:1d:19:ec:70:fa:7b:46:8d:
81:2b:b4:49:4a:72:1b:5f:a2:3d:88:8e:bc:25:2c:
71:fc:40:b8:3a:a0:33:12:0c:6d:2d:d1:09:c2:ca:
e7:29:b8:f5:d1:6b:83:7c:fd:53:55:f1:1d:12:ee:
3e:f1:64:8e:39:cb:7f:49:fe:b4:59:32:dd:44:d5:
8f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:5B:77:22:71:A4:6E:35:23:ED:2D:F0:42:6D:18:B2:D0:9A:7B:5A
X509v3 Authority Key Identifier:
keyid:5E:D9:9D:49:C4:B0:E4:6B:27:86:84:27:31:E1:53:48:5C:8A:C4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtmdScSw5GsnhoQnMeFTSFyKxIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/nFt3InGkbjUj7S3wQm0YstCae1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/9b893e-7b0c-41aa-a951-90c3afc7c947/1/XtmdScSw5GsnhoQnMeFTSFyKxIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.160.0/23
Signature Algorithm: sha256WithRSAEncryption
09:db:57:6f:b0:82:8f:a4:46:a3:54:e9:f5:a8:07:cf:f0:c0:
3a:72:f0:68:e2:b8:ac:30:b0:87:d2:63:89:56:87:24:c2:8b:
6c:e7:41:c8:46:a9:d4:61:0c:5f:71:08:5f:19:fb:da:9c:b9:
4f:65:ed:92:de:de:e4:fc:a5:b7:3d:cf:32:7d:f4:74:20:52:
00:0f:d2:29:31:3a:9a:c0:06:1e:6f:7d:24:a6:82:4f:64:29:
1c:1f:83:9f:da:22:7f:ed:96:a0:9a:78:83:a9:33:01:fa:61:
09:52:54:a7:e3:38:f2:47:d8:6d:3d:ab:1e:91:7c:a8:3e:c3:
7c:d9:81:15:e6:6f:24:59:15:0d:c4:ca:80:85:72:e6:4a:fd:
29:69:d5:9f:f0:d3:15:1d:ec:bf:0d:c5:3c:d0:a1:6d:61:47:
0a:c3:61:88:7c:3f:96:96:70:84:7f:4c:0e:f9:42:62:fc:30:
15:35:e8:62:a7:97:7d:ab:27:59:a6:be:67:3d:53:b1:37:47:
f9:43:c1:85:98:d7:67:94:f5:c3:98:a9:5c:04:51:df:03:4f:
e1:31:55:10:27:07:b2:d4:f0:be:f1:49:a4:eb:f9:ae:0b:df:
4d:d3:d9:e9:21:b0:0d:2c:b4:6f:fb:12:0f:96:69:fb:20:94:
0b:27:05:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:26 2024 by rpki-client on console-ams.rpki-client.org