Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7247d2-0a28-4e4a-aa0c-fef41dd876c0/1/nwbIFE6Lz4vmM1voGXpmUM1mHCg.roa
File: nwbIFE6Lz4vmM1voGXpmUM1mHCg.roa (raw, json)
Hash identifier: 4pRERDIUIUNSMoocKJH92uD8K3dHfiRlC8r37Qn8ZlE=
Subject key identifier: 9F:06:C8:14:4E:8B:CF:8B:E6:33:5B:E8:19:7A:66:50:CD:66:1C:28
Certificate issuer: /CN=1759436869089cd9c7e6d02028f24a2fe49b86d5
Certificate serial: 34B40AC4
Authority key identifier: 17:59:43:68:69:08:9C:D9:C7:E6:D0:20:28:F2:4A:2F:E4:9B:86:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F1lDaGkInNnH5tAgKPJKL-SbhtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7247d2-0a28-4e4a-aa0c-fef41dd876c0/1/nwbIFE6Lz4vmM1voGXpmUM1mHCg.roa
Signing time: Wed 29 Jun 2022 10:32:02 +0000
ROA not before: Wed 29 Jun 2022 10:32:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57888
IP address blocks: 5.149.78.0/23 maxlen: 23
5.149.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 884214468 (0x34b40ac4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1759436869089cd9c7e6d02028f24a2fe49b86d5
Validity
Not Before: Jun 29 10:32:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f06c8144e8bcf8be6335be8197a6650cd661c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:69:af:29:96:3d:f9:2f:d9:e1:51:1c:28:fe:
fb:9a:30:1a:64:16:50:9e:67:74:4d:ff:36:d1:02:
2a:31:a7:13:07:fd:d9:b7:39:c2:e2:ff:f4:76:f5:
42:27:17:31:63:2b:34:aa:d3:d2:e6:b3:2c:9e:c7:
d4:28:ef:bb:cc:0b:de:b6:da:d2:a2:d4:85:8a:b1:
0c:7e:8c:50:39:aa:31:80:f8:8d:de:ae:23:a0:d4:
6b:7e:65:6a:7c:ca:85:d5:ec:7b:99:8a:e3:4a:d0:
f7:24:9a:a7:ed:41:4b:d3:a0:34:f0:b8:5f:10:cd:
6c:11:88:cb:90:92:5a:db:51:ae:41:f3:b6:7f:3b:
c0:37:c9:63:ab:6f:a5:b1:ae:7b:cd:f3:29:ea:36:
4c:4c:d1:f3:8a:6a:4f:e8:80:84:2c:47:cb:fc:6f:
73:df:98:d5:7a:f1:1a:7e:de:50:cb:08:a5:f5:1c:
af:a6:81:ab:da:60:99:63:ee:c4:6c:fa:8e:b6:f2:
57:a5:31:36:0b:ef:bf:c4:ce:65:65:c2:f0:58:88:
75:6a:a7:80:21:3a:c8:32:d4:5c:20:2a:da:d2:64:
da:68:23:a3:42:56:f8:7a:de:c2:b2:b0:f8:e9:13:
74:35:84:81:f0:e3:79:7c:68:f6:72:dc:09:50:ef:
a8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:06:C8:14:4E:8B:CF:8B:E6:33:5B:E8:19:7A:66:50:CD:66:1C:28
X509v3 Authority Key Identifier:
keyid:17:59:43:68:69:08:9C:D9:C7:E6:D0:20:28:F2:4A:2F:E4:9B:86:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1lDaGkInNnH5tAgKPJKL-SbhtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7247d2-0a28-4e4a-aa0c-fef41dd876c0/1/nwbIFE6Lz4vmM1voGXpmUM1mHCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7247d2-0a28-4e4a-aa0c-fef41dd876c0/1/F1lDaGkInNnH5tAgKPJKL-SbhtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.64.0/20
Signature Algorithm: sha256WithRSAEncryption
60:90:a7:74:7b:86:3c:7b:8d:f7:53:9f:47:0a:8c:86:94:5d:
07:d3:18:58:b0:4c:cf:ef:2f:71:40:c9:06:d7:f0:a5:f5:83:
14:0f:b4:21:d8:17:de:de:07:0c:a3:82:b3:d6:30:98:ef:8a:
87:50:ad:a9:01:65:70:6c:f2:f2:99:1c:bc:eb:ea:bb:13:82:
aa:fc:21:91:db:f3:74:8d:f5:e3:d1:22:9a:e8:ce:ed:ac:63:
af:93:04:12:93:94:75:50:fc:35:b7:b8:19:fc:b8:d9:f1:a6:
c3:06:57:f4:97:be:da:c2:c9:59:0b:ad:40:cb:27:d4:50:ee:
76:0c:40:e2:6c:f2:0e:5e:6f:0d:76:e5:7d:29:4a:8f:fb:a3:
37:eb:26:39:e0:43:a3:d9:a4:6a:d4:95:f2:78:fa:0a:5d:61:
9b:86:1c:6a:0f:43:09:14:c4:4e:1f:0b:47:81:e9:d8:87:14:
e6:ac:17:cd:6e:b7:b8:43:94:33:a9:6a:3d:13:33:a2:d4:0f:
72:08:21:34:6c:67:04:18:d5:57:10:ec:d1:d1:c0:db:9e:c7:
e2:1e:9a:6f:91:9b:60:b9:25:a2:54:c2:48:e9:06:06:f8:8e:
6f:3b:26:3a:45:0c:05:62:1b:57:e0:aa:ae:04:51:16:0a:2f:
d4:e0:08:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org