Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/_NxcezBj9623E_liesfDmRROjw4.roa
File: _NxcezBj9623E_liesfDmRROjw4.roa (raw, json)
Hash identifier: UP+UkSAafRkBNqp31x/OuZlKGiAoSCwQKQT6WT3fI1k=
Subject key identifier: FC:DC:5C:7B:30:63:F7:AD:B7:13:F9:62:7A:C7:C3:99:14:4E:8F:0E
Certificate issuer: /CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Certificate serial: 052B2295
Authority key identifier: 81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/_NxcezBj9623E_liesfDmRROjw4.roa
Signing time: Sat 01 Jan 2022 12:57:11 +0000
ROA not before: Sat 01 Jan 2022 12:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41229
IP address blocks: 195.64.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86712981 (0x52b2295)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81fa48f40bc84540c46bd23be9b90897aa184f4d
Validity
Not Before: Jan 1 12:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcdc5c7b3063f7adb713f9627ac7c399144e8f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:99:db:33:bf:40:4a:31:9b:3f:8a:fc:97:e5:
1e:46:d1:af:e1:1e:f3:0d:ca:75:44:09:f4:a0:8c:
fc:dd:44:73:d8:85:6f:52:04:92:46:ca:7f:09:95:
c3:46:48:d8:60:61:61:0d:5d:fc:c7:85:e9:af:55:
4c:13:ab:70:68:76:ad:3e:c6:43:c7:55:49:5f:d2:
4a:76:72:34:e5:7a:54:50:cd:0d:68:62:2d:9a:90:
24:f1:e4:31:b7:be:01:9d:05:86:c4:cf:62:bc:e4:
c2:a1:f2:71:3a:de:b9:fd:dc:26:49:c4:94:e1:39:
ff:f1:cb:0b:72:9c:9f:77:a8:25:8e:0b:10:26:23:
da:fb:05:82:ab:66:aa:4f:c8:af:98:1e:db:45:ad:
dc:7e:3d:a2:4f:e7:0d:75:53:fa:93:48:e8:be:75:
08:05:8a:83:71:67:3d:25:fc:27:98:ce:74:8c:fe:
31:c5:06:b8:39:76:5f:8a:51:dd:89:d7:41:65:39:
c8:a4:84:9b:17:f5:60:de:8e:b0:f0:2c:f3:88:95:
33:f2:4a:09:94:c0:38:1a:70:76:38:88:02:3a:3c:
ab:63:55:24:b3:c6:80:31:0b:63:47:81:b0:d6:cb:
98:8f:77:47:d0:d2:5f:9e:72:69:b8:88:69:25:2c:
86:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:DC:5C:7B:30:63:F7:AD:B7:13:F9:62:7A:C7:C3:99:14:4E:8F:0E
X509v3 Authority Key Identifier:
keyid:81:FA:48:F4:0B:C8:45:40:C4:6B:D2:3B:E9:B9:08:97:AA:18:4F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gfpI9AvIRUDEa9I76bkIl6oYT00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/_NxcezBj9623E_liesfDmRROjw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/146078-f9b2-4163-af1a-8e93cb5c5355/1/gfpI9AvIRUDEa9I76bkIl6oYT00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.252.0/24
Signature Algorithm: sha256WithRSAEncryption
33:ff:36:ac:de:d7:e9:fb:d2:9e:e1:dc:e8:74:a6:f2:59:5a:
53:9d:fe:15:b0:64:e7:2e:4d:9c:5d:4f:0d:48:b5:86:70:83:
e8:43:21:b0:38:a2:63:fe:8b:ec:9e:ae:d0:6d:5a:b8:cb:d3:
f4:7a:7d:61:86:76:99:c0:86:d8:0c:ee:0f:d9:91:25:aa:f5:
5e:a9:7a:3b:de:ab:07:6e:90:65:a8:18:56:e9:78:39:44:60:
cb:4d:cd:00:29:0c:2c:27:8b:65:7e:dc:3f:56:f3:13:98:64:
f3:58:ce:14:55:4c:54:b9:97:09:67:50:cc:b7:44:2e:d8:89:
ed:69:98:13:e7:6c:9a:fd:db:f8:3f:5d:ce:de:16:2a:27:d6:
96:b9:a5:37:3d:9b:ca:84:fb:6b:b7:05:95:71:f6:28:6c:f6:
67:a9:6d:52:ab:ca:b0:56:e9:53:df:32:1b:6c:71:e7:06:74:
04:b3:ef:21:17:f9:bf:4c:90:33:9f:a2:0a:5c:cf:d7:77:09:
f2:c5:e8:6b:1b:f1:8d:d6:16:67:9c:ee:c5:9b:11:8b:6c:de:
64:f5:de:a4:2d:05:cf:b1:1d:c0:ae:11:41:47:2a:90:4d:fd:
01:b4:f4:75:e0:6a:89:0c:54:6b:71:80:04:2c:43:31:59:14:
ab:33:8d:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:33 2023 by rpki-client on console-ams.rpki-client.org