Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/NCRj_3-BYTFJWR0NYDaBW7l3Fq0.roa
File: NCRj_3-BYTFJWR0NYDaBW7l3Fq0.roa (raw, json)
Hash identifier: E1kA325Pn+e6Jsjr+oeJDhAve3PUMBUtMpUj6z7g8gU=
Subject key identifier: 34:24:63:FF:7F:81:61:31:49:59:1D:0D:60:36:81:5B:B9:77:16:AD
Certificate issuer: /CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Certificate serial: 018499987406B04CE1990AE3112F3088EE37
Authority key identifier: E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/NCRj_3-BYTFJWR0NYDaBW7l3Fq0.roa
Signing time: Mon 21 Nov 2022 09:50:15 +0000
ROA not before: Mon 21 Nov 2022 09:50:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5588
IP address blocks: 195.90.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:99:98:74:06:b0:4c:e1:99:0a:e3:11:2f:30:88:ee:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8f41f6b02b93f85d1a7b48b48cfa322f088f8
Validity
Not Before: Nov 21 09:50:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=342463ff7f81613149591d0d6036815bb97716ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:13:f2:16:46:53:73:9a:b6:c7:86:48:bc:64:
12:00:25:bd:e0:a8:64:2d:00:7d:b6:ef:af:f2:8a:
dc:26:aa:90:97:f1:dd:1b:49:58:5a:ed:f7:96:2a:
88:d1:da:72:e3:dd:39:4b:ef:71:24:20:72:d1:d5:
81:df:8a:d8:78:b9:33:72:a5:20:35:cb:4b:f5:72:
7a:ef:0a:87:2c:ef:ce:6d:dc:43:ea:c3:3f:82:d8:
d2:e2:5e:5e:11:1b:90:98:bd:ea:23:01:b2:4a:8a:
68:94:7a:e1:c5:fd:05:6f:3b:bd:fc:4e:a0:3d:aa:
8c:b7:0a:d9:c2:18:bf:3b:85:a3:0d:e9:6f:c9:1d:
0c:cd:3a:96:ee:80:34:8e:a0:34:1a:72:22:2e:ec:
8e:17:70:c2:29:92:a6:11:46:fb:00:0b:87:70:aa:
46:70:06:02:7c:2d:e9:68:86:06:a8:12:6b:49:c0:
30:10:11:a1:de:6d:b8:50:ab:78:07:d6:97:ed:fc:
de:7d:30:0b:ab:b4:e1:26:f6:43:05:cb:90:ed:fa:
b3:d6:8a:5e:c4:6c:19:fd:0b:8f:c1:60:b9:53:78:
b6:bb:16:5d:fc:18:3e:11:c2:bb:00:32:01:14:bb:
d2:4e:e5:39:34:53:61:96:0d:aa:79:e4:27:b0:a3:
69:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:24:63:FF:7F:81:61:31:49:59:1D:0D:60:36:81:5B:B9:77:16:AD
X509v3 Authority Key Identifier:
keyid:E1:E8:F4:1F:6B:02:B9:3F:85:D1:A7:B4:8B:48:CF:A3:22:F0:88:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ej0H2sCuT-F0ae0i0jPoyLwiPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/NCRj_3-BYTFJWR0NYDaBW7l3Fq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ba940-0078-4fd0-afde-537a2b0b4dda/1/4ej0H2sCuT-F0ae0i0jPoyLwiPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.90.98.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:16:21:96:75:f2:2b:3c:5a:68:f6:5c:ba:06:66:69:99:09:
d5:80:91:45:b6:02:45:64:4d:cb:7b:b9:85:3f:d4:e4:a0:54:
dc:82:96:93:11:33:31:c0:31:e1:60:80:7a:06:15:6d:73:ad:
7a:15:23:1d:cd:7e:14:95:6a:f3:13:8c:d9:7e:03:e9:73:34:
ef:9a:dd:9d:d8:fd:d1:d6:4d:15:1b:32:aa:ba:71:f7:69:d1:
d3:6d:81:78:af:c3:7c:ce:fa:20:c4:dc:fd:71:dc:74:d7:48:
79:c0:f1:5d:7d:be:ba:3b:6a:7c:67:19:be:8a:90:dd:1b:79:
2e:49:ad:e6:44:e9:f4:c0:08:8e:8f:8a:66:4c:1f:40:cf:e8:
39:bb:98:36:a4:7d:86:48:33:88:dd:96:bc:f9:cc:02:45:65:
52:93:f0:e6:57:4c:5b:9b:a9:94:bf:2b:ec:06:f2:87:91:cf:
e3:da:8f:c2:56:b2:45:95:46:91:92:c8:6b:ce:28:98:28:7d:
b4:cf:7c:cc:48:98:db:19:a7:38:80:5b:10:30:82:11:00:42:
60:f5:12:f8:50:ee:41:47:cf:42:cc:8f:85:14:bf:e8:c6:cc:
fc:36:53:e9:4f:73:45:ab:c9:85:56:cc:83:f1:0f:5e:0c:2c:
2a:c7:89:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:03 2024 by rpki-client on console-fra.rpki-client.org