Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/323add-1d87-416a-bd05-1e9848cb1745/1/nkNcoPU-j-N96od3Nj14kNAO9fg.roa
File: nkNcoPU-j-N96od3Nj14kNAO9fg.roa (raw, json)
Hash identifier: Wyyf0al9poYtqTnRLsYkfAdr35lOQBMMfQLs+ry5sug=
Subject key identifier: 9E:43:5C:A0:F5:3E:8F:E3:7D:EA:87:77:36:3D:78:90:D0:0E:F5:F8
Certificate issuer: /CN=2e6d235bfd2bb77d9886b14cb10dc49c42082353
Certificate serial: 08AC168D
Authority key identifier: 2E:6D:23:5B:FD:2B:B7:7D:98:86:B1:4C:B1:0D:C4:9C:42:08:23:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lm0jW_0rt32YhrFMsQ3EnEIII1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/323add-1d87-416a-bd05-1e9848cb1745/1/nkNcoPU-j-N96od3Nj14kNAO9fg.roa
Signing time: Sat 01 Jan 2022 02:56:16 +0000
ROA not before: Sat 01 Jan 2022 02:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50157
IP address blocks: 62.76.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145495693 (0x8ac168d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e6d235bfd2bb77d9886b14cb10dc49c42082353
Validity
Not Before: Jan 1 02:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e435ca0f53e8fe37dea8777363d7890d00ef5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c4:9a:13:2b:15:35:25:d7:a0:7e:3b:a6:b5:
62:27:5a:85:63:12:27:1e:73:54:98:91:ae:18:8b:
6c:98:73:57:7e:43:e7:02:ee:87:4e:cb:42:db:1b:
8f:58:c1:42:6e:50:0b:fe:43:a4:d1:bd:0c:ea:95:
0a:c2:f4:b4:c0:a7:0b:60:e2:7a:1d:48:5e:ac:55:
9a:8b:39:1d:87:37:08:2e:39:7d:94:de:00:67:6b:
f7:17:26:c7:a2:31:7e:a8:ba:2f:e3:a2:3c:d8:cf:
f9:fb:6e:d7:9b:5a:a7:e2:9b:2e:c6:25:5d:13:66:
10:c5:b0:81:7b:79:45:9a:9a:7a:af:6b:d2:cf:ba:
ab:35:eb:c5:0b:51:c8:08:07:0f:47:f7:66:78:9d:
44:c6:2e:2d:47:7d:1d:5c:20:dd:1b:1e:70:d5:86:
91:d6:da:11:71:d5:a7:a2:31:d1:b5:ff:48:f2:0a:
18:21:b4:f8:8d:cd:30:bb:39:16:66:15:46:6e:63:
36:b0:f7:99:a2:e3:fc:67:de:e4:f0:02:53:bc:89:
43:3d:64:6a:60:d1:3c:35:f0:45:f3:c7:d7:a7:2f:
29:f1:01:fd:9b:1f:6c:9c:6f:46:a9:52:a7:a9:4f:
46:eb:24:12:cb:fc:96:b1:4c:c3:f6:5b:1c:d0:45:
3b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:43:5C:A0:F5:3E:8F:E3:7D:EA:87:77:36:3D:78:90:D0:0E:F5:F8
X509v3 Authority Key Identifier:
keyid:2E:6D:23:5B:FD:2B:B7:7D:98:86:B1:4C:B1:0D:C4:9C:42:08:23:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lm0jW_0rt32YhrFMsQ3EnEIII1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/323add-1d87-416a-bd05-1e9848cb1745/1/nkNcoPU-j-N96od3Nj14kNAO9fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/323add-1d87-416a-bd05-1e9848cb1745/1/Lm0jW_0rt32YhrFMsQ3EnEIII1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.121.0/24
Signature Algorithm: sha256WithRSAEncryption
be:c2:00:c6:10:81:74:6d:49:05:eb:2b:cf:3e:ff:c0:de:0e:
10:e0:d2:3c:b8:e7:c8:ea:ff:68:71:14:aa:6b:71:9f:ec:f5:
aa:29:58:46:4c:75:c6:b9:9f:4e:dd:72:eb:0d:ea:ab:55:59:
58:59:30:23:d3:bc:90:82:8e:a0:c6:8c:fa:b9:42:5b:79:ce:
df:2a:7b:73:11:48:b2:9a:d9:94:3f:a6:4c:d2:be:c4:c0:2c:
05:23:d3:77:ed:a4:47:c1:a0:7e:31:6e:4f:59:ea:43:ee:e7:
be:76:9b:c1:12:a1:fc:e0:34:4d:8d:29:72:30:a6:f7:65:e3:
1d:ab:57:c7:74:3b:49:f6:15:b9:3d:b4:c5:6a:6d:da:4c:c9:
5c:06:12:cc:79:0e:e6:bf:dc:81:e7:97:21:c5:e1:26:d6:19:
b4:2a:a1:fd:1b:bc:4a:03:6c:42:32:57:b0:c4:9c:6d:1c:54:
17:84:70:d8:27:ae:9c:c2:d9:39:81:e9:c8:16:66:a2:23:ea:
22:71:bf:f9:59:db:87:e4:4c:4e:3a:8b:8f:16:2a:30:3d:ae:
fd:52:a0:cc:fb:28:67:19:f2:ba:37:ef:78:85:d5:21:ce:3c:
d2:d1:73:f3:a9:e0:f0:f7:31:e6:5a:ae:ed:dd:ad:14:f6:80:
48:52:73:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:09 2024 by rpki-client on console-ams.rpki-client.org