Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/N6CPaX35T4zWK9BtD-6UO8cwnjY.roa
File: N6CPaX35T4zWK9BtD-6UO8cwnjY.roa (raw, json)
Hash identifier: g6leQdAZHKB6ICv9Mr+zaAbhlNodeqhon+pds8ui6So=
Subject key identifier: 37:A0:8F:69:7D:F9:4F:8C:D6:2B:D0:6D:0F:EE:94:3B:C7:30:9E:36
Certificate issuer: /CN=82fa25b2fcb1468114b738928ab20d8761bf8831
Certificate serial: 01849FF358D8A80F35BCFAF31BDE94906E4B
Authority key identifier: 82:FA:25:B2:FC:B1:46:81:14:B7:38:92:8A:B2:0D:87:61:BF:88:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvolsvyxRoEUtziSirINh2G_iDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/N6CPaX35T4zWK9BtD-6UO8cwnjY.roa
Signing time: Tue 22 Nov 2022 15:27:16 +0000
ROA not before: Tue 22 Nov 2022 15:27:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210043
IP address blocks: 155.140.82.0/24 maxlen: 24
155.140.91.0/24 maxlen: 24
159.50.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9f:f3:58:d8:a8:0f:35:bc:fa:f3:1b:de:94:90:6e:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82fa25b2fcb1468114b738928ab20d8761bf8831
Validity
Not Before: Nov 22 15:27:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37a08f697df94f8cd62bd06d0fee943bc7309e36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5c:a2:27:4c:c6:74:5c:a4:1d:85:c7:e3:bf:
9f:d4:02:c3:08:5a:32:2b:3e:69:35:75:a6:10:26:
18:f1:53:51:40:d3:c2:ef:94:5a:89:34:61:c4:3b:
f2:8f:6e:44:2e:b4:be:6b:7f:94:8e:29:33:0f:80:
01:1d:85:0c:a1:ca:53:9b:d1:37:50:db:f9:c6:99:
a8:ae:2a:30:38:4e:86:ea:db:0a:6e:59:6e:b1:8a:
c8:c6:3c:c7:63:77:46:88:ea:db:d9:52:28:b7:8c:
53:b1:1e:63:fb:08:09:6f:20:8c:af:4f:74:f3:f6:
44:3a:a4:20:83:4b:fd:7f:4f:a7:cb:e1:6b:d8:bc:
51:d1:15:a6:42:93:d5:9d:93:24:8c:ea:4d:f1:40:
07:6a:73:da:04:ec:9b:81:38:77:97:6c:0d:07:27:
6e:1f:63:b9:72:e2:1e:18:1d:d3:d4:15:a5:f9:47:
71:90:91:41:4f:2f:3b:76:05:07:8a:49:41:f2:2b:
20:bf:36:fb:ad:55:56:eb:0d:09:28:fe:cb:8c:ae:
8d:c4:b7:e7:4b:77:69:81:9a:0a:34:e2:e3:8b:9d:
6a:a9:4c:c4:9e:0d:5f:9a:fb:50:90:8c:47:8e:94:
bf:94:d9:d4:26:b0:1b:02:8c:13:f5:da:c7:f0:6a:
e3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A0:8F:69:7D:F9:4F:8C:D6:2B:D0:6D:0F:EE:94:3B:C7:30:9E:36
X509v3 Authority Key Identifier:
keyid:82:FA:25:B2:FC:B1:46:81:14:B7:38:92:8A:B2:0D:87:61:BF:88:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvolsvyxRoEUtziSirINh2G_iDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/N6CPaX35T4zWK9BtD-6UO8cwnjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/gvolsvyxRoEUtziSirINh2G_iDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.140.82.0/24
155.140.91.0/24
159.50.174.0/24
Signature Algorithm: sha256WithRSAEncryption
38:1d:67:82:f3:4b:a6:05:84:71:37:de:9b:1a:ba:da:ba:fc:
7f:1c:38:ba:d9:ae:0d:e5:f7:cd:2d:07:83:25:cd:86:01:0c:
f6:75:88:48:ae:d8:9a:4c:53:0b:24:8f:86:fb:6b:b5:99:23:
7b:c8:c5:c4:6e:b6:df:d3:4a:8b:da:d3:79:c2:41:55:a4:2e:
99:13:4f:b8:4f:09:f1:f0:23:61:9b:68:db:98:20:7c:fe:90:
16:9f:8b:0b:78:db:01:da:41:f3:ab:3c:01:b4:db:91:6e:7e:
f8:90:e2:51:9c:d2:57:65:60:75:2f:a0:f5:4a:88:94:19:dc:
cc:2a:63:6f:74:65:3d:5c:be:6e:2b:1a:57:6b:81:e5:59:73:
93:9d:dc:64:1c:4e:3e:bc:5c:cc:ae:1b:06:f2:8b:ca:27:6d:
d0:2d:de:5d:ba:4a:c3:a6:90:be:80:f5:5d:cd:3f:69:29:c0:
55:7f:f1:91:b8:8a:b0:3d:65:d7:ba:c7:7f:89:3d:34:b4:1a:
44:67:a0:0c:21:ff:52:15:da:da:02:94:a3:58:a0:59:55:ac:
39:fc:cb:92:f9:4e:72:38:d6:a8:b1:23:14:1a:29:49:e4:65:
a4:c7:45:79:05:31:77:b2:28:e0:6c:20:55:5d:83:3c:83:9c:
41:69:a6:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:28 2024 by rpki-client on console-ams.rpki-client.org