Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Nfi0jK3yjX1GFPTnO9ovZTCrjSg.roa
File: Nfi0jK3yjX1GFPTnO9ovZTCrjSg.roa (raw, json)
Hash identifier: DB0wDm6RPnNlYTUdCwnLk8bZZV7gSzQTR9eQOiAXDCk=
Subject key identifier: 35:F8:B4:8C:AD:F2:8D:7D:46:14:F4:E7:3B:DA:2F:65:30:AB:8D:28
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 17DA6C7B
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Nfi0jK3yjX1GFPTnO9ovZTCrjSg.roa
Signing time: Tue 05 Apr 2022 14:55:49 +0000
ROA not before: Tue 05 Apr 2022 14:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59941
IP address blocks: 141.101.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400190587 (0x17da6c7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Apr 5 14:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35f8b48cadf28d7d4614f4e73bda2f6530ab8d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:92:ce:ee:16:c1:9d:1a:1a:b0:07:1e:8c:95:
6b:7a:38:48:5c:1f:40:0c:1a:48:74:d6:69:b7:b7:
85:25:65:60:d4:48:d2:bf:79:a1:0f:5b:e2:2c:5e:
b0:89:70:9d:c7:f7:50:f9:25:6a:f3:41:a0:a4:03:
81:00:52:6d:5a:78:ae:70:3c:41:75:7a:21:79:7a:
1c:91:a5:4a:e7:00:87:ea:0c:01:a5:6f:c1:c1:09:
b2:87:0f:71:00:74:b1:a7:f4:2e:d8:b6:7d:02:87:
1c:12:f2:0b:d1:54:56:ec:18:bb:09:13:cb:00:be:
c6:40:5e:09:ca:38:7a:81:77:91:0a:df:65:2f:cc:
31:4e:c4:8a:21:02:5e:a3:8f:31:ab:98:e1:22:fe:
63:7c:d6:b3:94:78:fe:7e:61:65:89:61:d0:ee:09:
82:86:9d:a9:e2:b6:d0:38:dd:f9:22:43:89:e1:ba:
29:ce:55:b1:8c:9b:ed:8a:97:b6:ac:bb:ec:4e:ba:
09:1f:ef:89:21:e8:85:68:9c:a5:b8:1f:42:7c:41:
e7:2a:36:25:f4:75:e5:2e:96:c2:c6:ce:3a:26:75:
03:a1:58:8c:ed:47:d2:d3:3d:0e:0a:e3:6b:d6:21:
3a:a7:3b:e5:69:71:ec:7c:49:3a:ab:66:f6:d1:42:
0a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F8:B4:8C:AD:F2:8D:7D:46:14:F4:E7:3B:DA:2F:65:30:AB:8D:28
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Nfi0jK3yjX1GFPTnO9ovZTCrjSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.251.0/24
Signature Algorithm: sha256WithRSAEncryption
60:d0:e2:0f:08:f8:40:4e:d7:11:25:00:fd:c1:de:34:d6:52:
02:3f:21:e0:08:79:52:6a:3a:98:11:19:d3:08:7c:d1:c6:98:
ed:1c:bb:e4:18:d7:ec:2a:ca:cc:b6:2b:1f:5a:7f:08:9e:0c:
7f:30:d2:82:3b:63:8f:08:dd:03:bd:72:98:75:ec:37:ef:65:
0a:f6:25:3d:d2:8f:23:03:da:90:46:4b:c0:01:cb:e2:eb:ea:
66:a0:ae:6f:7f:a9:b5:9b:f6:57:84:f7:43:6f:c5:4e:ae:81:
23:be:c7:4b:ea:ef:00:ae:08:27:f3:6d:05:b8:83:c5:d9:e3:
85:12:ea:d3:4c:aa:eb:1e:c4:32:af:6b:62:fe:fc:55:e6:2d:
0f:45:34:b7:1a:0d:4b:8d:11:33:f4:99:db:20:6e:40:eb:48:
fe:24:4b:a1:85:53:a6:33:a9:7a:51:75:0c:d0:b7:de:d7:ab:
b9:05:a0:31:1a:be:3c:0c:37:e3:75:f7:6c:dc:d8:3e:31:80:
9b:10:2d:4d:e6:38:d4:c2:4c:df:17:7f:c7:34:6e:2a:91:0a:
6c:33:10:cd:29:44:10:4f:72:79:0e:81:58:d8:86:c5:b6:6e:
97:be:80:40:de:21:e1:c0:23:37:2e:e3:8f:ea:8b:52:e4:57:
9c:cc:36:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org