Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/5NmH_pi9Q2OCPBEdBmXHAOsN73Q.roa
File: 5NmH_pi9Q2OCPBEdBmXHAOsN73Q.roa (raw, json)
Hash identifier: H+XVHptsggYa1lk/ISjDTShU8PHs3uSlLyUDXdfBQi4=
Subject key identifier: E4:D9:87:FE:98:BD:43:63:82:3C:11:1D:06:65:C7:00:EB:0D:EF:74
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 0183146061D617C0D79CA5F3263FCE7AE89F
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/5NmH_pi9Q2OCPBEdBmXHAOsN73Q.roa
Signing time: Tue 06 Sep 2022 19:56:44 +0000
ROA not before: Tue 06 Sep 2022 19:56:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202623
IP address blocks: 141.101.91.0/24 maxlen: 24
2a06:98c0:3604::/48 maxlen: 48
2a06:98c0:3607::/48 maxlen: 48
2a06:98c0:3612::/48 maxlen: 48
2a06:98c0:3602::/48 maxlen: 48
2a06:98c0:3605::/48 maxlen: 48
2a06:98c0:1400::/48 maxlen: 48
2a06:98c0:3603::/48 maxlen: 48
2a06:98c0:360e::/48 maxlen: 48
2a06:98c0:3606::/48 maxlen: 48
2a06:98c0:1401::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:14:60:61:d6:17:c0:d7:9c:a5:f3:26:3f:ce:7a:e8:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Sep 6 19:56:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4d987fe98bd4363823c111d0665c700eb0def74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:41:96:5e:58:eb:64:8d:f0:5c:00:b7:44:82:
84:5e:6d:3b:64:09:be:54:43:c3:0f:e2:27:22:22:
68:3a:3d:74:83:5f:1e:a2:00:91:9b:45:dd:0d:a5:
5a:c2:d2:3e:3c:e4:50:91:0b:81:76:2b:89:0c:d7:
46:e8:64:e5:0f:53:39:3b:bd:be:22:da:10:a7:cf:
93:f5:bb:cf:0f:3f:81:83:4c:6a:c4:27:22:89:1b:
e0:09:1f:05:0a:d0:ec:7e:d8:bc:8f:c8:24:3f:b5:
86:cb:d0:c5:e5:79:1e:8a:56:52:d2:3e:3d:e9:72:
80:d1:b9:a4:51:96:f1:cf:b3:eb:12:4e:f0:0f:35:
79:9c:07:a3:17:d1:1d:6f:dc:c2:54:03:9c:49:fd:
e9:13:2b:c0:5f:fe:c4:8d:71:61:68:ad:9e:2b:97:
9e:72:b1:52:11:13:88:3d:28:5e:bf:a7:f1:aa:b7:
55:ef:d6:da:3b:0d:d3:d8:a8:59:a7:4a:7a:aa:06:
1c:e3:2e:89:25:be:48:f9:67:9d:d1:7b:a7:3a:9f:
32:2a:01:15:83:24:72:cb:f8:07:d8:d8:66:1e:31:
be:f5:f4:b8:41:43:c4:51:48:06:88:6c:3c:7e:4f:
83:a0:22:70:32:aa:c9:2f:a3:32:f8:f8:9a:5f:1b:
cb:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:D9:87:FE:98:BD:43:63:82:3C:11:1D:06:65:C7:00:EB:0D:EF:74
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/5NmH_pi9Q2OCPBEdBmXHAOsN73Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.91.0/24
IPv6:
2a06:98c0:1400::/47
2a06:98c0:3602::-2a06:98c0:3607:ffff:ffff:ffff:ffff:ffff
2a06:98c0:360e::/48
2a06:98c0:3612::/48
Signature Algorithm: sha256WithRSAEncryption
0e:33:c2:cd:45:40:46:ec:63:f0:0a:89:6f:a0:ce:ad:e9:4f:
d5:c7:d4:fc:58:6b:d4:29:91:8a:cf:c0:f6:83:69:a1:73:61:
0b:b3:c0:72:91:fd:6c:85:77:11:bf:8b:5a:f2:97:25:99:ed:
f5:a0:2f:0a:a3:27:20:29:64:c4:40:09:ab:09:0a:17:32:08:
64:9f:26:fb:5a:11:8f:ff:87:1d:62:ef:c7:3e:68:e2:36:ed:
77:34:68:3b:92:69:2b:e2:fe:80:45:74:ed:58:21:ba:c2:5c:
8f:b8:b8:08:e8:50:1e:89:17:45:40:fc:0e:cc:14:7c:62:7a:
46:49:f0:be:5e:a7:db:1d:19:31:c1:56:7c:de:8b:20:44:a0:
1a:90:db:e4:1e:ce:8f:59:96:ec:b5:da:95:f2:83:b4:99:0f:
66:7b:ec:fb:f0:fa:1b:e5:7b:15:3f:e9:59:82:44:15:ef:db:
6b:8a:cb:7b:97:27:5f:fc:1d:c6:db:71:1c:53:e5:a9:d1:af:
b5:44:02:76:3e:15:71:81:a0:53:38:06:4f:6f:ca:a0:f6:c0:
f4:9d:b8:08:40:6b:fc:18:d4:94:30:44:02:48:3e:60:c4:ac:
cf:69:5d:9e:ac:f1:f8:38:51:f7:16:e9:39:9d:9c:8f:b4:d8:
fc:8b:54:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:48 2024 by rpki-client on console-ams.rpki-client.org