Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/de9615-0bc0-4e5e-8318-fb1d992de001/1/nfxv_3CpGdLHt3hygkyicO-EQJM.roa
File: nfxv_3CpGdLHt3hygkyicO-EQJM.roa (raw, json)
Hash identifier: f0IwyfWwQhcep+bj/Z0pQcNKmiFocKmyZiR3w4FbjZ8=
Subject key identifier: 9D:FC:6F:FF:70:A9:19:D2:C7:B7:78:72:82:4C:A2:70:EF:84:40:93
Certificate issuer: /CN=aa8551e851e69db165c6c632af45f21715512939
Certificate serial: 0451E893
Authority key identifier: AA:85:51:E8:51:E6:9D:B1:65:C6:C6:32:AF:45:F2:17:15:51:29:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoVR6FHmnbFlxsYyr0XyFxVRKTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/de9615-0bc0-4e5e-8318-fb1d992de001/1/nfxv_3CpGdLHt3hygkyicO-EQJM.roa
Signing time: Sat 01 Jan 2022 04:58:16 +0000
ROA not before: Sat 01 Jan 2022 04:58:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 176.221.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72476819 (0x451e893)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa8551e851e69db165c6c632af45f21715512939
Validity
Not Before: Jan 1 04:58:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9dfc6fff70a919d2c7b77872824ca270ef844093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c3:ab:6a:be:bc:a9:42:23:ea:cf:55:23:2d:
eb:27:c6:21:1f:72:49:28:4b:de:19:42:35:ac:6f:
b3:ee:62:1d:61:6b:52:7c:23:11:19:fd:fb:1b:3e:
96:7d:23:ea:57:e4:a6:6f:7d:76:fc:3a:68:55:42:
16:7a:d3:0a:5b:fe:20:95:76:72:47:de:ed:7b:9e:
ba:5e:32:2a:7c:fe:fb:a4:91:0f:b0:12:3e:39:19:
20:b0:21:6b:3f:19:72:f0:e9:1c:0c:5f:ba:f0:3e:
f6:d9:97:23:0d:64:c8:5a:71:01:99:ea:e8:4c:3e:
85:23:6b:4c:ad:e3:5f:03:c1:51:fa:75:6d:0a:bc:
70:29:c2:d0:48:9b:fd:ba:05:18:9b:65:f4:a4:2c:
39:3c:4c:1f:89:c2:6a:74:c6:96:e0:4b:83:09:2c:
1f:c8:ec:8e:85:83:84:6d:bc:28:05:fd:c0:6e:24:
c6:06:07:9f:b1:7d:76:5e:80:ef:8f:4f:a3:e6:52:
46:8b:f6:d7:5d:43:c4:96:b0:9a:4f:2a:3f:4b:99:
b2:a5:93:e0:74:af:c9:82:56:dd:a1:89:5e:8e:98:
0b:3d:d9:c9:11:48:68:72:27:5f:9b:a6:3b:59:bb:
b2:11:68:7b:04:ed:67:d9:a3:29:5a:1d:9f:e4:0e:
2a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:FC:6F:FF:70:A9:19:D2:C7:B7:78:72:82:4C:A2:70:EF:84:40:93
X509v3 Authority Key Identifier:
keyid:AA:85:51:E8:51:E6:9D:B1:65:C6:C6:32:AF:45:F2:17:15:51:29:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoVR6FHmnbFlxsYyr0XyFxVRKTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/de9615-0bc0-4e5e-8318-fb1d992de001/1/nfxv_3CpGdLHt3hygkyicO-EQJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/de9615-0bc0-4e5e-8318-fb1d992de001/1/qoVR6FHmnbFlxsYyr0XyFxVRKTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.221.80.0/22
Signature Algorithm: sha256WithRSAEncryption
49:19:b9:c6:1e:c1:90:d1:81:28:74:b9:5d:f8:e8:fa:09:7e:
98:a1:cd:3f:10:06:d9:b8:81:50:c7:ae:ce:6d:1f:34:e5:50:
ef:0e:86:9d:8f:45:e6:b9:26:ad:96:a1:3c:89:0b:a5:bb:cc:
68:4f:3e:f1:42:32:68:87:37:ce:e3:19:36:ac:68:50:b1:e5:
81:c8:9a:01:9c:c2:48:85:10:26:29:53:e8:f7:77:85:95:70:
6c:23:34:6b:31:48:0b:a6:c0:2e:6c:9e:70:fc:ca:62:d3:4a:
ff:78:6a:13:9a:88:2c:8a:31:5c:1b:6a:36:8c:32:ef:60:b8:
88:a8:68:5c:20:99:36:95:9b:dc:67:02:56:b1:71:4f:29:a8:
a7:5f:28:a1:47:2c:3d:7b:08:f7:24:c7:0a:30:7a:44:a6:f2:
3a:52:91:83:34:d5:2b:83:96:0b:a1:7f:d6:c1:31:ff:2a:f9:
b3:1a:04:07:8c:d7:0a:e7:e7:69:23:b9:c6:c9:f5:6a:d9:e9:
0a:68:f9:42:09:ba:36:7a:1e:83:3b:df:3c:00:b9:76:f7:55:
b0:ac:41:ff:b6:47:01:9a:e8:f4:20:8d:9f:12:f9:dd:cb:4d:
86:c2:73:95:2d:51:21:2f:ce:a2:b2:5c:98:2b:ee:96:a8:c5:
dc:e7:5f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:31 2023 by rpki-client on console-ams.rpki-client.org