Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/NrhBYQn9Mgb69S2ABCd2ekdpY0M.roa
File: NrhBYQn9Mgb69S2ABCd2ekdpY0M.roa (raw, json)
Hash identifier: pvQTNDgrpYcF7o1sNVFZwh8b+8xGWyqh285kqoFv51Q=
Subject key identifier: 36:B8:41:61:09:FD:32:06:FA:F5:2D:80:04:27:76:7A:47:69:63:43
Certificate issuer: /CN=0011400d548fa21af819a0c6e23e77a6012eb5e9
Certificate serial: 0726649E
Authority key identifier: 00:11:40:0D:54:8F:A2:1A:F8:19:A0:C6:E2:3E:77:A6:01:2E:B5:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ABFADVSPohr4GaDG4j53pgEutek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/NrhBYQn9Mgb69S2ABCd2ekdpY0M.roa
Signing time: Sat 01 Jan 2022 06:58:33 +0000
ROA not before: Sat 01 Jan 2022 06:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6798
IP address blocks: 91.199.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119956638 (0x726649e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0011400d548fa21af819a0c6e23e77a6012eb5e9
Validity
Not Before: Jan 1 06:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36b8416109fd3206faf52d800427767a47696343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9b:12:f5:22:12:c8:4b:5f:45:2a:f9:27:f3:
a3:1f:36:8b:fe:44:f6:0f:af:0b:36:0b:58:33:13:
01:b8:8e:1b:a7:93:5e:52:53:e3:08:c6:4c:31:1e:
87:bf:8e:0f:36:66:b4:a3:55:c2:03:80:77:63:d5:
cc:e4:48:ff:14:06:54:5c:83:a5:95:47:59:2e:60:
93:25:0f:fb:b9:45:bb:aa:6f:c5:fe:c1:13:c9:6e:
1c:2a:90:0d:a9:2a:19:cb:db:7f:5c:cf:75:7e:da:
6c:45:55:4d:57:98:de:22:06:0c:36:24:4b:f7:93:
37:df:67:12:60:91:05:d5:51:25:68:19:ce:80:e0:
89:16:9e:44:fd:13:5a:c2:b8:28:a8:a9:39:2b:ba:
75:7d:8d:a4:33:8f:2b:43:c4:70:3a:b4:db:59:0e:
4b:97:9f:b5:04:27:b4:ec:95:c4:6a:87:d7:09:b3:
4d:c4:02:ab:b7:8e:cc:42:49:4b:45:7d:04:d9:28:
ac:ec:4b:8c:88:ea:a5:74:2c:7e:6a:34:50:bf:fc:
24:75:43:39:29:61:9e:04:ff:5d:63:73:b6:23:eb:
ef:46:1f:2a:f3:a3:b9:60:06:9a:46:a9:08:d9:9b:
8e:79:cc:44:eb:72:dd:48:a6:8c:b1:f0:ef:28:51:
aa:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:B8:41:61:09:FD:32:06:FA:F5:2D:80:04:27:76:7A:47:69:63:43
X509v3 Authority Key Identifier:
keyid:00:11:40:0D:54:8F:A2:1A:F8:19:A0:C6:E2:3E:77:A6:01:2E:B5:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ABFADVSPohr4GaDG4j53pgEutek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/NrhBYQn9Mgb69S2ABCd2ekdpY0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/ABFADVSPohr4GaDG4j53pgEutek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.70.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:8c:8b:b3:7b:e7:e4:ff:56:d7:48:92:32:b2:8b:a7:4f:7d:
29:02:7a:30:8f:85:a2:cd:5e:1c:59:d3:25:da:ef:a4:e6:70:
be:eb:80:c9:5b:ae:b8:29:bc:57:ca:15:4d:cf:c3:17:4f:60:
db:dd:f4:e5:92:ef:7e:13:55:33:66:db:e9:30:c6:f3:ce:59:
47:76:92:eb:63:74:7e:b3:e2:05:7c:b3:e6:e9:1a:6c:a6:7a:
20:52:52:33:13:02:e5:7a:d2:46:89:c1:74:27:2b:d9:ad:d7:
17:87:05:ae:21:af:49:0e:5c:ae:db:43:a4:a8:a6:73:63:3e:
f3:5a:d5:79:86:98:3e:4f:5d:b5:8a:d4:59:d6:13:18:c9:5b:
3f:25:43:4b:42:89:0d:71:4e:8f:e1:d5:6f:82:57:5c:1b:b5:
25:4c:ed:4b:75:52:a3:87:b6:01:55:7c:4b:f8:27:fa:53:1a:
9d:a7:26:42:2b:f6:f0:f4:e1:98:bf:1c:2a:ea:21:3b:06:c2:
da:51:47:3f:0e:90:dc:3e:ab:48:00:95:5f:35:e7:fc:27:98:
a9:11:22:2b:15:9d:3a:c0:43:79:50:7c:61:54:e1:5b:ce:91:
85:1d:d8:be:38:7d:b9:a8:eb:bc:13:f0:84:68:05:96:05:fc:
70:59:7f:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:02 2024 by rpki-client on console-ams.rpki-client.org