Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/n5TywZD_tWR3Coyfj76zoKeTJh8.roa
File: n5TywZD_tWR3Coyfj76zoKeTJh8.roa (raw, json)
Hash identifier: niKQH6N5tUwJqSJRqTkQnZ4g/jGlkBBqh4Mq/rzsmqU=
Subject key identifier: 9F:94:F2:C1:90:FF:B5:64:77:0A:8C:9F:8F:BE:B3:A0:A7:93:26:1F
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018349EB663A02E669EF9523FE368D2F6330
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/n5TywZD_tWR3Coyfj76zoKeTJh8.roa
Signing time: Sat 17 Sep 2022 05:28:27 +0000
ROA not before: Sat 17 Sep 2022 05:28:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9335
IP address blocks: 141.98.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:49:eb:66:3a:02:e6:69:ef:95:23:fe:36:8d:2f:63:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Sep 17 05:28:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f94f2c190ffb564770a8c9f8fbeb3a0a793261f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:88:88:2a:f2:4d:50:f8:9b:fa:ae:3a:6b:d5:
20:cd:b7:92:9e:c0:99:eb:5d:9c:de:b5:c1:42:89:
c3:fb:4f:b6:b3:04:38:a9:12:bc:7d:34:92:93:2f:
68:99:ec:63:fb:86:aa:34:bc:2d:de:82:0b:d8:d6:
91:13:c9:4e:6e:f0:8a:c1:57:f7:1b:04:3e:8a:c4:
24:95:d7:0f:23:7b:4f:f0:d8:1f:5d:1d:3a:b5:00:
85:31:9a:5c:a2:0f:96:ee:7a:26:85:ad:b9:39:96:
01:f8:29:0b:07:c9:8f:fa:51:e1:af:56:aa:cc:46:
07:d1:00:bf:21:7d:6e:48:54:b8:e5:28:4d:f8:18:
93:a2:a5:c9:6c:18:b2:14:0b:0f:37:29:b8:ea:9c:
20:cf:30:c4:01:92:23:2b:38:6c:a3:bc:b2:60:a0:
a5:d0:42:76:4d:e8:37:8d:d0:2c:0e:b3:2f:24:cd:
7d:6b:1b:c6:47:ca:ce:4a:99:a7:82:ea:80:14:71:
63:d9:a2:b6:5d:c8:d3:4c:7f:13:8e:02:0f:91:6b:
ad:eb:23:ee:9f:c7:bf:ae:c4:ad:b1:b2:68:60:3c:
5d:dc:f0:78:66:5c:6c:49:5d:d4:75:3f:f8:6c:06:
8a:c8:67:2e:c6:87:1c:20:52:f1:a5:98:a5:69:12:
25:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:94:F2:C1:90:FF:B5:64:77:0A:8C:9F:8F:BE:B3:A0:A7:93:26:1F
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/n5TywZD_tWR3Coyfj76zoKeTJh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.16.0/22
Signature Algorithm: sha256WithRSAEncryption
12:18:39:7b:83:c5:b7:b5:05:9c:25:ec:19:85:bc:ce:fd:bf:
04:bc:93:ca:1c:8e:fd:53:e8:fd:5d:70:85:60:b5:81:d5:c0:
c7:07:c5:36:15:c4:fd:9d:b3:11:a7:04:cb:97:9f:16:65:15:
d5:64:3f:0d:da:8a:60:d2:97:41:5e:ca:51:a2:e5:c8:63:15:
97:76:ca:77:4e:d9:c0:36:74:e1:d1:6b:83:dd:0c:bf:2f:8d:
83:df:d4:cc:f7:44:1d:a8:6c:24:dc:9c:eb:2f:e7:23:5f:81:
e0:90:e4:7f:e3:25:f0:3b:80:54:59:88:1a:4b:a4:00:2a:87:
35:ea:12:90:5c:fb:75:20:c3:a3:e8:65:69:78:fe:02:12:ea:
0f:f4:d3:5d:0f:de:8a:ae:ac:a7:b1:ea:58:2d:7d:58:82:bb:
41:11:59:95:06:eb:70:9e:d5:2f:61:7f:da:7d:33:31:df:9b:
fd:73:f4:49:e8:8e:60:35:7a:c9:00:37:f3:c7:2b:70:61:43:
23:21:d0:43:ad:f0:37:d4:e0:98:86:3c:27:d9:ed:a8:dd:a7:
97:de:d8:19:6c:af:d9:f6:66:ac:de:2a:8f:5c:9a:6c:ec:e1:
8d:2c:49:92:26:7d:a8:64:64:c8:c6:34:b2:05:5e:51:09:e3:
97:bf:8c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:56 2023 by rpki-client on console-ams.rpki-client.org