Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/977d70-6c87-409d-8ef8-027a743ba462/1/nEY_-YBRAcjzUJbO81aN_4_ExO0.roa
File: nEY_-YBRAcjzUJbO81aN_4_ExO0.roa (raw, json)
Hash identifier: tZmoL78rWF0eEJhEFL7qxQxkY0kPhhIZRoHqqSZhvLg=
Subject key identifier: 9C:46:3F:F9:80:51:01:C8:F3:50:96:CE:F3:56:8D:FF:8F:C4:C4:ED
Certificate issuer: /CN=f15cb9afc8a8670e1f116cbd21499c9f71215bc0
Certificate serial: 0182F4639449C3553B63071C28EE1D1ECC44
Authority key identifier: F1:5C:B9:AF:C8:A8:67:0E:1F:11:6C:BD:21:49:9C:9F:71:21:5B:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Vy5r8ioZw4fEWy9IUmcn3EhW8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/977d70-6c87-409d-8ef8-027a743ba462/1/nEY_-YBRAcjzUJbO81aN_4_ExO0.roa
Signing time: Wed 31 Aug 2022 14:52:22 +0000
ROA not before: Wed 31 Aug 2022 14:52:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207718
IP address blocks: 176.32.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f4:63:94:49:c3:55:3b:63:07:1c:28:ee:1d:1e:cc:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f15cb9afc8a8670e1f116cbd21499c9f71215bc0
Validity
Not Before: Aug 31 14:52:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c463ff9805101c8f35096cef3568dff8fc4c4ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f2:d0:e5:13:cb:b8:49:fa:d0:54:66:fa:bb:
aa:5d:6e:02:51:30:97:0b:9a:62:ac:e3:b6:35:df:
f0:e9:23:0c:2d:4e:38:68:21:ac:dc:9b:76:68:cf:
a4:37:0d:22:e7:82:aa:29:cc:74:0d:91:cd:49:db:
f1:b6:a7:8f:60:58:73:a2:b1:76:da:3e:43:aa:e5:
33:73:dd:5a:64:e3:56:39:6a:da:bd:18:69:36:3a:
2b:c1:ab:5e:f3:47:5d:84:72:ff:bb:8c:15:52:9c:
01:72:90:4b:0b:13:c3:9a:80:e5:ca:cc:8a:9f:cf:
c9:f8:35:a4:03:6b:ac:62:12:f4:b2:a9:c7:b5:70:
12:f1:bf:cf:6e:51:f4:e4:70:1f:11:d5:2b:63:fb:
50:c2:84:00:5e:9f:d0:a4:bf:d0:d9:e9:ae:0a:f1:
fc:0a:01:26:94:fe:2d:f0:08:2b:56:07:b3:59:5b:
7f:27:dc:a1:0e:83:e1:a3:51:65:2d:9b:be:6d:df:
ef:56:7a:80:c4:c8:25:c9:00:c2:6d:45:f7:95:de:
10:37:8b:39:40:b3:c0:ea:ad:a7:e7:2a:61:e0:2f:
e6:a7:c7:e7:1c:b9:df:9c:d5:c6:5b:c9:d0:92:d6:
9c:30:99:46:85:df:e5:a6:e4:f1:e2:be:44:9b:52:
fe:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:46:3F:F9:80:51:01:C8:F3:50:96:CE:F3:56:8D:FF:8F:C4:C4:ED
X509v3 Authority Key Identifier:
keyid:F1:5C:B9:AF:C8:A8:67:0E:1F:11:6C:BD:21:49:9C:9F:71:21:5B:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Vy5r8ioZw4fEWy9IUmcn3EhW8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/977d70-6c87-409d-8ef8-027a743ba462/1/nEY_-YBRAcjzUJbO81aN_4_ExO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/977d70-6c87-409d-8ef8-027a743ba462/1/8Vy5r8ioZw4fEWy9IUmcn3EhW8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.36.0/22
Signature Algorithm: sha256WithRSAEncryption
10:91:d6:0e:b1:56:e3:f4:88:32:97:0a:fc:ea:3a:e2:d3:a5:
75:ba:0e:25:89:9c:b6:36:37:a4:59:88:c8:eb:31:d5:c7:f7:
b2:59:80:a5:e9:53:31:e1:67:38:fc:68:75:99:c9:49:5a:34:
81:23:11:c4:0a:a9:fb:4b:bf:4b:4e:49:bd:9d:24:e4:f0:e1:
8f:91:8a:2b:0b:34:81:a7:97:c2:4b:fd:d3:c7:90:03:0d:92:
23:73:bb:c1:aa:77:e4:d4:00:4e:4e:49:1b:e9:fb:db:fd:ea:
8d:7d:93:2a:83:f0:7b:cb:ba:5a:76:24:dc:8f:9e:dd:b5:31:
15:7b:18:2c:14:af:43:9c:3b:6b:ea:11:22:7a:ba:87:03:31:
6b:49:6e:a2:a3:40:83:7e:80:7f:41:01:69:31:a7:48:f9:e6:
2f:bb:2d:03:9a:7f:a2:52:a4:ba:81:cd:8e:cd:74:0f:43:2f:
59:41:a3:da:20:c0:f6:2d:f2:95:b7:a2:47:fb:64:b0:53:09:
24:92:47:0d:0e:e3:55:77:27:fb:c9:a4:7a:b0:40:1f:e0:89:
7b:05:9e:1c:b4:ef:91:1d:02:33:72:2f:38:7c:09:f9:1e:76:
ff:c9:15:e0:9c:4e:2f:a4:a3:57:1d:29:79:7e:49:97:00:37:
61:89:46:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:34 2024 by rpki-client on console-ams.rpki-client.org