Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/nWxIzgZwLmtOBRLWkrPawY_9f2Y.roa
File: nWxIzgZwLmtOBRLWkrPawY_9f2Y.roa (raw, json)
Hash identifier: fS80ukIt71zB1NMBwAbtsSyFFWF75O1TXRwdNIMTTB4=
Subject key identifier: 9D:6C:48:CE:06:70:2E:6B:4E:05:12:D6:92:B3:DA:C1:8F:FD:7F:66
Certificate issuer: /CN=057c6f47bc3099a4ec86bec29605269140ad7319
Certificate serial: 01822076591CF5EE294B4FE9BA38DD037658
Authority key identifier: 05:7C:6F:47:BC:30:99:A4:EC:86:BE:C2:96:05:26:91:40:AD:73:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXxvR7wwmaTshr7ClgUmkUCtcxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/nWxIzgZwLmtOBRLWkrPawY_9f2Y.roa
Signing time: Thu 21 Jul 2022 11:13:23 +0000
ROA not before: Thu 21 Jul 2022 11:13:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 194.99.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:76:59:1c:f5:ee:29:4b:4f:e9:ba:38:dd:03:76:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=057c6f47bc3099a4ec86bec29605269140ad7319
Validity
Not Before: Jul 21 11:13:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d6c48ce06702e6b4e0512d692b3dac18ffd7f66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:86:14:6a:3d:ee:72:49:f1:67:47:d2:b7:66:
f8:2a:75:79:38:0b:df:2a:c2:1f:ee:e7:ab:18:f7:
35:cd:1f:70:cb:db:71:b3:79:a5:f4:22:06:7d:66:
34:6b:1b:c6:52:35:69:a5:16:99:83:4a:08:7a:4b:
fb:09:0e:31:76:f8:57:80:07:af:7f:f2:96:35:bd:
ff:4e:e4:8c:2f:c7:d9:0e:35:35:59:03:5b:e1:4d:
36:93:e1:fd:12:60:2b:64:b2:b5:ca:4d:ab:c1:2b:
16:be:8b:d0:6f:04:2f:91:a2:b6:76:69:38:1f:ff:
6d:63:72:4b:d2:dc:9f:43:f5:a3:94:c6:b3:b2:56:
3d:64:f6:ae:94:64:2b:12:fc:76:18:c3:67:e6:96:
9f:37:e6:28:b7:e9:2f:78:df:8e:7c:60:ee:66:dc:
c1:b4:16:f5:d1:09:4c:13:3c:50:96:6d:3d:a9:96:
36:88:33:45:99:a3:ea:9e:2f:a4:2e:cc:fb:d0:e6:
5a:3a:74:4f:99:07:e7:7e:a6:2e:f5:5a:d6:fe:9b:
1f:f2:09:91:67:b8:9d:9c:47:46:18:02:c7:4f:26:
88:db:4e:ca:88:7d:88:d9:7c:de:3f:ce:6a:54:07:
bf:ee:77:df:3b:f8:d3:0d:ed:ed:4f:24:82:e8:de:
10:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6C:48:CE:06:70:2E:6B:4E:05:12:D6:92:B3:DA:C1:8F:FD:7F:66
X509v3 Authority Key Identifier:
keyid:05:7C:6F:47:BC:30:99:A4:EC:86:BE:C2:96:05:26:91:40:AD:73:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXxvR7wwmaTshr7ClgUmkUCtcxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/nWxIzgZwLmtOBRLWkrPawY_9f2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/b6d95f-630a-4d80-80c7-4678e8855e6c/1/BXxvR7wwmaTshr7ClgUmkUCtcxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.99.158.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:9a:23:ca:c8:ff:f5:ed:ce:a3:6e:7a:23:21:29:90:10:8d:
c0:fa:f7:39:3e:61:1e:73:23:8e:e9:6d:58:ca:d8:f0:e2:74:
2b:04:fc:08:1b:67:a1:28:1a:47:f9:53:8c:71:be:09:37:5f:
79:09:82:6a:5d:e8:f5:99:89:16:3f:58:fd:ba:aa:dd:62:5c:
6f:04:b4:05:cd:27:cc:b3:78:55:98:c6:81:b2:57:fa:38:02:
ec:9d:31:44:a5:6a:d6:0d:fb:c9:96:7c:cb:ee:e6:bc:9c:c4:
64:b6:37:3f:13:63:ec:5c:36:51:01:f3:70:54:7d:6a:23:71:
09:2c:eb:71:86:35:a5:78:c3:0b:91:04:ad:44:e8:ab:b9:f4:
08:5d:d4:88:08:30:a0:99:f7:d4:9e:a8:7a:26:62:f4:55:74:
2f:68:7e:6a:81:8b:29:06:7c:a0:d5:da:73:f1:2c:a7:ea:9b:
ed:bf:28:72:85:77:62:b6:b0:a4:f5:2c:38:dd:3a:18:e1:87:
9f:81:ad:f5:68:c1:db:89:27:07:fb:ea:6a:38:7f:41:d1:a2:
e9:b8:5c:ad:a7:59:59:59:ef:11:87:73:08:9d:90:68:dd:ea:
1b:71:6e:25:32:fe:05:d0:e8:0d:e5:37:f3:d8:9b:ef:95:3f:
f8:53:2a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:19 2023 by rpki-client on console-ams.rpki-client.org