Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/nfN94zGYFSz8ghVx9g3C2eKWz-M.roa
File: nfN94zGYFSz8ghVx9g3C2eKWz-M.roa (raw, json)
Hash identifier: ytaHFDKZCTEhjOV+8oO7JQgSGtf5uXJJMpkL85UdoC0=
Subject key identifier: 9D:F3:7D:E3:31:98:15:2C:FC:82:15:71:F6:0D:C2:D9:E2:96:CF:E3
Certificate issuer: /CN=ad442bdda2a35320a96d806bf168d5b84a76d426
Certificate serial: 05173A37
Authority key identifier: AD:44:2B:DD:A2:A3:53:20:A9:6D:80:6B:F1:68:D5:B8:4A:76:D4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUQr3aKjUyCpbYBr8WjVuEp21CY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/nfN94zGYFSz8ghVx9g3C2eKWz-M.roa
Signing time: Sat 01 Jan 2022 04:56:43 +0000
ROA not before: Sat 01 Jan 2022 04:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211511
IP address blocks: 195.10.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85408311 (0x5173a37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad442bdda2a35320a96d806bf168d5b84a76d426
Validity
Not Before: Jan 1 04:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9df37de33198152cfc821571f60dc2d9e296cfe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ca:bf:b6:92:82:b9:44:49:ef:9d:a7:8e:d1:
fa:19:71:47:f9:08:db:b0:06:35:30:43:f0:29:77:
44:73:0b:ef:98:a3:56:14:f2:31:10:56:57:4c:e3:
68:2e:1c:fd:eb:9a:25:2f:dc:a8:0c:e9:56:ab:a9:
1d:15:d9:6a:83:06:8f:f4:bc:4a:3b:9b:37:29:ff:
5e:b5:9b:bc:e0:19:7b:83:d8:81:8b:ec:af:cb:7a:
cd:94:26:43:b0:72:6a:db:94:92:72:47:14:04:a5:
55:41:51:d6:f2:4b:57:50:0b:cc:a7:21:b3:3f:4c:
16:98:cd:1f:06:57:94:d0:fc:74:8a:a5:ef:8f:db:
0c:4e:12:13:e8:47:93:b8:1e:1c:c6:d7:76:8d:30:
43:01:f9:70:cb:57:2a:0d:34:08:1c:29:b0:fc:96:
fc:4d:2c:85:59:4b:3c:f0:51:b8:0f:67:28:49:cc:
ea:49:96:20:57:40:37:87:b4:dd:a6:93:47:4a:75:
5f:1d:98:2f:87:f6:02:e8:1d:1a:d9:dc:b7:bb:02:
9f:fe:f8:8d:8c:58:39:aa:79:bf:1f:5b:06:0f:90:
d2:56:e8:fe:46:a0:ea:40:13:ce:aa:4e:91:6b:96:
75:20:45:84:f7:84:c8:da:02:ca:92:54:13:44:63:
35:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:F3:7D:E3:31:98:15:2C:FC:82:15:71:F6:0D:C2:D9:E2:96:CF:E3
X509v3 Authority Key Identifier:
keyid:AD:44:2B:DD:A2:A3:53:20:A9:6D:80:6B:F1:68:D5:B8:4A:76:D4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUQr3aKjUyCpbYBr8WjVuEp21CY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/nfN94zGYFSz8ghVx9g3C2eKWz-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/dd672d-e980-4dca-9195-859dbca38714/1/rUQr3aKjUyCpbYBr8WjVuEp21CY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.10.215.0/24
Signature Algorithm: sha256WithRSAEncryption
34:3e:30:71:37:9f:38:aa:82:56:f8:63:e3:a1:79:0b:66:22:
cc:f4:6d:ac:0a:cc:4e:0c:a7:92:85:34:90:94:69:b8:4e:ab:
9d:e7:98:d7:6b:a9:9b:97:94:68:c1:89:8e:1c:5e:19:bf:0e:
9e:04:67:7f:03:67:3b:dc:86:9c:42:03:10:f2:d6:74:b2:74:
98:4f:72:16:91:4a:6b:2b:0e:a2:45:f4:9d:b1:0a:ad:4f:4e:
3e:83:13:c8:e6:61:ae:d3:3d:60:6d:f5:d8:13:80:56:b0:15:
a0:28:92:cf:51:ce:02:2e:fc:20:ee:ab:fc:d2:5f:c0:83:43:
ff:e5:3a:15:87:05:e1:16:43:4a:c6:b1:ab:d4:1c:fe:65:97:
02:23:96:62:ab:22:f3:b3:0c:3c:ab:67:1e:2b:78:69:0f:34:
9d:c5:8e:5d:18:af:cd:ad:9c:03:80:5e:00:fa:e4:54:f7:84:
da:12:6d:2a:7f:65:7c:29:ac:2a:41:e0:b1:6b:b3:66:31:92:
85:07:10:c1:bf:7c:62:cd:0e:8a:ab:84:0c:cd:f4:ef:85:eb:
08:79:9c:3a:44:3a:b9:ac:d3:d5:6d:11:a9:d6:63:c8:30:4e:
c9:7d:3e:cd:ef:ac:0b:dc:54:df:0f:05:51:25:0b:98:04:c5:
96:e7:6e:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:08 2024 by rpki-client on console-ams.rpki-client.org