Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/0d95ca-baf5-4689-9b5b-747e75e55461/1/aLR0Pu9Bu6r8WlXLL1OwjRrjm4s.roa
File: aLR0Pu9Bu6r8WlXLL1OwjRrjm4s.roa (raw, json)
Hash identifier: WHRfbjkrwoP4BWEXCQaSoBlyXocrVhLqXj5Y3pPpJg8=
Subject key identifier: 68:B4:74:3E:EF:41:BB:AA:FC:5A:55:CB:2F:53:B0:8D:1A:E3:9B:8B
Certificate issuer: /CN=3512a8a6df9978de7227003b1fd3f0e2b9e59cc7
Certificate serial: 0A74AFC5
Authority key identifier: 35:12:A8:A6:DF:99:78:DE:72:27:00:3B:1F:D3:F0:E2:B9:E5:9C:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRKopt-ZeN5yJwA7H9Pw4rnlnMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/0d95ca-baf5-4689-9b5b-747e75e55461/1/aLR0Pu9Bu6r8WlXLL1OwjRrjm4s.roa
Signing time: Sat 01 Jan 2022 08:02:45 +0000
ROA not before: Sat 01 Jan 2022 08:02:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 158.194.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175419333 (0xa74afc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3512a8a6df9978de7227003b1fd3f0e2b9e59cc7
Validity
Not Before: Jan 1 08:02:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68b4743eef41bbaafc5a55cb2f53b08d1ae39b8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f1:06:45:61:cd:b7:1e:b3:61:77:2c:36:15:
5c:17:f7:12:c5:12:72:f8:c2:63:de:2f:e9:03:0b:
c6:94:a4:e8:a2:3e:01:10:d8:97:3c:54:ee:70:8b:
a7:e8:ea:9e:3e:c3:fa:5e:3b:da:5d:9a:5b:87:66:
34:0c:ae:7a:5a:51:8b:34:43:6d:2b:11:df:bc:40:
b2:ac:65:85:3e:86:c3:04:c2:b3:01:41:15:a9:7b:
9d:57:06:f3:54:ee:ae:06:41:f3:9e:7e:13:a5:84:
ee:a2:42:33:9b:c7:a9:2d:4c:05:b7:1c:9c:99:ff:
fe:33:56:1b:d6:f9:68:7c:5f:94:92:17:65:14:3b:
ef:63:0f:df:35:c6:f7:3d:63:56:20:8a:a2:27:17:
1c:7d:33:3c:7a:c6:4b:11:c2:34:4f:61:27:3f:38:
7c:7d:d1:51:81:54:2d:19:d5:18:54:a9:92:b3:23:
37:05:a6:32:fc:bd:c7:42:f5:57:8f:f0:ce:dc:fc:
25:e9:a5:43:ff:15:80:f0:7e:e0:29:b0:38:d3:d4:
2d:db:81:26:bd:3c:47:f3:ec:f4:29:b4:a5:da:de:
32:40:8b:e8:a5:50:b0:78:c2:75:fe:e5:ab:d4:c2:
5c:bc:66:de:fb:18:ab:6b:1e:ef:2f:f9:47:f8:6a:
ad:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B4:74:3E:EF:41:BB:AA:FC:5A:55:CB:2F:53:B0:8D:1A:E3:9B:8B
X509v3 Authority Key Identifier:
keyid:35:12:A8:A6:DF:99:78:DE:72:27:00:3B:1F:D3:F0:E2:B9:E5:9C:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRKopt-ZeN5yJwA7H9Pw4rnlnMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0d95ca-baf5-4689-9b5b-747e75e55461/1/aLR0Pu9Bu6r8WlXLL1OwjRrjm4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0d95ca-baf5-4689-9b5b-747e75e55461/1/NRKopt-ZeN5yJwA7H9Pw4rnlnMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.194.0.0/16
Signature Algorithm: sha256WithRSAEncryption
74:94:2b:bc:20:0c:85:a5:70:6c:d0:a8:8e:9a:e2:3d:f1:87:
33:bc:55:c6:3f:57:bd:91:a1:51:71:c1:1e:bf:a9:2a:37:a2:
12:53:17:c9:32:8b:48:55:50:51:ec:1e:d2:ad:0c:10:b7:b7:
af:0c:61:29:c0:10:63:3d:3e:92:23:e7:7f:f4:07:b9:47:09:
0b:ce:cc:26:a3:68:04:98:8a:c8:5f:46:c2:98:c9:1d:30:86:
16:a9:69:99:e7:a8:5c:7b:2d:57:be:b2:a0:a7:4a:4a:c1:ab:
46:37:5c:76:6d:31:dd:3d:b4:1c:3c:bc:e1:40:62:3e:6e:e3:
46:30:bb:9b:ad:d1:03:66:e5:5e:74:3c:0c:60:a7:32:f2:a0:
6b:16:69:31:db:8d:34:71:01:d0:b6:16:cf:b1:43:41:47:3a:
27:40:49:fc:ca:9b:9a:dc:f4:c0:10:d6:e9:55:37:e1:ba:3d:
af:c7:cd:d5:c9:f9:e6:12:52:fa:26:c0:f9:c3:1b:fb:3d:eb:
38:23:b1:97:f4:1a:cb:25:8a:93:ba:53:d4:b1:1e:2d:2d:c2:
76:f1:d9:e4:1d:bd:ba:df:14:1b:b3:4a:c8:45:8e:d0:f1:8b:
ad:35:b8:c6:95:4b:fa:1b:f2:6d:06:34:4a:8a:d1:0c:ac:52:
19:44:d7:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:38 2024 by rpki-client on console-fra.rpki-client.org