Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/6cba1a-5f4d-4308-bf46-eb37a85a82c5/1/nXqMTd8g_XN61rb6WUsmoPfsusA.roa
File: nXqMTd8g_XN61rb6WUsmoPfsusA.roa (raw, json)
Hash identifier: I8GKCLuROFXHKpyw/Pp/oI1xhhInqGuowySFG+lmah8=
Subject key identifier: 9D:7A:8C:4D:DF:20:FD:73:7A:D6:B6:FA:59:4B:26:A0:F7:EC:BA:C0
Certificate issuer: /CN=31828c99d35cb92e2d53daf128e497e841b63ab0
Certificate serial: 0310B1
Authority key identifier: 31:82:8C:99:D3:5C:B9:2E:2D:53:DA:F1:28:E4:97:E8:41:B6:3A:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYKMmdNcuS4tU9rxKOSX6EG2OrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/6cba1a-5f4d-4308-bf46-eb37a85a82c5/1/nXqMTd8g_XN61rb6WUsmoPfsusA.roa
Signing time: Thu 19 May 2022 08:01:17 +0000
ROA not before: Thu 19 May 2022 08:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198138
IP address blocks: 95.130.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200881 (0x310b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31828c99d35cb92e2d53daf128e497e841b63ab0
Validity
Not Before: May 19 08:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d7a8c4ddf20fd737ad6b6fa594b26a0f7ecbac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c0:5a:26:04:29:c5:60:a9:8d:eb:66:a8:dd:
e3:c3:00:12:3e:9b:5b:11:12:93:f7:0f:9a:d9:ff:
ed:6c:41:b5:64:d8:cb:a2:6e:01:73:36:8d:0a:34:
84:30:af:af:b1:e1:f7:89:6a:91:84:52:3e:2e:35:
b4:88:07:9d:a7:71:31:ba:bb:6c:9e:3d:d5:65:55:
8d:2a:95:72:df:c5:df:56:1c:07:5b:e6:3c:91:0f:
38:c7:18:69:1d:ef:9e:72:cc:fa:38:3c:06:9d:db:
c6:ec:6e:ed:15:91:f1:c4:b9:ae:57:8f:d4:bf:72:
c4:7e:ca:17:41:e4:63:9f:3c:7e:54:24:33:4e:d2:
e4:c9:63:96:b6:92:8d:88:bd:37:7f:32:a9:9f:3e:
5a:be:0b:19:2a:f4:aa:10:31:86:a1:8a:91:d1:ef:
41:1f:9a:3c:7e:38:5f:5e:18:5c:c7:f2:d4:20:b0:
73:98:b0:ff:e1:0c:1b:4d:28:78:67:7e:4c:a0:fc:
71:d6:29:d9:84:38:b8:24:8b:40:86:d2:fe:63:3a:
b9:21:ef:cf:e1:c0:4b:a2:58:13:1f:f8:7e:96:fc:
a9:67:be:e4:8b:d7:2e:9d:10:2d:55:d5:04:d6:3f:
68:99:52:49:39:d8:c7:61:d5:05:cc:28:81:f3:91:
86:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7A:8C:4D:DF:20:FD:73:7A:D6:B6:FA:59:4B:26:A0:F7:EC:BA:C0
X509v3 Authority Key Identifier:
keyid:31:82:8C:99:D3:5C:B9:2E:2D:53:DA:F1:28:E4:97:E8:41:B6:3A:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYKMmdNcuS4tU9rxKOSX6EG2OrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6cba1a-5f4d-4308-bf46-eb37a85a82c5/1/nXqMTd8g_XN61rb6WUsmoPfsusA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6cba1a-5f4d-4308-bf46-eb37a85a82c5/1/MYKMmdNcuS4tU9rxKOSX6EG2OrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.39.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:19:39:1e:0c:1e:86:57:b5:bd:54:f3:ec:50:0a:41:18:44:
9b:53:40:f7:bc:2f:47:5c:d6:6a:38:4c:5f:a0:83:62:68:31:
a3:a2:6a:f9:70:a1:13:ba:9a:cd:0b:23:3d:09:09:14:ee:67:
94:83:ed:77:35:2f:75:5a:56:df:c8:db:2d:f3:8c:cd:e5:a8:
13:84:bc:e0:71:c6:4d:72:b3:e0:b6:ad:97:3d:71:ba:87:6c:
34:e6:39:66:1f:c6:88:8f:78:9e:a3:4e:d6:40:3f:aa:e5:32:
68:21:62:a5:6d:b1:fd:b3:21:97:e3:8b:ba:8c:64:d8:b8:b4:
b3:f4:94:bb:59:e6:cb:a4:b5:77:31:6c:01:aa:52:9d:e5:35:
a4:2e:53:89:5b:96:f4:79:9a:fb:d1:c4:7e:2e:c6:a4:6a:8c:
b1:2b:4d:ff:23:4d:ee:eb:11:f8:df:98:83:26:27:27:eb:66:
3d:60:e6:64:26:83:6e:f0:ec:3c:a7:db:7c:53:6d:36:c7:79:
30:b3:e2:c0:4d:34:a9:0c:3a:b9:f3:d8:76:e9:3a:8d:69:cb:
d8:b2:fb:66:f6:41:eb:06:e9:22:08:1c:b9:6d:eb:a2:7b:0b:
55:8d:50:e1:46:47:ec:d0:c6:94:cb:d1:ad:12:64:3b:9b:6f:
08:01:25:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:34 2024 by rpki-client on console-fra.rpki-client.org