Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/f3d2f4-9263-4ece-9db3-e081a5b41432/1/NfRCStJsLdq6SHtzdN3Ae_MxzJs.roa
File: NfRCStJsLdq6SHtzdN3Ae_MxzJs.roa (raw, json)
Hash identifier: YHnMC8cqZEofQv/zVIyVGDDWr1p4cBIlSE1uHV7wSc8=
Subject key identifier: 35:F4:42:4A:D2:6C:2D:DA:BA:48:7B:73:74:DD:C0:7B:F3:31:CC:9B
Certificate issuer: /CN=398f7106bed10fe7ffc65bbd64adbedc9dbd525e
Certificate serial: 0572A252
Authority key identifier: 39:8F:71:06:BE:D1:0F:E7:FF:C6:5B:BD:64:AD:BE:DC:9D:BD:52:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OY9xBr7RD-f_xlu9ZK2-3J29Ul4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/f3d2f4-9263-4ece-9db3-e081a5b41432/1/NfRCStJsLdq6SHtzdN3Ae_MxzJs.roa
Signing time: Sat 01 Jan 2022 08:02:53 +0000
ROA not before: Sat 01 Jan 2022 08:02:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57715
IP address blocks: 194.31.48.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91398738 (0x572a252)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=398f7106bed10fe7ffc65bbd64adbedc9dbd525e
Validity
Not Before: Jan 1 08:02:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35f4424ad26c2ddaba487b7374ddc07bf331cc9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:70:20:bd:28:99:5a:6f:41:44:85:65:2e:54:
01:d4:a0:ad:36:68:3d:24:6d:45:55:82:96:2e:5a:
dc:10:98:a9:fb:de:1a:d5:08:c2:26:71:f7:42:a8:
ff:39:ec:c2:c4:1c:7e:82:c2:ca:4e:fb:8b:17:25:
ea:a6:67:da:b7:79:c5:0a:3c:b6:b8:f2:0b:14:31:
f7:07:7a:25:30:bf:c5:21:dc:8c:f0:d2:ad:71:95:
fd:5f:f4:1e:59:6f:d1:60:41:fe:db:62:a3:47:e8:
c7:6c:f3:08:68:de:81:bd:58:d8:8b:5c:58:97:40:
a8:74:94:00:5e:02:08:68:89:d3:c6:c5:46:38:78:
67:21:6b:65:72:f1:14:a9:7e:8c:53:12:23:c7:ee:
51:b7:91:5c:c7:db:f9:f2:44:63:ca:d3:8a:77:fd:
23:9f:fb:54:51:8f:dc:8a:eb:a5:6c:17:59:62:c3:
fc:9c:31:e1:9e:34:8a:f9:89:e0:f7:41:3b:66:5b:
84:16:45:9c:89:13:5b:65:d6:65:df:13:af:fe:dd:
9d:45:e6:ff:13:87:9c:5a:57:52:40:52:da:59:98:
ce:b8:ca:8f:6a:5c:f2:67:e1:3f:b1:db:44:17:77:
1d:b2:30:26:a7:2c:33:7a:d5:81:92:cc:89:d9:20:
11:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F4:42:4A:D2:6C:2D:DA:BA:48:7B:73:74:DD:C0:7B:F3:31:CC:9B
X509v3 Authority Key Identifier:
keyid:39:8F:71:06:BE:D1:0F:E7:FF:C6:5B:BD:64:AD:BE:DC:9D:BD:52:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OY9xBr7RD-f_xlu9ZK2-3J29Ul4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/f3d2f4-9263-4ece-9db3-e081a5b41432/1/NfRCStJsLdq6SHtzdN3Ae_MxzJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/f3d2f4-9263-4ece-9db3-e081a5b41432/1/OY9xBr7RD-f_xlu9ZK2-3J29Ul4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.48.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:84:58:24:cb:95:e4:00:08:eb:9a:8c:1d:a4:82:60:03:1e:
66:21:a6:d2:a0:b0:e1:b9:0e:51:9e:a7:8c:6c:7d:5f:22:ea:
1f:b4:cb:f0:0b:98:07:d7:e8:ae:fa:c4:bd:53:c6:a8:66:8f:
d8:70:b9:84:b6:0b:65:cb:8f:5a:20:7f:c8:68:4e:0f:81:97:
29:3a:e3:17:fa:a5:27:c1:be:ea:93:3e:40:5a:b0:f3:37:12:
25:75:bc:a7:d6:06:f2:4c:5c:39:c5:21:8e:77:84:70:95:2b:
a1:3f:16:83:0f:7c:14:a3:e4:c2:d3:c4:d5:7a:d5:6f:32:d9:
1d:ca:31:21:84:67:dc:0d:cd:50:dd:b2:d9:9a:1b:35:3a:83:
2c:dd:81:5f:0b:14:76:18:56:89:ac:5e:7b:33:d7:b4:07:03:
e1:58:47:07:ec:99:91:91:2b:c9:97:ae:bc:d7:8a:67:44:e4:
26:42:0d:13:cd:d1:77:8a:9e:4f:b7:3c:ba:9a:52:4a:13:dd:
a8:57:ac:d3:e3:57:5b:86:44:33:00:db:84:f5:46:7a:7b:64:
f3:67:0e:97:36:06:ea:78:70:42:97:b4:73:19:db:70:9c:01:
eb:8d:3a:e7:f5:37:86:3f:48:02:e9:40:71:36:75:a7:b1:9c:
fb:bb:f5:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:44 2024 by rpki-client on console-ams.rpki-client.org