Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/niGlbIh2EQPaeoQbGxty7BPlF9E.roa
File: niGlbIh2EQPaeoQbGxty7BPlF9E.roa (raw, json)
Hash identifier: OlRk6fvzifix967eeWm1r6BWKcpT2ihg1sb6QJkBNPY=
Subject key identifier: 9E:21:A5:6C:88:76:11:03:DA:7A:84:1B:1B:1B:72:EC:13:E5:17:D1
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 01837B1EA25052220C0311D78AEBB8960A20
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/niGlbIh2EQPaeoQbGxty7BPlF9E.roa
Signing time: Mon 26 Sep 2022 18:45:48 +0000
ROA not before: Mon 26 Sep 2022 18:45:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 147.189.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7b:1e:a2:50:52:22:0c:03:11:d7:8a:eb:b8:96:0a:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Sep 26 18:45:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e21a56c88761103da7a841b1b1b72ec13e517d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8f:54:b7:22:96:02:d4:cf:66:12:db:ec:d4:
95:57:0e:7e:be:7a:c1:21:18:75:63:2d:80:f1:fe:
e5:51:b9:f5:48:44:7d:b1:91:f2:c9:11:d6:66:c1:
66:5c:b7:01:29:e7:fc:07:88:08:55:2a:31:ed:ad:
bf:64:11:50:90:9e:3d:1d:0b:df:e2:58:86:a2:08:
6e:20:cd:e5:e3:cc:43:de:aa:39:de:4b:d7:15:1e:
38:04:c7:b6:fe:6a:6f:ab:80:cc:f1:26:7b:37:c7:
fe:17:08:c0:32:7d:a0:81:61:eb:16:61:4d:44:37:
88:5b:35:60:93:28:0b:79:0e:74:9a:c5:86:6c:7e:
ea:88:a3:3c:96:9d:44:0d:30:9d:09:04:44:be:85:
6b:c3:cb:0e:d7:cd:f1:4a:5d:37:49:56:42:00:7a:
03:76:7d:22:85:4a:01:4c:62:91:d6:1d:4b:73:e0:
cd:f3:5d:c3:d3:37:3b:bb:7e:c4:62:f9:2d:b5:53:
d5:0c:21:43:42:af:db:b1:c0:9f:37:52:6e:6b:43:
d7:5c:44:2c:bf:89:4a:c5:13:43:73:94:24:f3:8d:
66:81:c0:e8:2f:1e:5e:a8:79:d3:c4:22:70:75:10:
58:fb:30:50:27:3a:08:14:0f:c5:ef:c4:6f:96:48:
84:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:21:A5:6C:88:76:11:03:DA:7A:84:1B:1B:1B:72:EC:13:E5:17:D1
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/niGlbIh2EQPaeoQbGxty7BPlF9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.163.0/24
Signature Algorithm: sha256WithRSAEncryption
87:15:40:6d:5d:e4:c6:d3:af:e4:73:c7:02:d4:b6:69:d9:3f:
6e:db:61:93:a9:14:67:06:b0:98:c8:de:1f:30:9b:8b:3f:e9:
e0:71:f2:3d:56:18:72:b3:74:8b:d1:73:83:07:de:78:1f:39:
92:c9:a8:28:7d:70:94:3c:c2:59:7c:38:78:c2:ec:9e:c1:89:
10:6f:ed:84:d4:58:bb:5b:c6:01:dd:5f:28:ff:a2:16:e3:90:
1c:c7:ef:a8:0a:6b:0c:95:48:41:d9:28:50:7c:95:51:05:13:
bd:f3:03:99:22:1a:6b:6b:92:71:5c:ad:b0:1a:f0:71:8f:b0:
cd:03:7e:41:49:01:f9:96:89:0d:f7:4b:a9:d3:7d:15:55:70:
20:3a:0f:87:3d:77:92:94:39:b2:1a:c3:cf:88:a1:b4:6e:7f:
84:67:d3:5d:73:89:6a:cc:a2:ab:3a:d5:55:bd:91:c0:93:5c:
ea:5f:c6:7b:3a:91:3c:2b:1d:a4:67:80:1c:e1:26:6b:b3:14:
e3:cc:40:72:92:22:4b:dc:f7:33:e3:1d:7a:75:ec:94:f2:fe:
49:fd:1e:61:bd:e9:f6:14:40:b4:99:f7:28:f4:fa:c8:7f:26:
f4:5e:8a:81:a5:f2:d9:d1:24:ac:8c:83:e3:8d:a2:a0:ce:c5:
fc:8f:43:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:06 2024 by rpki-client on console-ams.rpki-client.org