Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/NM60repnCcVRXM1wtI3A4iow00w.roa
File: NM60repnCcVRXM1wtI3A4iow00w.roa (raw, json)
Hash identifier: IMvkbGuU6Vf2ZC4R41G2ZJwcQFoYaKSe+LyIShiHYkM=
Subject key identifier: 34:CE:B4:AD:EA:67:09:C5:51:5C:CD:70:B4:8D:C0:E2:2A:30:D3:4C
Certificate issuer: /CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec
Certificate serial: 05339A94
Authority key identifier: 25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/NM60repnCcVRXM1wtI3A4iow00w.roa
Signing time: Wed 18 May 2022 07:57:45 +0000
ROA not before: Wed 18 May 2022 07:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48024
IP address blocks: 192.169.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87267988 (0x5339a94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec
Validity
Not Before: May 18 07:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34ceb4adea6709c5515ccd70b48dc0e22a30d34c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ff:42:5e:e4:33:1b:ed:fd:a2:af:35:81:85:
ed:1c:5f:ae:c9:b9:8e:99:8d:f6:83:35:b8:be:1e:
7c:cd:62:7a:b2:b0:23:81:41:da:3a:2d:0c:7f:fa:
26:d8:4f:37:f5:3f:95:97:8a:d2:08:62:49:ef:4a:
bd:50:12:bd:9c:fc:09:5e:5d:33:ed:96:93:58:cd:
53:e3:14:26:06:31:72:56:ec:3a:94:d3:6c:85:14:
ac:d4:25:cc:7d:cd:85:d5:5d:c8:00:44:a6:41:2b:
91:90:2a:cc:31:43:59:c5:91:cc:af:3f:b2:d4:d2:
64:83:52:89:63:8a:e3:dc:e4:e8:a8:49:12:e6:7c:
f5:b8:d4:10:2e:4f:07:4d:4a:ed:13:6b:05:b2:4f:
71:89:d8:46:b2:21:d9:1d:b9:7d:60:fa:3f:67:c4:
36:c8:c8:12:6e:2a:48:3f:5b:30:aa:42:85:5c:d4:
e3:f7:12:26:6d:50:51:9d:3f:8d:63:f7:1b:44:5e:
ad:5c:08:1b:42:45:ed:af:f1:05:d2:c6:06:1e:36:
b2:b9:93:b0:75:49:d6:70:a3:d5:e5:7b:a9:22:5d:
a0:03:81:d3:86:5a:8f:8a:cd:da:83:a8:59:f7:7f:
78:a9:3e:1a:1f:c5:f7:00:e7:da:45:c3:4e:26:62:
1b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:CE:B4:AD:EA:67:09:C5:51:5C:CD:70:B4:8D:C0:E2:2A:30:D3:4C
X509v3 Authority Key Identifier:
keyid:25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/NM60repnCcVRXM1wtI3A4iow00w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/JXdsd_jr5wlMoAes4anAv9wrOuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.169.96.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:6d:04:2e:58:a7:3d:3f:aa:90:bb:a5:6e:a1:be:63:fe:1b:
a7:49:4f:bb:a0:ea:40:49:c3:9b:20:e4:ec:ec:99:0a:8c:d9:
d7:e9:6a:13:7d:60:fe:ca:1b:22:96:7d:d1:e2:54:13:34:4b:
24:69:ff:7c:72:e4:e3:a7:ec:be:ee:ab:0a:63:93:16:e5:f0:
33:1c:bd:26:fd:5c:c4:4a:33:ff:48:6c:a6:f1:3f:0c:75:73:
fb:a4:0f:f9:9b:7f:f7:52:93:47:3b:13:f9:19:37:93:59:21:
ef:54:7f:30:e4:d9:43:ff:b4:20:b1:e6:9c:22:9a:90:a3:f3:
a4:a1:52:fd:cd:d1:b8:51:9f:a3:5a:7b:1f:05:93:f3:5a:c2:
16:0f:87:5b:56:36:8d:f1:29:52:97:ed:53:cc:59:be:2f:90:
70:c3:dd:5e:b2:f8:f1:45:79:7a:aa:ae:23:59:2f:00:e7:23:
bf:15:ba:5c:cc:46:3e:0e:be:a8:9a:5c:b6:05:0e:30:c9:8f:
1f:d4:b6:09:0e:06:9a:33:a4:48:75:b4:3f:36:cb:0e:60:c8:
27:f8:45:e6:ed:64:d9:17:f1:5b:54:e9:1e:d5:04:d2:7f:7d:
13:5e:46:04:83:73:26:b3:06:4b:38:9e:46:33:ac:5f:12:31:
1e:fd:64:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:50 2024 by rpki-client on console-ams.rpki-client.org