Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/NbPKyqCgGtTRCL1GFTeE_VhIig0.roa
File: NbPKyqCgGtTRCL1GFTeE_VhIig0.roa (raw, json)
Hash identifier: FgjH97CXYh3wjXOL5LLbDQAFcdeGoS9JC+vpBxQxfr8=
Subject key identifier: 35:B3:CA:CA:A0:A0:1A:D4:D1:08:BD:46:15:37:84:FD:58:48:8A:0D
Certificate issuer: /CN=15ffa042114301368b4069abd68a1efbac47fdce
Certificate serial: 1AE56D75
Authority key identifier: 15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/NbPKyqCgGtTRCL1GFTeE_VhIig0.roa
Signing time: Sat 01 Jan 2022 07:54:28 +0000
ROA not before: Sat 01 Jan 2022 07:54:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60992
IP address blocks: 83.96.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451243381 (0x1ae56d75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15ffa042114301368b4069abd68a1efbac47fdce
Validity
Not Before: Jan 1 07:54:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35b3cacaa0a01ad4d108bd46153784fd58488a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fb:15:87:c8:48:74:c4:4a:74:ae:d5:a6:1d:
60:2e:0a:a0:a5:7a:b4:3c:34:fe:f3:6e:87:80:30:
98:5c:8a:04:2d:18:2a:03:80:cb:0f:1c:a2:74:1a:
d0:f7:b8:e6:1d:bf:1a:bb:6a:48:04:1c:8e:4d:b1:
ce:fe:82:7d:6b:d1:94:86:99:f9:5e:52:dd:1f:8f:
44:22:e9:04:5e:09:a5:88:0c:b1:44:f2:d1:57:c8:
9c:77:b4:e3:de:f4:d1:4f:63:f2:71:8c:56:9e:c1:
ba:6e:a8:0b:06:30:2f:f9:67:c4:a1:42:c7:1d:0b:
ef:85:55:12:45:d8:81:f8:88:ba:3c:4a:20:a0:38:
c2:f8:ab:ff:5a:8a:9b:85:65:f9:5a:4d:f3:a9:0a:
f7:3b:f4:d8:3d:3c:5e:59:ed:98:37:18:69:9c:fc:
06:4e:8c:5d:83:38:42:bb:93:2f:31:eb:65:28:ee:
4c:f7:a4:ef:f6:3a:c1:a1:ae:3d:79:3b:68:31:7d:
e2:a9:64:3f:41:74:f4:d4:d6:5e:c1:e4:88:27:2a:
b7:a1:10:ba:b0:e9:26:8e:83:0e:49:bc:ee:81:f4:
1b:9d:0a:28:3d:11:28:1b:3c:24:13:64:3f:0f:b8:
7a:76:2f:44:49:3b:29:5b:94:8c:b4:ce:8d:ac:5c:
14:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B3:CA:CA:A0:A0:1A:D4:D1:08:BD:46:15:37:84:FD:58:48:8A:0D
X509v3 Authority Key Identifier:
keyid:15:FF:A0:42:11:43:01:36:8B:40:69:AB:D6:8A:1E:FB:AC:47:FD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ff-gQhFDATaLQGmr1ooe-6xH_c4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/NbPKyqCgGtTRCL1GFTeE_VhIig0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/149bc5-51aa-4e7b-8f03-b73a36d939b2/1/Ff-gQhFDATaLQGmr1ooe-6xH_c4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.96.29.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:4d:16:36:22:78:e7:37:64:a5:a9:ca:2f:c9:f0:08:88:84:
03:aa:51:f5:f3:16:f7:3d:52:00:b7:00:c6:22:96:d1:bd:c3:
52:03:9b:92:d9:7b:38:a8:3f:f4:58:99:d6:9a:cd:6f:0c:e1:
b9:45:81:2b:92:e9:7c:74:6a:a7:84:41:48:e6:10:cc:d5:7b:
25:78:a3:ae:d1:91:69:86:4b:58:15:28:8b:00:51:78:b7:59:
07:8f:a0:a3:d6:ad:43:64:06:15:c7:ff:5d:f0:37:57:c6:7e:
3c:b4:f8:9b:d0:4c:57:d4:0b:50:cd:d3:c4:7c:70:09:97:61:
0b:d9:fb:09:ac:22:4c:0b:91:ad:56:40:45:5c:60:1b:f1:3b:
5d:33:29:12:ad:b2:ca:92:ea:3a:30:99:68:bd:af:f1:ae:0a:
d5:e1:38:10:96:a9:18:f0:7e:5b:3d:6d:fa:1e:f8:2d:34:f9:
59:91:72:9c:bf:f9:51:f0:07:b7:fb:a7:31:26:7e:f5:bb:89:
af:c0:bf:bd:2f:37:bb:7f:8a:bf:dc:2f:c9:68:a8:35:27:80:
50:7a:69:de:71:cb:a1:98:69:f0:76:a9:76:d0:f0:20:e4:b0:
6b:27:5f:26:2c:50:d5:be:8b:3b:03:76:21:7e:8a:6f:1c:d4:
89:7b:f6:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:30 2023 by rpki-client on console.sobornost.net