Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/nwWlI-RoDFTIJ-nWyYEX35Xs6uw.roa
File: nwWlI-RoDFTIJ-nWyYEX35Xs6uw.roa (raw, json)
Hash identifier: aC0CFA+dT1MvT1m40GTpVRvlmAzfKPrj0Z2TZWlBw5k=
Subject key identifier: 9F:05:A5:23:E4:68:0C:54:C8:27:E9:D6:C9:81:17:DF:95:EC:EA:EC
Certificate issuer: /CN=f59adb0208a2d2a718d3064b4613fdc4320d28f9
Certificate serial: 7368
Authority key identifier: F5:9A:DB:02:08:A2:D2:A7:18:D3:06:4B:46:13:FD:C4:32:0D:28:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9ZrbAgii0qcY0wZLRhP9xDINKPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/nwWlI-RoDFTIJ-nWyYEX35Xs6uw.roa
Signing time: Wed 13 Apr 2022 12:07:17 +0000
ROA not before: Wed 13 Apr 2022 12:07:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197942
IP address blocks: 2001:678:70c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29544 (0x7368)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f59adb0208a2d2a718d3064b4613fdc4320d28f9
Validity
Not Before: Apr 13 12:07:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f05a523e4680c54c827e9d6c98117df95eceaec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:8b:34:d8:69:cb:0f:ed:fe:09:71:d9:cb:75:
8f:8c:64:a0:46:ba:6f:9a:74:50:1a:65:73:9d:a8:
cc:37:e2:46:3b:25:de:7e:1f:4b:be:09:9a:99:a2:
7f:d7:94:bc:b6:6d:79:1d:12:84:6e:e1:30:98:98:
ad:a8:31:65:8b:8f:a4:0c:15:17:57:5b:60:8b:be:
74:42:25:bb:66:a2:15:3c:a0:ba:81:cf:3b:b5:6a:
c8:9c:8c:8f:93:3f:f6:01:59:11:6a:9a:31:bf:78:
6e:90:e0:50:5d:fb:d0:7c:23:b8:8e:fa:6a:9d:97:
83:9a:47:a0:9e:12:be:83:9d:3b:8c:9f:0e:cd:5b:
39:c7:8a:84:54:2d:10:c2:99:12:cd:3d:46:03:1d:
43:a2:b4:07:7e:a3:9c:10:ec:4e:52:11:fb:8b:c5:
4f:b5:27:65:24:b2:5d:fb:42:96:b2:47:27:22:09:
db:8b:c1:cc:54:9c:cb:41:77:1a:9a:bf:00:88:b7:
71:de:af:4f:ab:f4:e8:06:74:e0:7b:b3:0e:c2:82:
f3:ac:a5:da:b1:ce:c1:6b:16:89:55:d6:b1:21:8d:
55:7a:53:8a:c2:b6:d3:8a:72:5f:48:59:fe:fa:62:
17:d6:47:8a:36:4c:1a:05:f7:15:d4:16:47:95:d4:
6e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:05:A5:23:E4:68:0C:54:C8:27:E9:D6:C9:81:17:DF:95:EC:EA:EC
X509v3 Authority Key Identifier:
keyid:F5:9A:DB:02:08:A2:D2:A7:18:D3:06:4B:46:13:FD:C4:32:0D:28:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9ZrbAgii0qcY0wZLRhP9xDINKPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/nwWlI-RoDFTIJ-nWyYEX35Xs6uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c0fef9-afff-49de-808a-e4478c55308a/1/9ZrbAgii0qcY0wZLRhP9xDINKPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:70c::/48
Signature Algorithm: sha256WithRSAEncryption
aa:1f:4d:37:ac:aa:f2:d1:d3:a5:e4:48:c9:23:4e:d6:a2:95:
fe:4e:5a:37:4c:e3:26:92:fd:17:a8:d7:6e:de:d0:31:32:58:
28:cd:34:1d:e0:55:65:6b:af:08:2c:c5:71:70:6b:0c:2f:e3:
da:1c:d6:bd:4e:86:a4:5f:b9:33:1f:3a:b4:44:e7:34:da:aa:
09:ec:67:69:96:55:ac:0b:bc:74:f5:98:49:25:86:df:f8:93:
e8:d1:a6:26:57:8c:99:d2:2d:d6:b4:b2:d3:8f:8d:0e:5e:d0:
93:1b:aa:37:c6:eb:3a:b5:37:79:0a:f7:bd:7c:c0:4b:f5:51:
c1:18:3f:47:c6:c1:b7:ef:fd:84:b3:05:c8:45:c8:bb:ce:70:
19:a5:ae:3b:01:e5:06:bb:84:ad:84:d9:fe:53:84:21:21:8c:
ab:86:a8:a0:2e:92:61:84:c2:11:f6:a1:40:67:05:3d:5f:4c:
33:0a:3a:5d:51:0f:cc:91:1d:db:45:41:d1:ff:ca:f6:93:63:
c3:02:aa:0f:46:6f:d4:47:54:45:1a:a0:0c:e8:b5:31:11:59:
2b:92:53:eb:db:cf:10:24:93:05:e0:7b:e0:ad:f2:11:66:ad:
7b:30:17:f1:2a:ab:30:7c:63:47:12:08:e8:63:83:2f:ec:fb:
05:a1:97:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:57 2023 by rpki-client on console.sobornost.net