Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/NLKTC8b83EG0MA1cWWphVYf1Fss.roa
File: NLKTC8b83EG0MA1cWWphVYf1Fss.roa (raw, json)
Hash identifier: Y/rdg3kVJAREbR6wDHf+/WuH1CiGGTIVdlm41xCTsS4=
Subject key identifier: 34:B2:93:0B:C6:FC:DC:41:B4:30:0D:5C:59:6A:61:55:87:F5:16:CB
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 3D5421CA
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/NLKTC8b83EG0MA1cWWphVYf1Fss.roa
Signing time: Sat 01 Jan 2022 06:55:15 +0000
ROA not before: Sat 01 Jan 2022 06:55:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61157
IP address blocks: 85.93.66.0/24 maxlen: 24
85.93.65.0/24 maxlen: 24
85.93.67.0/24 maxlen: 24
85.93.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1028923850 (0x3d5421ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Jan 1 06:55:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34b2930bc6fcdc41b4300d5c596a615587f516cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1f:19:6e:df:81:9e:dd:29:07:de:d6:7c:3f:
a2:01:62:27:56:fb:1e:01:f4:06:30:17:9a:10:96:
c9:6c:48:b7:cc:a7:b8:b4:c9:65:41:d0:a2:81:7a:
61:fd:c3:66:08:22:5f:39:12:38:79:27:f1:18:de:
d1:38:7a:bd:05:0c:1e:78:16:f3:f6:72:24:6f:da:
eb:57:15:d7:61:68:3f:1a:7e:7a:83:33:1d:10:a6:
16:64:8e:5f:1d:17:3d:f2:0f:74:2b:4f:64:10:c6:
a6:d7:8c:e0:84:70:c5:d8:c6:74:5b:82:0f:c7:a2:
fc:5c:9e:b2:86:cc:d3:bc:7b:ba:15:bb:32:2b:20:
6f:63:7a:36:21:67:05:eb:d5:b4:28:40:21:85:4b:
36:dd:c0:23:3e:a8:7b:44:9e:20:65:43:b0:ce:fa:
83:3a:ed:73:33:2d:a4:cb:3f:d3:01:f4:c6:a1:61:
87:cd:3f:25:62:bd:dc:3b:30:bf:35:fc:37:33:26:
6f:39:d6:39:39:df:61:e3:6e:fe:54:8f:54:c4:01:
e1:08:2f:57:ad:c6:73:13:6b:ba:6c:7e:3d:30:37:
aa:2e:b7:17:f5:46:a9:34:40:2e:56:4c:72:f6:62:
f5:b3:f2:ff:4a:6a:8c:a4:94:e5:02:a9:2f:e4:8e:
59:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B2:93:0B:C6:FC:DC:41:B4:30:0D:5C:59:6A:61:55:87:F5:16:CB
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/NLKTC8b83EG0MA1cWWphVYf1Fss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.93.65.0-85.93.67.255
85.93.80.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:46:51:2c:e6:bb:90:2c:8f:34:ee:a3:71:0a:fc:0e:21:75:
0c:7b:11:3e:b9:e3:a0:e5:12:57:4b:a4:ab:05:d8:82:3a:0f:
10:a4:ca:e7:70:91:1f:cf:6d:f2:bf:38:03:97:80:87:51:6a:
46:f6:e5:46:9b:2e:00:6b:46:05:97:01:76:3b:87:1f:af:b9:
d5:5f:7e:71:ec:c2:6b:c9:8e:fc:8e:e1:98:3f:ff:5b:6b:74:
e1:6e:b0:11:5f:3a:0d:5a:2f:3f:8c:a6:98:c2:b5:0d:ab:27:
e6:51:59:98:08:96:f7:6c:d1:4c:b3:ce:95:ec:e4:84:21:59:
53:fb:98:42:2e:ac:6b:82:b2:a7:0a:8a:78:a5:fd:1b:38:1e:
c1:b7:f7:96:ef:8f:b9:d7:53:6e:12:2f:e1:1a:58:35:c4:0b:
0e:2d:fc:fa:29:2b:94:ea:b1:55:52:1b:3c:ca:57:96:1f:8f:
5e:9e:9a:dc:74:f8:0b:cd:c4:21:96:ef:41:9d:76:54:49:c6:
f7:31:e0:a6:05:88:21:45:82:c3:8b:14:bd:7e:90:51:6e:b9:
e2:d9:d2:b5:19:63:dd:d8:57:4a:e4:df:27:9b:00:b0:86:d3:
18:ac:13:7d:4e:9f:08:44:ef:3b:4a:5b:ba:e5:d7:c2:50:fc:
ad:e4:7b:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:03 2024 by rpki-client on console-fra.rpki-client.org