Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/NubGXij0GnTxZ0jAPfKa4macl6A.roa
File: NubGXij0GnTxZ0jAPfKa4macl6A.roa (raw, json)
Hash identifier: E7p5YfQI9M2tNXV6h9KIuci+fSClodzCDm8BE13kgQM=
Subject key identifier: 36:E6:C6:5E:28:F4:1A:74:F1:67:48:C0:3D:F2:9A:E2:66:9C:97:A0
Certificate issuer: /CN=9bbae6e3ed766de47aba6693bb5af8a648974310
Certificate serial: 0A0D0557
Authority key identifier: 9B:BA:E6:E3:ED:76:6D:E4:7A:BA:66:93:BB:5A:F8:A6:48:97:43:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m7rm4-12beR6umaTu1r4pkiXQxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/NubGXij0GnTxZ0jAPfKa4macl6A.roa
Signing time: Sat 01 Jan 2022 11:02:04 +0000
ROA not before: Sat 01 Jan 2022 11:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50825
IP address blocks: 185.63.96.0/22 maxlen: 24
5.181.92.0/22 maxlen: 24
78.24.96.0/22 maxlen: 24
178.17.0.0/20 maxlen: 24
2a03:c20::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168625495 (0xa0d0557)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bbae6e3ed766de47aba6693bb5af8a648974310
Validity
Not Before: Jan 1 11:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36e6c65e28f41a74f16748c03df29ae2669c97a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e3:cf:bb:f7:4c:f1:4f:db:98:46:c5:85:d9:
f9:22:63:4b:d4:df:40:5d:fc:41:66:b1:33:e3:fc:
d9:35:b6:65:32:a4:26:0e:9a:41:70:50:f9:70:1f:
b1:aa:9c:9a:4c:37:74:9c:d5:17:34:04:61:95:01:
32:3e:36:b8:76:3e:b9:45:aa:b4:53:ac:02:28:dd:
30:7d:a2:91:54:fb:83:27:b7:18:54:2f:57:01:38:
b2:1b:23:74:c1:7b:86:99:9b:fc:81:ca:9d:d2:7b:
ae:f1:46:3a:5c:2a:d5:5e:73:62:9b:88:1f:10:c4:
4c:24:76:1d:62:df:92:84:63:07:27:54:32:1d:ca:
9b:a7:78:02:b4:1a:0b:9a:99:4e:aa:e7:48:9e:b8:
b9:1c:8d:fd:ee:43:1c:d0:0d:55:f8:0b:3d:a3:d0:
a0:3b:b2:c4:d9:47:e6:1f:85:62:e4:6f:24:4a:cd:
6e:eb:3d:0e:20:a1:e6:17:07:a6:32:8c:31:93:70:
e0:45:a2:3e:d8:f7:da:09:3a:55:55:0b:b5:b3:3b:
11:24:f6:34:f7:7e:38:95:92:5e:02:23:32:23:ea:
e2:04:9e:2b:ce:86:06:d5:a1:e1:c9:84:ef:eb:58:
86:0b:d1:ff:32:1b:ef:d6:4a:11:2b:ba:02:3e:73:
73:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E6:C6:5E:28:F4:1A:74:F1:67:48:C0:3D:F2:9A:E2:66:9C:97:A0
X509v3 Authority Key Identifier:
keyid:9B:BA:E6:E3:ED:76:6D:E4:7A:BA:66:93:BB:5A:F8:A6:48:97:43:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m7rm4-12beR6umaTu1r4pkiXQxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/NubGXij0GnTxZ0jAPfKa4macl6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/m7rm4-12beR6umaTu1r4pkiXQxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.92.0/22
78.24.96.0/22
178.17.0.0/20
185.63.96.0/22
IPv6:
2a03:c20::/29
Signature Algorithm: sha256WithRSAEncryption
6e:12:9a:f5:6c:01:ae:73:69:73:2e:d9:bb:59:3c:1f:c3:29:
17:b5:09:0a:04:aa:08:95:52:b4:39:e8:a6:86:16:db:0f:c6:
8a:51:9c:79:df:98:16:6d:19:2f:20:d3:30:d8:c2:f8:34:ce:
23:6e:d4:43:f6:ee:9b:78:9a:7a:89:9c:67:87:b3:7a:8d:fd:
ce:bb:42:ae:4f:6c:13:bd:f2:7c:75:e5:bb:97:27:c0:19:d9:
37:95:c4:da:53:cd:8e:d9:23:34:60:91:ae:40:2f:cc:aa:b0:
65:a2:06:54:3e:56:70:4f:42:16:c9:91:0f:26:1e:2c:9a:84:
8e:7d:b2:5f:71:44:e9:d5:7d:65:89:c3:d1:b9:48:74:ea:99:
6a:24:1f:eb:fc:50:f5:a8:60:54:d7:79:24:b8:04:66:b3:ee:
69:18:2c:a1:bf:59:47:e1:f4:1f:64:f2:3a:22:e0:8d:25:bc:
c5:e0:35:d9:a5:c9:b8:98:f0:97:2c:fa:df:54:61:51:e4:63:
e2:c7:94:bc:e0:7f:34:a3:ee:ad:97:a5:38:c1:bd:48:30:17:
80:ec:55:68:5c:fb:7e:f1:52:f1:5f:e2:e2:3d:93:f2:1b:d4:
25:0a:97:50:e9:74:dc:28:68:59:75:b9:06:46:8a:92:2d:b4:
07:df:ef:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:21 2024 by rpki-client on console-ams.rpki-client.org