Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/NJE8d-MbY1Cv0DAK7PSV5m9aCkA.roa
File: NJE8d-MbY1Cv0DAK7PSV5m9aCkA.roa (raw, json)
Hash identifier: FOTv/xEuKERAFTJGpPtEzXkYhJ22atZK1AjT5sts30I=
Subject key identifier: 34:91:3C:77:E3:1B:63:50:AF:D0:30:0A:EC:F4:95:E6:6F:5A:0A:40
Certificate issuer: /CN=27ce1e9a6522616ab30b0f123e09d305a82304af
Certificate serial: 350DC226
Authority key identifier: 27:CE:1E:9A:65:22:61:6A:B3:0B:0F:12:3E:09:D3:05:A8:23:04:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J84emmUiYWqzCw8SPgnTBagjBK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/NJE8d-MbY1Cv0DAK7PSV5m9aCkA.roa
Signing time: Sat 01 Jan 2022 02:54:24 +0000
ROA not before: Sat 01 Jan 2022 02:54:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39739
IP address blocks: 37.77.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 890094118 (0x350dc226)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27ce1e9a6522616ab30b0f123e09d305a82304af
Validity
Not Before: Jan 1 02:54:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34913c77e31b6350afd0300aecf495e66f5a0a40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:32:da:12:e6:7e:cf:52:52:6e:34:d0:9a:07:
92:b7:8d:fa:98:e4:75:71:0b:b5:ab:d1:64:fb:f4:
6b:51:6b:77:f0:b2:5d:c7:a5:3a:73:78:a0:ba:6c:
67:2a:1b:a1:95:d4:35:ea:ed:7d:a2:e5:7e:6a:19:
f6:4b:b4:78:db:ef:56:89:6a:cd:24:c7:f2:9a:73:
3a:35:80:94:7b:fa:62:84:cb:d6:84:f4:be:af:a6:
cd:99:2e:49:0c:e8:29:27:fd:fe:c4:5f:96:54:2b:
be:cb:a6:2a:21:84:bd:d4:68:33:ce:ce:c8:85:58:
77:a4:a0:3d:9b:62:8d:61:80:68:6a:94:28:7b:bf:
28:6a:ee:5a:a4:3e:ba:da:73:fe:6e:8d:7e:cd:6a:
34:0f:23:2b:46:1f:38:53:37:8e:8d:63:3e:8a:3e:
ca:c0:6a:2a:e2:32:65:d1:44:cd:d6:b8:93:15:a3:
0f:b1:24:a5:12:81:18:41:a3:76:1b:74:05:14:4a:
2e:aa:98:fb:70:a8:4a:02:db:5f:c4:be:29:48:88:
4b:5b:25:fe:0d:f4:83:c9:de:6e:0b:8b:d6:96:2f:
a6:5a:67:9a:ec:92:a0:55:03:e3:93:1d:dc:c8:bf:
09:e3:7a:3c:ef:f5:ad:80:81:c8:b8:38:d5:ff:7a:
ed:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:91:3C:77:E3:1B:63:50:AF:D0:30:0A:EC:F4:95:E6:6F:5A:0A:40
X509v3 Authority Key Identifier:
keyid:27:CE:1E:9A:65:22:61:6A:B3:0B:0F:12:3E:09:D3:05:A8:23:04:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J84emmUiYWqzCw8SPgnTBagjBK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/NJE8d-MbY1Cv0DAK7PSV5m9aCkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9e22a2-9365-4956-8e66-ce4f25ace252/1/J84emmUiYWqzCw8SPgnTBagjBK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.103.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:0c:76:74:a1:d4:25:a3:1d:77:e4:6e:ca:63:5d:92:f6:18:
98:66:59:56:d0:d5:c3:b4:65:2a:ec:1d:30:0c:4c:29:f7:bd:
30:cf:05:d9:8b:d0:10:8d:d9:91:4c:9d:4c:be:fa:03:5c:66:
24:1f:0e:c3:39:d5:ae:88:25:33:a8:1f:96:26:28:8d:87:f9:
74:3d:29:f9:fe:56:f0:72:26:2c:13:87:57:ef:b3:92:a3:ef:
d9:38:3e:46:94:41:d6:9d:c8:87:3f:85:43:c8:75:5f:9f:d3:
c2:f0:91:f8:0b:8b:c8:fd:af:c0:da:6c:0c:6d:8e:14:4a:f6:
97:38:ed:de:67:51:b6:b4:fc:6b:1d:fa:7e:14:fa:d6:d0:de:
3a:8e:a6:4e:96:b9:00:7e:d2:03:8c:11:1f:c0:f2:3b:60:bb:
bd:04:57:96:74:86:39:2f:b3:ef:ce:34:a1:b5:01:80:6d:98:
6a:12:b5:57:8d:8d:42:76:3c:fc:c8:4f:e5:ce:0d:95:cd:a6:
29:42:d8:2b:ac:7e:a0:ff:78:65:60:56:9d:29:6b:4e:f4:39:
07:a6:38:9e:5c:fa:2d:30:e1:fc:d1:11:05:39:e9:6a:31:2e:
50:d5:e8:11:23:c7:66:25:e2:3f:2d:07:61:2c:07:a1:9f:8a:
9e:cb:96:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org