Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/nlCqKD8vtlQqkZ_MC9q3Ovi3UDU.roa
File: nlCqKD8vtlQqkZ_MC9q3Ovi3UDU.roa (raw, json)
Hash identifier: j4U+vHHLVk+UgE4uyOsHuhsMBi01RUQHCQtZrxPgA7I=
Subject key identifier: 9E:50:AA:28:3F:2F:B6:54:2A:91:9F:CC:0B:DA:B7:3A:F8:B7:50:35
Certificate issuer: /CN=3b7ec9423bf90c81d22d94841c10357a54260379
Certificate serial: 0B416853
Authority key identifier: 3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/nlCqKD8vtlQqkZ_MC9q3Ovi3UDU.roa
Signing time: Thu 21 Apr 2022 10:41:06 +0000
ROA not before: Thu 21 Apr 2022 10:41:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49453
IP address blocks: 185.152.92.0/22 maxlen: 24
85.239.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188835923 (0xb416853)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7ec9423bf90c81d22d94841c10357a54260379
Validity
Not Before: Apr 21 10:41:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e50aa283f2fb6542a919fcc0bdab73af8b75035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a2:f3:d5:0e:5c:f0:63:5b:71:12:50:50:50:
a1:78:07:f9:89:ce:c6:93:ff:a2:d9:a2:51:cb:cf:
8d:9d:82:89:ee:9d:a9:b4:0c:3a:63:e3:53:06:4a:
14:2d:4f:4d:88:61:22:8c:24:ce:b4:f8:71:76:51:
da:e8:c0:a2:5d:9a:14:f1:2c:51:64:8f:eb:9b:5c:
c3:fe:e7:7f:b7:16:fa:95:12:34:a4:68:f7:87:3d:
1b:3e:f5:89:4a:9b:e0:74:10:00:f1:1e:f6:12:b0:
2c:21:24:61:3e:5e:0b:1d:e2:6d:27:eb:e3:dd:57:
ab:c0:d2:02:d8:ff:48:a9:9b:4c:2f:bf:84:0c:9d:
32:de:78:84:db:b5:a7:c1:18:3d:76:c3:74:eb:b0:
2e:e7:56:ae:11:a4:da:44:e5:8a:db:d0:29:bd:d9:
20:71:eb:11:d2:2d:13:9e:c8:42:6b:85:be:4e:8d:
62:58:27:ef:a5:06:5b:d1:cb:7f:a4:b8:34:90:b1:
a5:f9:95:e7:e7:7f:e8:46:eb:3a:25:a7:0f:02:00:
6f:ef:23:58:41:3b:ca:93:55:03:de:40:eb:d0:a5:
26:e0:67:91:34:bd:18:c1:90:e8:9b:f6:e5:9a:95:
11:c7:1e:b4:15:12:e3:03:70:f7:ad:b0:46:bd:1e:
71:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:50:AA:28:3F:2F:B6:54:2A:91:9F:CC:0B:DA:B7:3A:F8:B7:50:35
X509v3 Authority Key Identifier:
keyid:3B:7E:C9:42:3B:F9:0C:81:D2:2D:94:84:1C:10:35:7A:54:26:03:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O37JQjv5DIHSLZSEHBA1elQmA3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/nlCqKD8vtlQqkZ_MC9q3Ovi3UDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8ea47f-eff3-4627-94ed-1d10f3c70bb4/1/O37JQjv5DIHSLZSEHBA1elQmA3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.35.0/24
185.152.92.0/22
Signature Algorithm: sha256WithRSAEncryption
79:2c:c4:78:34:10:da:99:23:8b:14:5e:85:9f:36:eb:fb:a0:
87:1f:00:7f:f9:e3:31:96:8c:f7:01:6c:72:c4:2f:ff:98:d0:
c0:43:a5:d4:e0:a3:83:8c:53:32:85:51:de:fb:9d:ad:50:86:
f0:41:6e:cb:2a:ca:bd:cc:7c:65:47:fb:82:21:1a:de:9a:37:
3d:80:5a:03:71:52:ff:b7:d9:c3:79:3c:27:d6:fe:92:ef:61:
b1:08:00:a5:ee:7f:22:9a:8d:b5:fd:67:87:b4:fb:bc:b6:0b:
6c:b3:52:09:5e:0f:62:26:b4:99:b9:f6:42:31:74:44:1c:f6:
23:fe:6d:fa:5c:03:0f:09:7b:06:13:8d:79:89:16:4a:d6:dd:
f4:af:60:66:99:9d:66:ce:d5:5e:e7:b3:4f:3d:c6:de:19:34:
db:ef:90:f2:23:8a:8d:9b:17:7d:0e:41:f5:c5:51:bd:5f:9e:
e0:67:71:5f:77:1a:e0:04:02:3c:51:e4:b5:f5:e4:41:ca:4b:
f8:cf:e3:3f:a6:6c:12:5e:1b:d2:23:92:8d:3e:86:b5:35:d5:
f4:7e:bd:09:df:5c:e3:59:9d:ff:4c:08:af:3c:97:c0:6a:e2:
0b:8b:96:4c:2b:1f:ec:63:44:77:4b:1f:ae:20:f9:1f:0e:60:
cc:0a:62:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org