Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/NyXxVEQ7EZMSp5q1-oyVhRcJhaA.roa
File: NyXxVEQ7EZMSp5q1-oyVhRcJhaA.roa (raw, json)
Hash identifier: gZDVnlDMp0X6ZYqjJL4J+b43R6Hn+leLWtbxSiOM1wc=
Subject key identifier: 37:25:F1:54:44:3B:11:93:12:A7:9A:B5:FA:8C:95:85:17:09:85:A0
Certificate issuer: /CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Certificate serial: 01843EBEEA4170A2F92DE9666EB6DBB375DC
Authority key identifier: 11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/NyXxVEQ7EZMSp5q1-oyVhRcJhaA.roa
Signing time: Thu 03 Nov 2022 18:26:49 +0000
ROA not before: Thu 03 Nov 2022 18:26:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212384
IP address blocks: 185.232.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3e:be:ea:41:70:a2:f9:2d:e9:66:6e:b6:db:b3:75:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Validity
Not Before: Nov 3 18:26:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3725f154443b119312a79ab5fa8c9585170985a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a9:e5:f9:85:b3:65:01:c4:5f:c0:cf:92:29:
fb:72:df:69:4b:f1:e3:57:b0:3d:d1:d1:e1:10:76:
d9:9c:bb:1f:06:b4:4e:ce:4b:a5:b1:bd:f2:b5:71:
c0:42:7f:a5:a5:19:3f:8d:c0:d7:43:b5:12:56:fd:
2f:f7:1f:24:22:6f:fe:f7:be:67:37:f6:ff:e0:f7:
47:19:03:f3:6d:1d:d6:d2:38:ff:0f:02:a0:41:10:
79:e4:67:33:ee:05:b0:5c:f6:49:2b:c3:64:9d:30:
e8:a2:7b:cf:d1:61:02:1a:6d:39:22:a2:06:40:9e:
8d:8e:b1:b2:b0:2d:c7:25:f9:b8:e1:ef:78:0a:08:
4a:45:cd:05:b6:86:d9:d2:71:b8:f2:1a:18:96:32:
8b:0e:40:d5:2d:a2:59:29:0a:ea:5e:e9:cf:ec:b3:
f8:21:7c:73:76:b5:1f:d2:54:cc:45:e2:3c:bb:c7:
13:1a:23:17:78:b4:79:44:22:52:ae:ac:03:8b:d9:
83:ea:4a:7d:20:8e:32:1b:ce:99:7b:41:72:0e:c1:
c6:e3:c7:bf:4b:b9:48:21:f0:07:78:f7:70:96:fd:
a2:a4:9c:78:ec:10:17:0c:64:2b:95:a1:b5:42:c9:
98:16:1c:f5:e0:de:95:e1:8b:41:63:d8:21:0b:15:
44:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:25:F1:54:44:3B:11:93:12:A7:9A:B5:FA:8C:95:85:17:09:85:A0
X509v3 Authority Key Identifier:
keyid:11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/NyXxVEQ7EZMSp5q1-oyVhRcJhaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/Ee7NccGT5Kww7QPQufBdoQHGA9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.207.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:52:9e:03:d0:f4:78:6a:51:4b:d3:7e:30:28:01:f2:89:dc:
b6:6c:ea:6f:e2:e1:c8:44:3c:66:a6:30:24:62:ab:c4:c2:83:
48:a1:b7:c1:cd:59:82:7c:42:f9:38:3a:1b:34:c3:09:21:57:
13:a3:8d:66:d7:ed:b7:48:cf:f6:89:09:a2:20:f0:fe:22:0a:
fe:59:86:f8:58:5e:6a:e5:56:38:9e:e8:73:ab:44:28:92:57:
bb:33:6c:a3:ee:0a:85:a6:c2:83:50:de:3b:c5:a1:06:57:de:
6e:5d:8f:dc:e4:13:08:ff:88:f6:b8:8a:72:f7:a6:01:dc:e0:
e3:83:75:3b:d9:40:6e:bb:6a:9e:92:c4:04:da:e4:1a:42:ab:
3c:37:77:b2:77:09:32:c4:4c:a0:4a:8c:83:9b:8e:a3:47:43:
a0:56:15:95:76:86:fa:3e:d4:01:b1:2a:6c:66:da:09:99:d3:
e2:8a:a0:18:0b:fb:8a:ca:18:cc:10:3e:07:b2:8b:99:c6:71:
42:20:96:c0:d2:db:f6:31:48:d1:81:af:9c:e0:a1:b9:5a:dc:
3d:1f:fa:89:ad:00:f4:2d:f8:1b:d1:82:67:db:62:fe:53:77:
d8:dd:2a:15:cc:1f:55:f4:62:ac:64:e6:1c:06:70:8e:85:4d:
bb:11:95:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:54 2024 by rpki-client on console-fra.rpki-client.org