Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9786f4-dd54-4e43-aea4-59c4c10aebd9/1/nGAvo1sPE3i5NLmZWu3fAjpEeAc.roa
File: nGAvo1sPE3i5NLmZWu3fAjpEeAc.roa (raw, json)
Hash identifier: rMr91rztw2CFyE+6M6f7lp/taLgSalCT2nDhCPem47U=
Subject key identifier: 9C:60:2F:A3:5B:0F:13:78:B9:34:B9:99:5A:ED:DF:02:3A:44:78:07
Certificate issuer: /CN=c49eee24deab5520119b6a3da0457d39c40641db
Certificate serial: B7484F
Authority key identifier: C4:9E:EE:24:DE:AB:55:20:11:9B:6A:3D:A0:45:7D:39:C4:06:41:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xJ7uJN6rVSARm2o9oEV9OcQGQds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9786f4-dd54-4e43-aea4-59c4c10aebd9/1/nGAvo1sPE3i5NLmZWu3fAjpEeAc.roa
Signing time: Sat 01 Jan 2022 07:01:58 +0000
ROA not before: Sat 01 Jan 2022 07:01:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43667
IP address blocks: 77.91.192.0/21 maxlen: 24
185.32.132.0/22 maxlen: 24
94.198.128.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12011599 (0xb7484f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c49eee24deab5520119b6a3da0457d39c40641db
Validity
Not Before: Jan 1 07:01:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c602fa35b0f1378b934b9995aeddf023a447807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:94:af:3e:5f:60:ad:cf:9c:41:62:91:00:49:
cd:1e:03:aa:ba:61:71:86:2b:f0:9a:ad:6e:c2:00:
47:51:96:b7:60:b7:35:76:7f:78:ec:f5:82:3e:b1:
d7:60:36:9f:ca:08:ee:36:b3:f5:1e:74:e3:ce:14:
3e:39:a3:7a:8c:87:07:56:a9:8c:72:d1:53:a6:56:
7e:7d:48:d9:3f:69:4a:b2:26:f4:48:84:17:8d:1c:
23:ee:79:32:6f:43:e3:ff:3b:11:ab:be:8f:6e:27:
85:a8:8b:d8:e7:73:b1:56:c4:d1:8c:76:ae:74:a8:
34:e5:ba:37:4a:cb:af:44:77:a8:c7:97:19:84:41:
85:f7:7b:74:8d:8c:fc:3f:06:15:d5:3f:68:0d:e5:
a4:a4:cf:d5:8f:73:ba:a1:19:8f:c9:5d:bc:4b:cb:
f7:b4:a3:38:83:88:64:ef:b2:2c:46:3c:bc:d1:db:
84:98:e0:a6:b4:3b:51:12:9f:b5:26:7c:51:d8:cc:
c3:28:2b:a6:75:1d:53:20:4d:55:74:56:38:7c:e2:
04:97:05:55:51:6f:02:48:53:92:62:a6:5f:8b:b2:
e6:32:0f:f0:7f:6d:42:1c:9c:c9:dc:5d:af:12:6e:
1e:a2:ca:78:4a:60:44:09:f1:5a:d3:84:8f:7b:3b:
85:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:60:2F:A3:5B:0F:13:78:B9:34:B9:99:5A:ED:DF:02:3A:44:78:07
X509v3 Authority Key Identifier:
keyid:C4:9E:EE:24:DE:AB:55:20:11:9B:6A:3D:A0:45:7D:39:C4:06:41:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xJ7uJN6rVSARm2o9oEV9OcQGQds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9786f4-dd54-4e43-aea4-59c4c10aebd9/1/nGAvo1sPE3i5NLmZWu3fAjpEeAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9786f4-dd54-4e43-aea4-59c4c10aebd9/1/xJ7uJN6rVSARm2o9oEV9OcQGQds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.91.192.0/21
94.198.128.0/21
185.32.132.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:1c:7e:1f:b3:91:36:07:91:e6:02:d0:17:ca:78:f6:58:1c:
ca:ce:f5:cd:74:f7:bf:3b:69:d8:da:7c:41:a2:f0:a2:74:32:
17:f1:ac:b6:dc:b3:6c:75:f5:2e:b2:4a:4f:47:4c:11:f5:4a:
24:39:ff:80:4b:05:8c:17:98:64:04:56:71:72:3b:e1:60:c9:
49:3c:70:b0:72:43:60:0c:bd:86:04:d2:a9:69:a3:be:b5:2c:
ec:a3:2d:66:23:fa:1b:19:8a:5e:6e:92:67:ae:e5:09:59:3c:
a4:29:3c:9b:6d:7a:a6:6e:46:72:ed:05:51:2e:23:f4:92:0f:
42:3a:17:69:a5:e7:01:61:a2:df:76:62:5f:57:85:2f:ed:28:
30:f3:7f:2a:4a:82:6d:3f:ab:26:7c:a1:31:90:d6:c9:6a:6a:
1f:5a:94:4d:35:ad:aa:47:d9:61:5e:80:6c:eb:2c:ed:0d:f5:
7f:91:98:98:a2:8d:a1:03:a1:55:dc:53:fe:69:d0:4f:f6:2f:
4d:ca:39:c4:9a:13:bb:83:72:f3:a1:a8:b0:d0:62:4b:8f:18:
27:c8:c6:69:3b:f0:90:42:cb:96:0e:98:25:af:bf:7d:9e:a8:
41:db:0d:5d:2a:ab:1f:0c:63:f7:9b:b4:96:f3:3d:0d:41:71:
c7:61:4f:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:22 2024 by rpki-client on console-fra.rpki-client.org