Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/RelNes74zzl2wifTi_q8By8wy3U.roa
File: RelNes74zzl2wifTi_q8By8wy3U.roa (raw, json)
Hash identifier: 4jPxkWvJjxwrcNcz0oCi9Xuh0WvKfvTj+FbY/cZzHio=
Subject key identifier: 45:E9:4D:7A:CE:F8:CF:39:76:C2:27:D3:8B:FA:BC:07:2F:30:CB:75
Certificate issuer: /CN=7a478c5aa226a278e8b1906f371c60cfc7d87e8e
Certificate serial: 03D14D54
Authority key identifier: 7A:47:8C:5A:A2:26:A2:78:E8:B1:90:6F:37:1C:60:CF:C7:D8:7E:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ekeMWqImonjosZBvNxxgz8fYfo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/RelNes74zzl2wifTi_q8By8wy3U.roa
Signing time: Tue 12 Apr 2022 10:05:01 +0000
ROA not before: Tue 12 Apr 2022 10:05:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 185.236.125.0/24 maxlen: 24
185.236.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64048468 (0x3d14d54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a478c5aa226a278e8b1906f371c60cfc7d87e8e
Validity
Not Before: Apr 12 10:05:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45e94d7acef8cf3976c227d38bfabc072f30cb75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7c:86:82:35:1b:ac:b0:c2:3b:4d:84:bb:17:
01:db:95:3f:5e:54:97:44:cb:6c:7b:7b:7f:58:03:
6b:e0:1c:16:00:c4:75:fd:26:39:51:7e:e1:85:3b:
51:46:51:6d:fa:8b:fd:25:20:c6:b2:af:ef:aa:ea:
8c:12:90:90:31:84:9c:f2:69:89:e4:db:23:83:29:
e0:81:4a:a4:d6:ab:8a:06:0e:e3:7f:8d:68:06:f4:
34:d4:89:8f:f5:31:56:42:38:b8:13:36:29:35:72:
ec:0c:ce:b0:94:6f:19:f5:65:56:0d:a5:c0:81:e0:
ed:7d:5b:2f:8b:d8:1c:46:08:0b:a8:c1:0b:fb:4d:
af:15:4a:a6:f3:0b:72:b0:63:00:9d:10:18:57:b0:
9f:2c:41:49:74:b5:51:2c:5c:b9:01:60:80:e7:92:
08:ff:8d:9f:5b:7a:34:6e:cf:36:6b:5a:24:60:80:
2f:68:0c:06:96:43:7c:3d:1f:0a:74:97:91:e2:5a:
79:de:49:e9:09:8e:b1:96:fa:4a:43:25:bc:4a:f3:
26:83:e1:a5:54:17:60:bb:8d:43:47:b2:3f:dc:d2:
20:d9:28:45:ec:f6:c4:6e:73:e7:46:1e:13:26:d3:
b6:5a:1e:b0:7d:86:ec:0f:d9:eb:95:4d:a6:e0:a6:
9c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E9:4D:7A:CE:F8:CF:39:76:C2:27:D3:8B:FA:BC:07:2F:30:CB:75
X509v3 Authority Key Identifier:
keyid:7A:47:8C:5A:A2:26:A2:78:E8:B1:90:6F:37:1C:60:CF:C7:D8:7E:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ekeMWqImonjosZBvNxxgz8fYfo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/RelNes74zzl2wifTi_q8By8wy3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/51a520-e08d-43b3-a6b0-d76ec9cc0d28/1/ekeMWqImonjosZBvNxxgz8fYfo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.124.0/23
Signature Algorithm: sha256WithRSAEncryption
38:e0:6c:b8:ce:a3:5b:4e:4c:90:14:6a:4b:a5:10:6c:8c:3b:
49:2c:bc:e9:a6:66:95:7d:e8:f1:73:60:66:78:bb:22:5c:fd:
78:c6:02:e3:1e:e8:e0:15:28:8b:cc:d7:05:c2:7d:a5:cf:25:
c4:1d:a9:61:18:ee:6c:7e:24:f8:63:7e:c3:0e:53:4d:11:fa:
2d:08:63:b8:d1:c5:70:bc:2f:c5:a1:dd:b6:e8:94:28:a2:b7:
f7:ee:ed:59:25:58:d6:7f:e9:d8:29:80:2a:81:8c:0a:b0:36:
a1:4e:9e:50:88:f4:60:f0:00:34:9b:4f:a2:3e:b2:7e:98:b6:
4c:bd:ea:04:1d:88:4c:53:dc:6a:b3:88:bc:cc:da:6f:92:97:
1f:bc:c3:0e:ae:86:2b:99:42:1f:4c:25:26:8d:5e:e0:2a:2d:
80:a8:13:55:49:29:be:51:f6:c7:57:4d:2c:48:27:27:0f:a6:
18:de:f4:61:3d:14:48:76:83:37:20:58:5a:68:c5:b9:37:76:
fd:91:d2:83:87:ae:45:fa:cf:85:58:43:1c:a9:1e:ca:1f:6b:
8d:aa:7f:0a:34:52:ac:75:ee:84:e7:17:b3:71:de:83:93:01:
da:c8:8c:ed:4c:27:14:7a:bd:1b:0b:45:98:d7:d1:28:00:94:
75:fa:8d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:38 2024 by rpki-client on console-ams.rpki-client.org