Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/NxkEH3DfdWLZkz-q8U3N-IofKHA.roa
File: NxkEH3DfdWLZkz-q8U3N-IofKHA.roa (raw, json)
Hash identifier: wXGM8Z5RJHi711yxFl39ggaN0MJiucbwTfheQ0eGmvw=
Subject key identifier: 37:19:04:1F:70:DF:75:62:D9:93:3F:AA:F1:4D:CD:F8:8A:1F:28:70
Certificate issuer: /CN=2a0cc46301c8b1fd4639293018fba53653a265b2
Certificate serial: 15C493C2
Authority key identifier: 2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/NxkEH3DfdWLZkz-q8U3N-IofKHA.roa
Signing time: Sat 01 Jan 2022 08:01:36 +0000
ROA not before: Sat 01 Jan 2022 08:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39540
IP address blocks: 185.95.219.0/24 maxlen: 24
2a05:fc87::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 365204418 (0x15c493c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a0cc46301c8b1fd4639293018fba53653a265b2
Validity
Not Before: Jan 1 08:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3719041f70df7562d9933faaf14dcdf88a1f2870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0f:34:eb:2b:51:59:22:c0:66:04:9f:34:22:
20:83:12:d8:5d:4f:e9:7d:f3:f8:9c:66:cd:7c:ba:
d4:94:3a:fd:a9:68:58:51:d1:a5:ee:f7:7d:75:e3:
47:8f:31:5f:2f:da:2d:88:83:bb:98:19:51:42:3b:
88:b0:50:28:9a:4f:3e:e5:f1:dc:b2:a6:e9:fd:39:
2c:4c:28:0e:6c:1c:8e:93:b7:c3:dd:5e:e6:04:ae:
a5:e1:5e:11:fd:77:c7:29:f5:61:63:4f:5b:49:c6:
a2:13:81:11:db:34:ff:91:72:6d:c9:62:3a:1e:6a:
66:43:23:9f:b3:a3:2d:fd:07:1d:32:cf:82:aa:2c:
8a:ee:5e:da:35:db:34:09:44:41:9c:e4:22:c8:cd:
01:99:e9:19:3a:72:37:b2:3e:cb:e5:bd:2b:11:0d:
de:c0:c4:78:69:30:7f:d3:58:bd:27:a6:15:38:93:
df:05:c4:60:03:26:fc:9a:49:3b:21:2b:6f:3b:b4:
31:9f:56:21:89:34:92:ba:6c:47:35:35:3b:29:0c:
76:ed:2a:5a:a0:84:a7:d6:a2:19:bc:9b:d0:71:94:
15:d9:9e:37:bf:64:a2:3c:b2:8a:0f:84:04:e9:8b:
95:09:6b:2f:e5:5d:c9:b6:35:82:48:1d:15:5f:8e:
e3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:19:04:1F:70:DF:75:62:D9:93:3F:AA:F1:4D:CD:F8:8A:1F:28:70
X509v3 Authority Key Identifier:
keyid:2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/NxkEH3DfdWLZkz-q8U3N-IofKHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.219.0/24
IPv6:
2a05:fc87::/32
Signature Algorithm: sha256WithRSAEncryption
7e:dd:f6:c4:5b:94:c2:c4:a1:2a:71:b3:aa:3d:8f:e2:f3:fb:
4f:a7:1a:a2:52:88:a1:c3:68:13:27:63:dd:08:32:22:32:01:
12:76:eb:97:85:4f:46:42:38:35:57:2e:99:b0:dc:8c:7a:a6:
2a:a7:69:89:79:d3:3c:d3:d9:64:74:0c:c4:30:39:68:95:7e:
20:6b:02:9c:d5:2a:0f:83:ee:3b:be:6f:91:f8:0e:dc:29:63:
02:1d:da:04:3e:1f:58:c2:cd:be:ab:61:b3:45:d3:5b:d5:12:
0a:3a:a4:7a:51:27:f2:0a:32:db:1d:e8:d0:5b:05:18:49:de:
47:dd:d1:f9:86:da:e3:d9:33:26:51:69:bc:a6:fc:8b:3c:10:
6d:54:a1:ba:8d:4f:42:d3:0c:01:f8:30:f2:5f:41:59:0c:83:
28:4f:cc:78:95:76:51:50:66:52:cb:84:76:49:6a:18:f4:03:
00:9c:a5:2f:fc:c9:28:83:9f:64:3a:c4:01:f3:d4:6d:0b:51:
7b:2a:19:1f:cc:6c:c0:bd:45:a8:5c:be:ac:ec:35:fd:c5:04:
7f:d2:e3:fd:5f:87:5b:ca:73:af:85:74:09:70:a3:29:8b:8e:
d2:84:9e:7c:cd:74:df:37:d8:14:27:24:81:b3:5b:e2:ff:ac:
68:08:07:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:35 2024 by rpki-client on console-fra.rpki-client.org