Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NsxZIqfXtuyh8qKnSIf8XJm-mAw.roa
File: NsxZIqfXtuyh8qKnSIf8XJm-mAw.roa (raw, json)
Hash identifier: +C+OKfo3eE4pv9ShfGBBpHxGpzGYuNY7tOq/oqKyxxQ=
Subject key identifier: 36:CC:59:22:A7:D7:B6:EC:A1:F2:A2:A7:48:87:FC:5C:99:BE:98:0C
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01839E57F3872240FB82A90B049E5352FFFB
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NsxZIqfXtuyh8qKnSIf8XJm-mAw.roa
Signing time: Mon 03 Oct 2022 14:55:07 +0000
ROA not before: Mon 03 Oct 2022 14:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 185.244.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9e:57:f3:87:22:40:fb:82:a9:0b:04:9e:53:52:ff:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Oct 3 14:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36cc5922a7d7b6eca1f2a2a74887fc5c99be980c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ea:76:0a:9b:a0:05:b2:d6:b3:2f:5a:ef:ac:
02:61:5a:6c:3b:6f:f4:0b:fd:f5:83:1f:30:ef:c6:
86:ee:e0:ea:18:1e:9f:ea:6c:54:6b:92:0f:18:2b:
18:03:d8:b6:d4:53:70:73:6a:5f:3f:36:5b:9e:de:
78:95:2c:66:c1:c4:d4:84:6f:85:0a:ac:83:f0:b5:
23:59:3a:24:e1:26:fe:04:a5:d0:5d:e2:23:73:d9:
5b:07:11:51:2f:75:2c:25:a1:93:56:77:a1:8b:f5:
89:44:53:c9:5a:50:42:fc:a0:89:19:54:cf:03:b2:
0b:43:2a:cb:c8:0b:c8:fe:cc:e2:78:06:6d:5b:1b:
33:3e:e6:8e:a6:ee:fd:78:f1:c3:37:af:f4:5a:38:
ef:f9:9b:53:e0:f9:2d:85:70:a6:64:89:9b:8b:c6:
c0:69:91:14:75:c5:14:66:4e:e3:4d:21:41:e9:a3:
78:5f:8a:45:2c:ac:81:9b:b7:18:af:17:9c:5d:ff:
d1:bf:3d:0f:17:e4:47:21:ac:c8:10:7d:fb:61:ef:
b4:e7:bb:53:44:8f:ee:ab:30:cb:1e:ec:91:e6:55:
5d:9f:fe:e9:86:18:d3:a9:de:81:76:de:19:03:eb:
f9:cc:9b:a9:30:44:d9:b9:d3:92:db:d5:05:30:5f:
5e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:CC:59:22:A7:D7:B6:EC:A1:F2:A2:A7:48:87:FC:5C:99:BE:98:0C
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/NsxZIqfXtuyh8qKnSIf8XJm-mAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.107.0/24
Signature Algorithm: sha256WithRSAEncryption
23:fd:3f:49:4d:2a:92:a6:e5:01:8c:e2:38:09:f0:b0:0e:77:
c1:57:8f:51:57:fb:30:3a:cf:ff:f8:93:36:c8:0f:27:c4:17:
65:f8:0e:37:4c:cf:c5:88:f2:5d:09:f9:13:2c:61:ff:28:0a:
19:78:c5:c9:27:7a:79:59:83:78:92:e1:b8:b3:0c:8e:da:93:
cc:60:6d:df:94:77:6a:2e:7d:bd:70:52:50:b9:7a:41:fa:f2:
51:30:be:a9:a5:d7:24:7c:03:04:81:05:ef:65:9e:59:92:1b:
33:44:18:a2:c2:3f:ca:86:1e:38:af:cf:25:09:2d:7d:bd:00:
41:c8:44:5d:d4:0f:bc:e7:dd:ab:7d:00:f3:a0:77:ab:ba:75:
07:78:84:cd:d1:66:91:b0:60:f3:39:5f:68:70:05:1d:af:10:
86:7f:bf:a6:0a:d4:8d:a1:e2:16:51:4d:66:80:24:f6:3f:fa:
9c:31:cc:02:f5:7e:46:69:e4:d9:27:5a:c9:1a:95:12:91:7a:
b8:e8:47:00:70:ae:2a:86:9c:c3:c3:55:8b:01:dc:1e:40:2c:
e1:2e:0d:71:c7:d8:8f:4a:17:74:93:dc:68:08:dd:9a:c6:10:
8a:fd:cb:d5:de:91:3a:7a:6e:e4:df:c9:5b:f9:de:31:7d:be:
6b:ce:00:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:10 2023 by rpki-client on console-fra.rpki-client.org