Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0fc7e5-b1f6-474e-99a7-eda23f2f17e9/1/NvSnpnRRdSV3LRK6TK_j-PH4zqQ.roa
File: NvSnpnRRdSV3LRK6TK_j-PH4zqQ.roa (raw, json)
Hash identifier: KISXCuE4P9yycWqw1zDaiVT9fVfwhurbvQLUrRUyFDs=
Subject key identifier: 36:F4:A7:A6:74:51:75:25:77:2D:12:BA:4C:AF:E3:F8:F1:F8:CE:A4
Certificate issuer: /CN=e1874a887aa288dab72c658e93694ed5dafd2026
Certificate serial: 0266838D
Authority key identifier: E1:87:4A:88:7A:A2:88:DA:B7:2C:65:8E:93:69:4E:D5:DA:FD:20:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4YdKiHqiiNq3LGWOk2lO1dr9ICY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0fc7e5-b1f6-474e-99a7-eda23f2f17e9/1/NvSnpnRRdSV3LRK6TK_j-PH4zqQ.roa
Signing time: Sat 01 Jan 2022 07:01:15 +0000
ROA not before: Sat 01 Jan 2022 07:01:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2856
IP address blocks: 185.105.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40272781 (0x266838d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1874a887aa288dab72c658e93694ed5dafd2026
Validity
Not Before: Jan 1 07:01:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36f4a7a674517525772d12ba4cafe3f8f1f8cea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:24:f5:4a:8b:ac:a3:ae:18:a0:9b:10:91:a3:
24:9e:fc:e0:88:2d:4c:c7:20:40:eb:cb:d2:f4:04:
d9:8c:cf:d3:77:54:0b:32:2a:23:15:83:16:ac:01:
f8:17:85:5c:f4:89:6b:a9:e2:0f:0d:d7:86:fd:87:
5f:59:0a:55:b9:1a:ac:5b:37:29:63:8c:8f:7b:7b:
35:a5:bc:22:6d:42:37:73:88:74:50:fc:80:49:e2:
f5:3d:d6:ea:3b:53:22:9a:e2:96:c8:38:4e:89:d7:
37:11:89:ea:1d:37:b3:9b:a5:96:c8:1b:4f:f1:10:
4e:24:ef:5a:b3:b4:bf:65:85:92:47:f0:13:78:4b:
4e:0d:ea:d3:9c:f7:3b:65:90:60:11:12:2f:60:9f:
b8:07:a8:23:1d:af:bc:12:44:c7:2e:f2:e8:8d:ad:
5f:f3:45:23:64:f1:22:66:27:96:07:34:f5:bc:36:
26:9c:c1:ad:7d:60:5c:04:fd:83:8f:81:71:62:c9:
a2:d1:ff:d0:5a:b5:56:55:93:c8:c2:3c:f8:d7:06:
4c:5c:d4:88:2d:5a:dd:04:35:ba:5d:76:92:b7:75:
1b:c1:2e:68:52:3c:b8:8a:aa:86:4b:96:29:fc:c6:
e7:5a:96:9a:d5:5c:15:a5:7b:70:29:24:ae:c6:b8:
a5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F4:A7:A6:74:51:75:25:77:2D:12:BA:4C:AF:E3:F8:F1:F8:CE:A4
X509v3 Authority Key Identifier:
keyid:E1:87:4A:88:7A:A2:88:DA:B7:2C:65:8E:93:69:4E:D5:DA:FD:20:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4YdKiHqiiNq3LGWOk2lO1dr9ICY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0fc7e5-b1f6-474e-99a7-eda23f2f17e9/1/NvSnpnRRdSV3LRK6TK_j-PH4zqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0fc7e5-b1f6-474e-99a7-eda23f2f17e9/1/4YdKiHqiiNq3LGWOk2lO1dr9ICY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.11.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:92:45:ec:e0:e9:d2:ac:71:e9:f4:6b:f7:92:07:5a:06:80:
a9:c3:2c:dd:5b:6e:d8:0e:8c:93:c8:60:5d:ac:7f:a0:56:7f:
86:d2:fa:d1:ec:61:a0:a3:25:37:31:11:e3:5c:92:de:27:69:
18:e2:2c:dd:19:64:57:8a:bd:28:00:c3:26:8f:77:a9:2b:87:
62:9d:58:8e:2f:60:e4:2f:99:b6:da:45:b6:50:e4:0c:17:e1:
e8:d2:cd:d6:c5:25:4e:b2:08:ce:af:8b:98:b0:c9:bf:83:c1:
ad:33:96:d6:69:65:aa:c1:79:b7:c7:cb:ed:38:f7:a0:e2:84:
e0:d4:6b:84:f0:0c:d7:ed:8a:e5:ea:99:a3:0e:08:be:ef:be:
2d:3c:6f:1f:16:98:50:b1:99:7c:87:0a:7f:10:c4:40:bf:fd:
d6:55:86:19:e8:ee:e2:ed:24:43:cc:28:2e:dd:e1:38:67:78:
b2:bc:29:65:02:18:6d:ae:30:05:62:38:55:01:d8:32:23:f4:
04:78:b7:af:20:f4:37:2f:16:17:35:6e:15:ae:af:3d:f3:9d:
93:3c:c3:f9:a6:9a:93:e5:b0:39:d6:7c:dd:aa:22:df:9c:18:
2c:46:d8:25:a3:88:83:ae:01:71:77:a5:c0:70:3a:32:60:53:
21:35:20:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:06 2023 by rpki-client on console-ams.rpki-client.org