Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/Nncn0EJv2l7aT2CiuVd4kdb6q5I.roa
File: Nncn0EJv2l7aT2CiuVd4kdb6q5I.roa (raw, json)
Hash identifier: FwRIjI+2iKQlV5RlP81x+M8Im82qmfwHI/nES9z3NBk=
Subject key identifier: 36:77:27:D0:42:6F:DA:5E:DA:4F:60:A2:B9:57:78:91:D6:FA:AB:92
Certificate issuer: /CN=96773e9cc974301a78b7ee6d994528f1f882e46f
Certificate serial: 16FD9964
Authority key identifier: 96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/Nncn0EJv2l7aT2CiuVd4kdb6q5I.roa
Signing time: Sat 01 Jan 2022 08:06:10 +0000
ROA not before: Sat 01 Jan 2022 08:06:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13037
IP address blocks: 185.81.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 385718628 (0x16fd9964)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96773e9cc974301a78b7ee6d994528f1f882e46f
Validity
Not Before: Jan 1 08:06:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=367727d0426fda5eda4f60a2b9577891d6faab92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:60:61:97:d7:49:12:2e:57:7b:fe:6e:e3:92:
b0:43:94:60:9c:97:67:57:bf:3b:62:f4:62:01:27:
ad:51:08:1f:ca:2c:02:e3:ce:f3:2b:ae:a5:d2:e6:
8e:f4:d0:81:27:e2:5a:60:1e:77:8a:29:df:f5:5e:
a7:b5:44:48:24:66:2a:61:e3:74:4b:d4:eb:0a:35:
34:26:b6:32:c2:9c:65:e4:c9:7d:6e:e0:ce:86:96:
82:1e:fc:5d:68:3d:16:a4:bc:78:b6:b7:7d:ed:62:
13:7b:1e:74:53:b8:69:57:32:38:d2:00:58:7d:02:
b6:f9:43:60:4a:05:4f:d0:1a:0d:45:48:92:99:51:
8c:1a:fb:e5:fc:8f:34:cf:44:51:5d:14:e2:2a:b0:
6f:3c:ea:b9:2b:a7:54:b9:70:43:97:89:b4:0b:f3:
71:8e:a8:ca:41:a7:55:ca:e4:ee:62:1c:7f:a5:43:
28:59:ab:97:a7:70:f5:0f:b6:b8:88:93:6b:a8:e8:
58:4e:f1:31:ee:64:fd:96:05:50:1a:f3:38:a9:bd:
9c:00:2c:41:3d:a7:40:31:14:5f:56:1c:a6:6a:35:
07:27:d4:9b:ca:b7:41:f3:50:10:46:30:5e:98:63:
48:59:ac:74:13:48:86:64:d1:9f:e1:77:12:c9:4a:
55:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:77:27:D0:42:6F:DA:5E:DA:4F:60:A2:B9:57:78:91:D6:FA:AB:92
X509v3 Authority Key Identifier:
keyid:96:77:3E:9C:C9:74:30:1A:78:B7:EE:6D:99:45:28:F1:F8:82:E4:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lnc-nMl0MBp4t-5tmUUo8fiC5G8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/Nncn0EJv2l7aT2CiuVd4kdb6q5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/9120cb-0b06-4861-b657-757838670948/1/lnc-nMl0MBp4t-5tmUUo8fiC5G8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.232.0/22
Signature Algorithm: sha256WithRSAEncryption
13:0e:a2:36:cd:f1:e4:35:07:76:64:c8:09:53:8a:31:14:74:
af:27:9d:fd:15:91:fd:67:63:34:6a:bb:da:34:0d:d7:88:21:
41:a1:6a:5a:f9:1a:25:12:9c:a1:21:3c:b5:60:79:62:a0:3c:
38:92:00:9d:4c:b1:6b:3a:6b:5c:40:69:94:d1:f2:10:90:ec:
72:53:07:3a:fa:35:ad:5b:bd:98:4a:95:f2:48:4a:ac:6d:9a:
a3:cd:49:e8:2b:58:55:58:26:8f:59:0b:52:db:23:f3:4a:e8:
93:8e:2d:3e:2c:ca:14:a5:24:b4:ab:42:98:9d:0b:be:ef:97:
22:0d:d2:bc:87:ba:83:89:40:b4:18:33:24:d8:c3:02:7e:01:
67:68:b4:ea:19:3d:1a:1c:9e:72:41:09:1a:ea:b3:79:7f:ca:
d3:a7:d0:c5:3f:bc:5c:d0:81:81:4b:44:28:e6:bb:9f:fc:3f:
36:d7:a4:09:f0:68:25:be:66:99:01:2f:e6:a2:08:19:7f:f4:
9f:d5:1f:03:8a:a3:9e:94:2f:5f:46:b5:69:94:b9:bb:cb:dd:
6e:84:c3:e5:75:9d:2c:3c:0f:b0:02:93:4e:d4:29:97:f4:61:
04:45:89:f6:d1:a8:c7:7b:31:e6:a7:5b:75:18:01:78:f1:50:
79:9d:32:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 06:45:33 2025 by rpki-client