Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/Nu1ThTq5ZC94XMjb8v3AtOUygkE.roa
File: Nu1ThTq5ZC94XMjb8v3AtOUygkE.roa (raw, json)
Hash identifier: kYl6qasid1yLNQerLFOym2HZdwt2og17FmnilsQOSWg=
Subject key identifier: 36:ED:53:85:3A:B9:64:2F:78:5C:C8:DB:F2:FD:C0:B4:E5:32:82:41
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 072058D2
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/Nu1ThTq5ZC94XMjb8v3AtOUygkE.roa
Signing time: Sat 01 Jan 2022 12:55:56 +0000
ROA not before: Sat 01 Jan 2022 12:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206150
IP address blocks: 83.229.113.0/24 maxlen: 24
83.229.23.0/24 maxlen: 24
83.229.34.0/24 maxlen: 24
217.194.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119560402 (0x72058d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Jan 1 12:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36ed53853ab9642f785cc8dbf2fdc0b4e5328241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:60:e3:2f:38:38:57:e1:de:27:c2:1c:b5:f7:
f6:eb:7a:4e:40:d1:5f:fa:7d:6b:dc:f7:37:bf:14:
81:ba:10:4b:7f:91:62:ea:1c:63:1b:1b:63:66:9d:
c7:61:74:68:89:03:0a:84:95:d2:de:f0:c1:5d:ce:
23:3e:18:a3:cc:cd:b8:d2:67:46:93:7a:28:51:bc:
35:e6:0a:59:88:fc:28:29:48:6a:75:89:26:5f:3a:
0b:1b:66:c7:42:de:59:9c:e8:be:65:a2:32:83:39:
c1:5b:94:37:cf:e8:6c:1d:40:95:7e:6e:c8:24:97:
8b:47:99:2e:65:7b:0d:06:88:43:36:93:d9:21:54:
61:32:ec:e9:b6:1c:15:d8:ed:fc:50:e6:11:a0:62:
78:14:2b:92:f3:e6:fb:a4:77:28:23:70:cf:13:5f:
c3:6e:56:ed:f6:9e:3a:71:78:75:ad:ff:f0:76:03:
5f:0f:60:6c:d2:5c:65:cf:79:f9:b0:01:fa:95:d1:
78:31:d9:e5:f2:eb:0f:8e:dc:8e:3c:a1:f6:92:80:
2d:a3:bf:26:96:59:18:66:92:64:14:a0:d3:93:0f:
0d:7b:80:72:d9:28:bc:5a:4e:ce:82:8b:57:de:33:
a0:51:2a:ec:9a:41:19:8a:b7:35:25:09:00:4e:52:
52:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:ED:53:85:3A:B9:64:2F:78:5C:C8:DB:F2:FD:C0:B4:E5:32:82:41
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/Nu1ThTq5ZC94XMjb8v3AtOUygkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.229.23.0/24
83.229.34.0/24
83.229.113.0/24
217.194.153.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:91:47:09:9b:45:93:41:e2:77:23:d8:26:be:6b:aa:b2:db:
be:64:1c:d2:e3:c0:74:38:80:06:e6:14:98:9e:9f:68:f1:d8:
4d:e0:96:8b:25:5c:fc:8c:07:02:c8:71:69:f8:26:c6:43:96:
3d:f1:b6:21:fd:2c:7c:2c:5b:bc:af:ef:45:00:21:6c:9a:c0:
d5:82:22:a7:ad:0c:63:23:77:97:9c:1b:79:d0:cf:e6:72:8e:
e5:df:46:4b:67:b4:90:99:a7:2a:88:0e:42:c7:1f:45:27:bf:
0c:da:27:18:20:8a:99:c2:ca:39:30:92:00:f8:0b:fb:93:06:
bb:b6:fd:92:c9:83:a0:a1:67:44:44:85:d8:5d:6b:93:b1:eb:
09:d9:a4:36:1a:64:f5:06:9e:fd:be:a3:ab:85:b7:a3:d3:54:
42:4f:ef:30:08:2b:00:cb:7c:6d:95:98:11:ba:35:a8:b9:7f:
9e:34:a3:53:f7:ce:07:ed:e6:58:e8:b7:f7:9e:6f:84:2f:ef:
61:29:33:ef:1c:e3:c9:d4:83:90:41:cc:87:23:1b:46:7a:92:
61:76:b2:7b:77:e1:36:15:85:aa:b0:fc:75:fd:b7:8b:a3:b2:
bc:f6:13:2b:45:2e:e2:3b:bf:84:33:e8:ec:94:65:11:f5:b3:
45:00:bd:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:07 2024 by rpki-client on console-fra.rpki-client.org