Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/NUgx36UQVG3ep2eTt3H5yGLuXwQ.roa
File: NUgx36UQVG3ep2eTt3H5yGLuXwQ.roa (raw, json)
Hash identifier: xVyxP66SS/n/CynkoF6eddCMQapeqNNxzJLc80v5trg=
Subject key identifier: 35:48:31:DF:A5:10:54:6D:DE:A7:67:93:B7:71:F9:C8:62:EE:5F:04
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 0576A80B
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/NUgx36UQVG3ep2eTt3H5yGLuXwQ.roa
Signing time: Sat 01 Jan 2022 10:57:58 +0000
ROA not before: Sat 01 Jan 2022 10:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206663
IP address blocks: 185.167.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91662347 (0x576a80b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Jan 1 10:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=354831dfa510546ddea76793b771f9c862ee5f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b1:12:35:fc:a4:30:46:da:ed:1f:4b:e6:99:
ba:30:35:66:11:dc:d0:8e:c6:47:ee:d5:17:8e:c5:
bb:36:35:81:ce:1f:12:24:55:1f:26:37:c6:6a:cb:
69:7b:4e:10:fe:35:75:8b:68:2c:c3:81:94:25:d2:
50:85:0d:40:11:44:27:65:6f:7c:b2:ef:eb:ca:05:
cb:14:1d:af:eb:cf:4b:d7:a3:5f:04:93:6e:dc:ed:
0e:5f:47:60:16:8b:97:c9:1b:4d:cf:93:a7:b1:ad:
d0:14:e0:9b:f0:35:87:e5:6d:0c:47:59:0e:b6:a2:
80:2d:7c:10:37:cf:ce:0e:98:fe:fa:bc:90:09:55:
81:72:61:4b:db:55:1c:af:57:23:d9:c2:36:2e:e9:
e2:9d:06:1c:f5:fd:9b:57:e4:6c:5e:f4:c3:82:aa:
b5:d1:a9:b7:0d:f4:7f:31:14:f0:11:c8:61:04:d5:
a1:7d:ee:92:ef:90:02:e6:4a:ce:45:9f:5e:62:b8:
0f:54:63:2f:76:8c:45:d4:3d:1e:32:af:62:81:61:
c3:f1:df:56:74:13:e4:75:04:36:d8:7d:71:ad:03:
7c:a0:04:88:4f:c4:42:a6:59:a8:18:43:b3:cb:7d:
00:c2:50:d1:4b:e1:26:ea:01:bb:05:e1:dc:5d:7f:
6f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:48:31:DF:A5:10:54:6D:DE:A7:67:93:B7:71:F9:C8:62:EE:5F:04
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/NUgx36UQVG3ep2eTt3H5yGLuXwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.180.0/24
Signature Algorithm: sha256WithRSAEncryption
36:40:4d:10:84:0d:0c:9d:e3:7a:f5:87:20:62:a5:66:b7:e8:
c9:70:5d:82:cf:f5:ca:8d:6d:23:60:1a:39:83:5b:1d:94:5f:
1f:50:df:e6:2d:ac:c8:7b:74:e8:19:ff:fe:f9:72:64:15:31:
35:af:d9:7b:d2:ce:16:f7:01:85:61:67:bc:e7:c0:5e:fc:fa:
c4:98:51:95:5e:d4:2f:2f:05:9b:83:e5:5c:bf:36:dd:fe:5d:
2f:75:69:71:74:7c:c6:b2:f3:e3:a1:22:03:84:fb:59:6b:32:
b7:f6:43:00:fd:89:0c:78:5a:18:60:47:89:bc:64:92:26:2d:
23:dc:47:7c:df:42:34:51:93:30:5d:9c:f9:86:e6:b3:2d:b1:
38:8e:93:cc:6d:9d:2c:3c:aa:2a:c2:95:ca:45:a1:ee:cf:b3:
74:1d:bb:e8:98:f2:1d:a7:9b:d0:8a:a1:52:ed:df:b5:5d:c8:
c6:37:06:ba:5a:07:02:5c:cc:01:75:60:0b:46:73:b5:17:31:
63:91:db:95:ab:4a:ce:41:fe:55:47:5f:17:e1:26:51:36:09:
9d:46:88:23:ef:2f:89:0b:7c:de:94:a1:5c:54:fa:d0:8b:6d:
94:14:5a:cf:f6:15:2b:fb:77:d0:79:b6:ae:45:aa:44:35:78:
91:71:a1:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:32 2024 by rpki-client on console-ams.rpki-client.org