Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/NILnkePu5NvfsOT7tWlaJpEfic8.roa
File: NILnkePu5NvfsOT7tWlaJpEfic8.roa (raw, json)
Hash identifier: 6SX32fUzcOZSmpvUZOZYvKO/Pbf6baYIc1DMrV0un/A=
Subject key identifier: 34:82:E7:91:E3:EE:E4:DB:DF:B0:E4:FB:B5:69:5A:26:91:1F:89:CF
Certificate issuer: /CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Certificate serial: C3EE61
Authority key identifier: 83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/NILnkePu5NvfsOT7tWlaJpEfic8.roa
Signing time: Wed 08 Jun 2022 19:08:02 +0000
ROA not before: Wed 08 Jun 2022 19:08:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15169
IP address blocks: 66.22.229.0/24 maxlen: 24
66.22.228.0/23 maxlen: 24
66.22.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12840545 (0xc3ee61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Validity
Not Before: Jun 8 19:08:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3482e791e3eee4dbdfb0e4fbb5695a26911f89cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b6:d5:50:d2:15:03:46:00:98:2c:e0:a7:71:
f1:a3:e3:f6:80:db:43:06:0a:df:df:86:3a:8c:47:
fd:3d:93:95:d1:96:8a:e5:3f:c6:13:c5:10:23:66:
a8:39:07:87:75:1c:99:93:af:6d:13:31:02:b7:e7:
5e:a1:82:45:a6:e8:ff:9d:41:2d:6b:52:af:4e:e0:
55:bd:b9:5b:c3:01:98:4b:e8:62:fd:3c:f0:a1:4f:
69:aa:8f:c6:36:35:68:a3:28:d7:e6:a3:40:b9:b6:
da:84:06:d4:e0:18:de:5d:14:c9:34:f0:3e:73:88:
0f:48:ba:bd:f0:a9:5b:9e:86:50:b3:3d:41:a4:8d:
d7:7e:14:c7:fe:de:04:fb:1f:95:b5:5e:9c:93:46:
da:a9:83:6e:ff:32:69:85:49:46:43:15:87:29:42:
3a:58:fe:3a:5a:68:49:ac:76:d9:8e:ef:60:b3:fe:
a3:3d:c1:ae:f9:c1:e6:36:5b:ce:48:e3:36:2d:5c:
ea:59:a3:87:9a:a2:8a:36:98:b6:5d:3b:4c:c5:ce:
3d:b5:a8:91:5e:bb:08:fd:18:4b:15:ae:ef:27:b2:
83:24:fe:30:c6:68:ca:aa:69:85:78:33:ea:d3:73:
80:4c:b2:40:20:dd:af:7a:de:3e:5e:4d:d4:80:4c:
c0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:82:E7:91:E3:EE:E4:DB:DF:B0:E4:FB:B5:69:5A:26:91:1F:89:CF
X509v3 Authority Key Identifier:
keyid:83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/NILnkePu5NvfsOT7tWlaJpEfic8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/g8ED1lpU1q8e-6asPmNyICivK7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.22.228.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:42:1d:47:85:d8:81:d6:33:66:69:b7:0c:a6:49:89:8c:ea:
a5:0a:56:06:94:c0:62:f6:47:ed:88:2e:28:01:c9:a6:c9:74:
0a:e4:6b:2f:c9:db:a6:0d:45:5b:d7:39:25:d1:37:9b:37:5d:
e9:1c:d5:7a:f7:40:ef:7e:c9:93:29:ef:d9:c5:62:c2:b2:98:
ce:9b:be:1b:41:9e:72:2e:f7:09:7c:3c:5e:42:09:34:6a:51:
62:61:28:3a:77:bf:5c:aa:e8:15:dc:c7:45:66:3f:0e:39:97:
59:c1:f4:68:b1:7f:01:64:fa:56:9f:82:75:e2:c5:66:ea:5c:
45:bf:f4:ba:52:15:b1:37:7b:15:7b:42:63:40:69:29:5d:12:
d3:46:7f:d9:41:62:79:69:86:ac:de:75:50:d4:4b:3c:1b:a9:
b0:c6:9f:3f:2b:01:eb:55:d0:4a:44:5a:1d:31:6c:9e:da:f9:
c8:d1:c1:12:2f:65:f6:07:4c:63:6d:d2:8c:bf:ad:30:88:f0:
6d:a0:6a:90:8f:a4:0c:3e:f9:ed:d3:54:d0:a0:1e:7c:ee:bd:
88:c8:67:2a:97:4f:36:89:8a:c1:34:b5:3c:56:3c:f6:98:fc:
9f:14:ca:48:17:3c:01:87:77:08:09:87:bf:a0:eb:7c:22:4e:
4d:21:b7:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org