Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/NnYXJDQkpdLflTvhJ0TW-l2hfmY.roa
File: NnYXJDQkpdLflTvhJ0TW-l2hfmY.roa (raw, json)
Hash identifier: WDjiR6rtydDCIcV8TeOrXbEWj3kf1EhJSdVOVkiZ1nA=
Subject key identifier: 36:76:17:24:34:24:A5:D2:DF:95:3B:E1:27:44:D6:FA:5D:A1:7E:66
Certificate issuer: /CN=36b100e1f6f3ffe6e35e987e0d0195b7993a8d33
Certificate serial: 069A976F
Authority key identifier: 36:B1:00:E1:F6:F3:FF:E6:E3:5E:98:7E:0D:01:95:B7:99:3A:8D:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NrEA4fbz_-bjXph-DQGVt5k6jTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/NnYXJDQkpdLflTvhJ0TW-l2hfmY.roa
Signing time: Sat 01 Jan 2022 12:54:23 +0000
ROA not before: Sat 01 Jan 2022 12:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6716
IP address blocks: 194.1.183.0/24 maxlen: 24
91.208.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110794607 (0x69a976f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36b100e1f6f3ffe6e35e987e0d0195b7993a8d33
Validity
Not Before: Jan 1 12:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=367617243424a5d2df953be12744d6fa5da17e66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f7:a5:07:4b:c2:dd:74:cc:16:ba:c8:66:10:
04:e9:1f:71:8d:37:f5:83:5d:9d:6c:8a:fc:e4:29:
e3:0f:2a:6e:fc:35:2f:80:b9:8c:ef:cd:ac:85:16:
9e:71:b5:44:8d:05:31:9a:2f:df:a1:9f:64:c9:71:
96:fa:a8:5e:f1:c8:16:5e:eb:12:0b:90:a0:5c:54:
25:03:e2:c4:59:d2:86:b0:5c:33:b0:92:23:35:93:
df:c5:42:60:7a:3e:95:a5:87:d9:87:d2:6f:55:82:
49:c5:19:d2:5a:08:12:86:47:ad:33:bd:95:4f:bf:
ce:d1:01:e8:23:f4:55:13:11:e7:61:b2:9d:93:33:
80:6c:bf:65:64:50:4a:ff:a7:3e:04:f9:a3:68:86:
be:30:9b:5e:9f:25:17:e3:f0:40:27:63:8f:3a:52:
47:d9:b0:37:57:4a:fb:57:22:3a:1d:7b:0b:e3:3f:
d7:e5:2f:38:25:0e:b8:15:0e:c8:b2:d6:82:ca:89:
f6:5e:fc:54:cb:11:f4:cd:f3:bf:3e:f0:65:4e:52:
81:6e:63:54:b2:db:e8:f7:0a:1a:3f:98:52:c6:2f:
c3:22:d8:a8:b4:e7:a9:a7:70:c5:62:5f:ce:e6:e9:
12:15:5b:7e:3e:7c:70:ea:e7:0d:c6:e9:12:a2:d6:
16:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:76:17:24:34:24:A5:D2:DF:95:3B:E1:27:44:D6:FA:5D:A1:7E:66
X509v3 Authority Key Identifier:
keyid:36:B1:00:E1:F6:F3:FF:E6:E3:5E:98:7E:0D:01:95:B7:99:3A:8D:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NrEA4fbz_-bjXph-DQGVt5k6jTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/NnYXJDQkpdLflTvhJ0TW-l2hfmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/NrEA4fbz_-bjXph-DQGVt5k6jTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.51.0/24
194.1.183.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:a6:c3:56:92:2c:cb:24:fe:7d:75:25:01:d6:72:03:8f:4e:
cb:b1:b9:7f:d9:99:88:52:2c:f5:9e:bc:93:62:69:6a:9a:fb:
53:8f:42:5c:fb:4a:d5:55:ae:38:a8:2d:98:5c:ef:e4:de:b4:
7f:4a:70:c5:7b:f1:52:6d:fe:8c:89:96:24:42:e8:a9:01:c4:
78:50:07:f9:fe:12:80:12:d3:22:b1:a7:d6:0e:ac:91:5c:39:
5a:a1:4f:6b:66:2f:6a:98:de:bc:37:1f:22:31:58:e1:7c:1a:
29:80:46:69:16:20:ee:ff:7f:71:9c:82:aa:a8:37:c4:fd:dc:
b2:ff:fa:c7:e9:78:2e:9d:5b:65:df:f2:ee:42:1d:49:4e:48:
6d:4e:b4:73:59:76:c3:04:e2:66:08:80:e6:5a:1c:96:14:a1:
17:54:56:2a:00:ff:7b:9b:24:fa:28:0f:aa:fc:16:a3:17:46:
4f:8d:78:e1:f1:53:40:63:07:b9:42:ab:d3:7e:c9:50:ce:50:
f4:ec:29:1e:cc:97:b4:5b:d9:45:0c:3e:2d:7b:23:12:8f:a2:
96:e7:46:70:3f:26:b6:ec:eb:7e:a1:12:22:89:b1:91:ba:b0:
81:bb:d8:8f:c8:9d:51:27:bb:6e:19:29:9e:3f:2b:d2:60:d5:
97:d0:a8:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:57 2025 by rpki-client