Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/e54dc8-a694-4fa9-bb6f-b902a97f144b/1/nWZ-i6tBZ7Dy8n7FXj37W2B9h4k.roa
File: nWZ-i6tBZ7Dy8n7FXj37W2B9h4k.roa (raw, json)
Hash identifier: dFkkSBwW+b6RsmxqZytAwmJrlhalG8WEXrKVQOUX5U0=
Subject key identifier: 9D:66:7E:8B:AB:41:67:B0:F2:F2:7E:C5:5E:3D:FB:5B:60:7D:87:89
Certificate issuer: /CN=3702d86b0e710668ea66da7dcd1b140dec1e0c3d
Certificate serial: 03ACEEA5
Authority key identifier: 37:02:D8:6B:0E:71:06:68:EA:66:DA:7D:CD:1B:14:0D:EC:1E:0C:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NwLYaw5xBmjqZtp9zRsUDeweDD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/e54dc8-a694-4fa9-bb6f-b902a97f144b/1/nWZ-i6tBZ7Dy8n7FXj37W2B9h4k.roa
Signing time: Sat 01 Jan 2022 15:58:11 +0000
ROA not before: Sat 01 Jan 2022 15:58:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50349
IP address blocks: 93.190.36.0/22 maxlen: 22
91.214.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61664933 (0x3aceea5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3702d86b0e710668ea66da7dcd1b140dec1e0c3d
Validity
Not Before: Jan 1 15:58:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d667e8bab4167b0f2f27ec55e3dfb5b607d8789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ad:f0:da:08:9a:1b:c9:6b:43:e4:b8:f0:9f:
cb:f6:ca:3e:73:26:71:6e:fe:8d:8d:0d:ec:3a:e3:
f8:0b:36:d1:ef:9f:c4:79:5a:7a:d0:dd:5b:2f:b5:
6e:e5:b8:41:d5:c4:92:80:5c:c6:55:49:c0:0a:0a:
9f:f5:62:de:29:2d:47:03:d6:81:de:f7:1a:dc:67:
65:d5:50:6f:ef:a9:c2:63:45:4f:9a:d6:1e:fd:f8:
70:5c:21:5a:28:75:fd:08:1b:d8:28:90:db:a7:04:
8d:3c:a7:29:a5:31:85:47:ca:84:78:4d:c1:d7:a2:
c7:93:3f:cc:84:4c:76:4b:92:d2:33:bf:07:70:a7:
06:cb:88:b1:8a:40:cd:ed:31:b9:67:e8:e8:2a:d6:
1c:62:de:64:0f:38:2f:b5:71:69:f8:44:ad:35:26:
be:0a:c2:0d:00:8b:e6:00:26:b2:61:9d:85:d0:d5:
b8:4a:54:ec:a1:da:b7:b3:c3:95:86:51:41:7d:e8:
ad:8d:c5:c3:9d:89:f6:59:ca:d2:57:90:e8:bf:b4:
68:72:77:8e:98:c5:7d:ff:27:41:5b:e4:02:05:59:
f5:3c:ee:2c:eb:48:a1:23:d3:66:e7:5e:4d:0a:08:
11:4a:8b:bb:5d:13:c7:9a:6b:d9:4b:3c:60:06:75:
d8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:66:7E:8B:AB:41:67:B0:F2:F2:7E:C5:5E:3D:FB:5B:60:7D:87:89
X509v3 Authority Key Identifier:
keyid:37:02:D8:6B:0E:71:06:68:EA:66:DA:7D:CD:1B:14:0D:EC:1E:0C:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NwLYaw5xBmjqZtp9zRsUDeweDD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e54dc8-a694-4fa9-bb6f-b902a97f144b/1/nWZ-i6tBZ7Dy8n7FXj37W2B9h4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e54dc8-a694-4fa9-bb6f-b902a97f144b/1/NwLYaw5xBmjqZtp9zRsUDeweDD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.0.0/22
93.190.36.0/22
Signature Algorithm: sha256WithRSAEncryption
49:6d:b1:3f:10:8a:f8:c0:0f:f0:a6:93:80:6e:57:6a:bc:2a:
4b:39:1c:f9:f7:0c:25:46:b4:f8:5d:60:3e:69:cd:c7:66:05:
27:34:e6:48:51:90:a9:fc:70:b2:a1:f2:5a:9a:b3:45:0b:32:
1c:63:34:1f:2f:20:92:a0:ef:aa:c4:7e:99:31:4f:2b:dc:43:
a3:14:34:e3:df:20:14:67:8d:8f:21:4d:b9:45:fb:90:be:6c:
30:bd:9b:eb:a7:8f:51:bd:77:c3:be:aa:b2:47:1d:c0:34:6c:
c8:bb:4f:9f:5d:9e:67:c3:9a:53:9c:01:bf:f5:92:2c:21:b8:
ac:52:9a:0c:69:f6:43:a3:27:05:b0:75:2d:e6:e7:4f:67:c6:
d8:5b:09:df:83:ed:1f:1a:d0:6e:a7:ef:ef:88:d0:82:45:26:
52:cf:63:2b:12:7d:8f:fc:d2:08:79:c5:80:6a:39:53:36:5f:
65:58:20:f5:ae:9a:47:67:b0:66:c0:e6:ab:ea:28:8f:b1:05:
33:16:79:27:1c:3a:d2:0a:10:c0:8e:83:a5:6c:4f:01:58:d9:
38:b1:69:64:91:f4:87:c8:54:f6:62:fc:a6:21:01:74:58:db:
48:9c:4a:40:c8:68:3d:70:79:6d:1f:3c:7b:42:ee:99:4d:f1:
2d:33:68:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:09 2024 by rpki-client on console-ams.rpki-client.org