Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NRGfptv0pPMektzpPUwN-H0PcjM.roa
File: NRGfptv0pPMektzpPUwN-H0PcjM.roa (raw, json)
Hash identifier: Kcd7AN2LrM1/KM7sxC9bEeQyys9xz388+1xtVRplMkM=
Subject key identifier: 35:11:9F:A6:DB:F4:A4:F3:1E:92:DC:E9:3D:4C:0D:F8:7D:0F:72:33
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 04F8B4BA
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NRGfptv0pPMektzpPUwN-H0PcjM.roa
Signing time: Tue 28 Jun 2022 21:08:02 +0000
ROA not before: Tue 28 Jun 2022 21:08:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204843
IP address blocks: 78.135.105.0/24 maxlen: 24
188.132.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83408058 (0x4f8b4ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 28 21:08:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35119fa6dbf4a4f31e92dce93d4c0df87d0f7233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4c:11:6f:9f:37:47:a7:39:88:93:d0:60:71:
cf:a0:8f:a4:22:16:55:b5:56:ca:3c:1b:be:76:73:
60:8d:60:d8:6b:b6:e3:7f:10:4d:37:3c:39:f6:67:
1e:48:2b:8d:09:c9:c9:c1:d3:e8:c6:29:52:a2:0f:
24:e1:27:36:ab:ee:7f:9c:01:76:c5:34:fb:d8:9a:
ff:31:72:ed:f5:f3:f3:b2:f9:2a:7a:86:cf:6d:94:
01:95:45:8d:90:41:ec:0d:be:df:56:98:50:a0:1a:
97:25:10:5d:d2:f3:fb:43:3d:f0:ee:f0:4a:25:4a:
b2:68:e3:f3:2d:ba:88:5a:ca:b5:d5:82:c9:59:58:
93:ac:80:1c:9b:ff:aa:00:14:f2:ca:d3:8e:a0:a2:
c4:4c:6d:ae:67:7b:98:c7:d6:a9:a0:9e:d6:87:7c:
c7:ff:ab:8d:e0:ba:e9:9d:67:18:fa:5c:28:ae:7b:
8f:07:f6:8f:fb:f6:96:8e:56:75:98:6b:8e:77:8e:
ed:a2:3c:61:0a:24:e2:82:5e:dc:1c:5d:2c:d4:c2:
25:2b:f3:e0:8f:f3:a3:3c:40:74:8b:86:cf:97:78:
0e:9a:21:49:6a:bc:4c:7c:3e:75:17:23:40:90:fb:
7c:89:ec:2c:07:0b:2a:c8:12:d7:13:c8:b2:d6:78:
ab:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:11:9F:A6:DB:F4:A4:F3:1E:92:DC:E9:3D:4C:0D:F8:7D:0F:72:33
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/NRGfptv0pPMektzpPUwN-H0PcjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.105.0/24
188.132.156.0/24
Signature Algorithm: sha256WithRSAEncryption
38:ab:9d:56:a9:72:ac:7b:c9:47:17:bd:eb:5d:dc:c9:c0:b9:
64:63:5b:1e:cd:62:c0:87:b5:30:f1:ae:39:aa:4e:4d:24:aa:
d6:0c:2c:c8:68:8d:e3:16:62:2f:5a:ce:b7:e6:22:92:6b:62:
95:0d:70:11:0a:1b:e1:1b:8c:eb:97:1d:b4:7a:98:37:ce:16:
cd:a1:2d:1e:77:a7:71:b4:28:d4:85:c9:a2:ba:d0:7f:fe:76:
59:57:96:c4:4e:da:51:95:50:2c:cb:d1:06:2d:2f:1c:8d:1f:
bb:a9:99:5a:aa:55:aa:1f:26:06:ba:c1:f5:b6:d2:43:23:5d:
f7:0a:82:54:af:82:54:4b:d3:d6:da:6e:aa:69:0c:9a:57:42:
f7:ae:8d:18:5a:be:36:f8:3e:b3:78:a6:08:d6:51:9a:3b:0f:
d6:6a:2c:3e:77:57:c7:29:77:94:7b:7a:12:fe:8d:67:ba:6c:
f6:40:52:fe:97:3e:2d:b1:8b:fc:72:08:62:23:96:bd:39:24:
cf:76:da:8a:3b:d3:73:20:f6:75:7e:e7:e2:a6:70:ec:ee:e7:
bd:24:bb:bb:18:a2:9d:88:02:cc:8f:73:6f:5f:62:5e:9e:ce:
a8:d3:17:c4:53:9b:b2:81:a8:fe:0f:3c:8c:ee:87:fb:63:d0:
c3:36:a7:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org