Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/NhDn5GHt-CuhKDbrE_vNzPP80tI.roa
File: NhDn5GHt-CuhKDbrE_vNzPP80tI.roa (raw, json)
Hash identifier: ee5QjP24DLeVDFJ+p8GfRZdpVdUGif6xJwlyBLjCMGk=
Subject key identifier: 36:10:E7:E4:61:ED:F8:2B:A1:28:36:EB:13:FB:CD:CC:F3:FC:D2:D2
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 0539B729
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/NhDn5GHt-CuhKDbrE_vNzPP80tI.roa
Signing time: Wed 06 Apr 2022 08:35:29 +0000
ROA not before: Wed 06 Apr 2022 08:35:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42160
IP address blocks: 185.101.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87668521 (0x539b729)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Apr 6 08:35:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3610e7e461edf82ba12836eb13fbcdccf3fcd2d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:38:fd:b4:0a:43:32:9e:cb:86:22:35:75:67:
f2:12:83:e6:75:e6:f9:13:f0:94:19:5e:c7:f2:aa:
b1:0c:8b:81:cb:9c:d8:7e:85:18:be:92:64:b7:9c:
8b:8d:41:59:97:91:d7:31:4a:ad:22:95:a4:e7:17:
a3:d0:46:91:53:fd:ae:4e:96:48:4a:ae:72:28:1e:
e1:49:6a:6c:09:14:64:85:93:bf:4b:32:83:3a:18:
bd:28:24:e8:b0:ad:e8:b2:0e:2d:35:1f:96:98:16:
07:09:dd:a9:8b:7d:75:62:42:f1:8f:6e:30:04:5e:
40:34:8c:b3:9f:c6:92:ff:6f:28:63:73:42:0e:d9:
6e:46:49:2b:28:da:25:6c:cd:44:d1:4d:77:bf:71:
22:2c:bf:70:ca:77:e0:d0:dc:58:b0:74:30:70:cc:
90:82:49:e8:cc:5f:3d:3b:fa:13:83:12:63:20:ac:
54:0b:b1:e8:ac:cc:e8:66:71:77:4b:41:c2:69:b9:
45:7b:11:b4:74:e6:1d:06:06:e1:13:a9:fa:39:c0:
7c:9d:bf:88:e8:b3:b5:5f:31:f0:11:5a:31:f3:07:
a6:d6:05:cd:c9:17:60:55:43:55:a3:46:cc:b9:fe:
46:45:36:65:16:77:f9:3d:d9:68:16:2f:40:4a:a1:
5f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:10:E7:E4:61:ED:F8:2B:A1:28:36:EB:13:FB:CD:CC:F3:FC:D2:D2
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/NhDn5GHt-CuhKDbrE_vNzPP80tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.168.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:c7:32:d2:29:bf:22:ea:66:ef:ee:57:45:66:ef:1b:10:e2:
ad:c1:f1:79:0f:63:f1:77:b6:fa:c8:83:36:80:3f:38:60:a4:
4c:e0:20:24:1c:53:19:28:8a:1f:16:de:cc:27:d4:59:f8:fc:
e0:94:af:9a:df:77:cd:2a:2c:5b:6d:8c:e2:49:bc:56:18:52:
e5:03:f7:e3:a5:f7:e5:f4:f6:c1:eb:61:d3:ab:d8:b0:c4:1a:
9f:f5:a3:6c:c8:0c:77:a3:67:09:8c:a5:63:76:b3:36:68:71:
9c:44:47:d4:95:0d:aa:91:41:12:6c:ca:cd:c3:5a:ad:c1:b2:
43:ae:cd:9f:09:30:b0:d4:8d:0b:19:55:35:16:2f:2f:08:c6:
40:82:7e:48:43:49:25:ae:3c:58:16:4d:e5:56:c6:a6:aa:e6:
57:cf:7c:3d:3d:00:9e:0b:8e:7d:7c:61:ff:23:16:b7:87:9f:
23:56:ff:ac:0d:84:ed:1d:11:ba:1c:39:0d:27:f1:14:26:bd:
87:c6:bd:03:06:27:f1:5a:47:db:a5:6b:94:e4:65:a9:a7:65:
78:01:e3:e2:4a:0a:30:20:cd:99:dc:8c:61:bf:5b:f9:bd:1d:
53:df:09:d9:23:a3:0e:cf:ac:02:4a:10:99:4d:4f:7b:11:02:
62:d3:d0:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:39 2023 by rpki-client on console-ams.rpki-client.org