Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/nbeTatg1Csz2TLGR2jJruUlLUt4.roa
File: nbeTatg1Csz2TLGR2jJruUlLUt4.roa (raw, json)
Hash identifier: YRdQ4oul4cXYX+veYxXGTQmRjwa6FQ3MtP5Ritt0sKE=
Subject key identifier: 9D:B7:93:6A:D8:35:0A:CC:F6:4C:B1:91:DA:32:6B:B9:49:4B:52:DE
Certificate issuer: /CN=26ad7d3560134e0a8ae46fc5b32c5acb61dde39c
Certificate serial: 023A8863
Authority key identifier: 26:AD:7D:35:60:13:4E:0A:8A:E4:6F:C5:B3:2C:5A:CB:61:DD:E3:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jq19NWATTgqK5G_Fsyxay2Hd45w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/nbeTatg1Csz2TLGR2jJruUlLUt4.roa
Signing time: Sat 01 Jan 2022 16:11:12 +0000
ROA not before: Sat 01 Jan 2022 16:11:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202354
IP address blocks: 91.205.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37390435 (0x23a8863)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26ad7d3560134e0a8ae46fc5b32c5acb61dde39c
Validity
Not Before: Jan 1 16:11:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9db7936ad8350accf64cb191da326bb9494b52de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:67:f8:37:77:53:ea:38:04:e9:00:12:81:d6:
38:bb:e4:34:38:69:e5:91:bb:ec:51:da:44:c6:6a:
e5:4c:c1:be:ce:81:fb:b9:2c:1c:05:54:b7:16:9e:
d6:f9:ea:7e:28:4d:c0:39:3b:40:1f:a0:7c:e3:69:
48:67:d8:27:01:f3:5c:08:2e:56:0b:de:b5:0c:b2:
de:7e:3b:49:e0:f7:87:43:f5:ba:b5:d6:d3:0b:39:
f1:97:35:2c:dd:2f:93:14:be:69:32:35:ac:92:e2:
2e:e9:4d:12:61:ce:43:2c:c5:40:ed:d7:ec:7a:d5:
fc:8a:32:aa:15:fd:44:9c:2d:ba:b4:19:38:fd:b4:
86:75:c2:62:f7:95:4e:4f:85:b3:87:47:c3:f5:ab:
ef:2a:9e:2c:a9:69:4c:ff:91:f3:79:32:96:d5:2b:
00:b6:3d:9e:54:a1:19:7a:3c:7e:50:34:5e:c8:4d:
15:47:ce:4f:9d:58:ba:16:fb:70:98:37:60:aa:96:
7c:6c:0a:43:65:0e:79:9a:f0:95:fd:71:15:f8:c3:
e8:b1:cc:a0:76:64:cc:a3:b8:22:e6:ca:0e:31:6a:
62:81:e0:d2:cf:96:15:0f:2c:38:4a:52:1d:d1:22:
67:48:c7:6e:9f:94:44:22:c1:ba:49:ab:a6:0b:9a:
6f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:B7:93:6A:D8:35:0A:CC:F6:4C:B1:91:DA:32:6B:B9:49:4B:52:DE
X509v3 Authority Key Identifier:
keyid:26:AD:7D:35:60:13:4E:0A:8A:E4:6F:C5:B3:2C:5A:CB:61:DD:E3:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jq19NWATTgqK5G_Fsyxay2Hd45w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/nbeTatg1Csz2TLGR2jJruUlLUt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/Jq19NWATTgqK5G_Fsyxay2Hd45w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.42.0/24
Signature Algorithm: sha256WithRSAEncryption
82:38:bc:0c:9a:10:0c:7f:63:04:d3:2b:e7:6b:52:cb:81:34:
31:ae:a4:84:10:0d:30:f6:24:90:94:40:13:31:7e:7f:9c:d1:
36:9d:37:e4:52:a8:4a:c8:34:0f:80:c0:9b:6e:22:d0:5d:c4:
05:5e:8d:c0:83:98:9d:0e:c3:0a:e0:51:aa:fc:d7:3d:e4:37:
48:f0:e4:dd:b3:d5:f3:0d:6b:f8:24:a3:9b:40:33:0c:1c:74:
76:a8:bb:60:64:ea:d6:c6:f8:55:84:bc:9a:ac:3c:87:b5:99:
e9:74:d4:89:80:88:1e:f2:98:d9:64:1d:73:c9:fb:c2:a6:8a:
e5:44:3e:a4:1e:e7:45:82:f5:68:b6:41:45:8f:84:bf:3e:75:
1b:93:17:83:f9:eb:93:6a:f9:b9:1e:8f:7e:2e:d3:d3:71:17:
0a:aa:a2:0d:eb:a6:fe:19:76:5c:4c:f3:48:a9:b3:38:76:15:
fb:7f:ad:04:ac:c6:75:60:96:0c:8e:af:f6:42:b3:21:28:ed:
46:d4:0b:4c:22:ed:b0:ac:1f:5c:4f:08:9b:75:e9:1c:7d:d2:
1e:b2:b4:24:4b:d1:ba:58:6b:3e:d1:f5:62:aa:73:15:62:f5:
67:81:17:06:61:77:40:c8:a6:2c:24:45:e9:9a:90:ca:57:95:
f1:dd:ab:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:42 2025 by rpki-client