Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/NoS_VhFEZLX3G0beoGzxLX_UsUI.roa
File: NoS_VhFEZLX3G0beoGzxLX_UsUI.roa (raw, json)
Hash identifier: OAMNb5mNBXeYwv4Axm2FycUHaS3BjLFBebchsBRrI4o=
Subject key identifier: 36:84:BF:56:11:44:64:B5:F7:1B:46:DE:A0:6C:F1:2D:7F:D4:B1:42
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27C28C15
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/NoS_VhFEZLX3G0beoGzxLX_UsUI.roa
Signing time: Sat 01 Jan 2022 16:08:48 +0000
ROA not before: Sat 01 Jan 2022 16:08:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51734
IP address blocks: 95.47.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 667061269 (0x27c28c15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3684bf56114464b5f71b46dea06cf12d7fd4b142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0c:46:37:cc:27:0e:9f:54:ce:66:99:44:88:
5a:1f:92:8c:5e:fc:85:12:3a:70:44:92:a8:73:86:
9d:01:fa:a2:27:4f:13:41:2b:d1:12:b0:21:0e:50:
b8:87:81:b7:af:4a:18:3a:15:02:a7:b8:69:ff:45:
db:59:0a:ea:70:6b:0d:8e:78:52:f7:7c:f3:e7:0a:
34:ea:11:19:52:df:4b:16:d9:a2:72:8e:2e:a2:c0:
60:57:69:62:f4:68:94:37:38:54:62:a1:88:4b:37:
ab:be:b1:32:2e:56:c5:3a:3f:0c:a7:5c:fc:0f:96:
03:83:ff:63:d6:8d:92:9a:1d:fb:fe:ba:f1:c6:26:
b2:01:15:bf:42:c2:94:7b:2a:57:e3:f8:f0:a4:ed:
ae:1f:f2:5a:cd:39:59:36:14:62:cb:f7:76:bb:eb:
38:2e:43:a3:ca:b6:ec:49:5e:52:fa:87:61:2c:77:
55:b5:c9:6b:c7:12:bf:82:97:79:de:d0:73:0f:8c:
73:83:94:94:71:20:48:cc:ed:e0:08:b8:d4:cd:ef:
cf:d3:75:9e:01:f3:43:12:9d:53:24:ac:60:af:e3:
a0:44:63:9b:fe:de:88:c1:5b:51:ef:6b:cb:28:84:
79:f2:26:37:0c:9c:5a:2a:e9:38:26:15:65:42:a3:
c3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:84:BF:56:11:44:64:B5:F7:1B:46:DE:A0:6C:F1:2D:7F:D4:B1:42
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/NoS_VhFEZLX3G0beoGzxLX_UsUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.112.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:dc:6f:f0:0e:79:5a:56:06:d5:97:c5:df:4f:eb:e9:df:81:
9b:c6:38:34:da:e0:f3:f3:cd:5d:4e:af:82:bc:ee:68:71:e8:
fb:0d:c4:49:40:8e:77:08:e6:50:77:0a:89:bd:01:ff:f9:20:
03:c3:ad:03:98:2e:d3:7d:f1:c8:da:91:b3:5c:fa:a8:69:0a:
7d:64:55:7d:78:9b:6f:63:b9:19:d7:c6:60:32:79:bc:de:76:
bf:6e:9d:9d:df:72:88:89:76:99:9e:a0:f6:28:72:44:85:98:
64:3a:4e:13:85:66:b8:72:d9:35:0d:51:46:68:f6:16:2b:48:
15:ad:66:9c:54:1b:19:14:35:35:50:c1:8f:48:33:6d:85:0a:
18:ef:a8:81:fe:f9:a9:10:4a:35:40:50:d1:07:eb:e3:4f:eb:
e8:d8:61:fb:eb:52:d2:60:ba:ed:6f:34:7d:12:ac:87:83:74:
89:3b:d9:c0:e4:56:92:5e:e8:c7:32:fd:18:51:da:e1:b4:68:
a8:81:18:bc:1d:56:dd:21:07:32:c2:b3:73:10:94:0f:40:e3:
f5:23:de:7c:38:21:f2:0a:45:2b:d2:6a:d7:7a:2d:45:ce:65:
6f:ad:a7:1f:a8:80:a7:31:74:e8:be:4b:d3:cb:91:51:b3:db:
e4:d9:05:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:41 2023 by rpki-client on console-fra.rpki-client.org