Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/NDjldpUmKvCH34NNtlbjVyTf5mM.roa
File: NDjldpUmKvCH34NNtlbjVyTf5mM.roa (raw, json)
Hash identifier: O0/zkerorbSMJPele075AX4/xyupIWAjrRWbBSUNCOs=
Subject key identifier: 34:38:E5:76:95:26:2A:F0:87:DF:83:4D:B6:56:E3:57:24:DF:E6:63
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0183F51A6A15EB8D70AA01844290F1E4DFE3
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/NDjldpUmKvCH34NNtlbjVyTf5mM.roa
Signing time: Thu 20 Oct 2022 11:14:52 +0000
ROA not before: Thu 20 Oct 2022 11:14:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203936
IP address blocks: 217.26.190.0/23 maxlen: 23
89.42.112.0/23 maxlen: 23
77.247.120.0/22 maxlen: 22
185.227.103.0/24 maxlen: 24
45.67.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f5:1a:6a:15:eb:8d:70:aa:01:84:42:90:f1:e4:df:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Oct 20 11:14:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3438e57695262af087df834db656e35724dfe663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5f:d4:36:f1:bc:f2:d7:33:69:16:63:d7:a8:
d5:a0:81:64:2a:5c:6f:e5:2c:97:eb:80:8e:b4:01:
88:0a:a1:aa:74:1b:c7:90:86:61:86:7f:39:3a:e1:
4b:21:1c:e8:03:c8:d8:f7:80:62:9b:85:55:ce:a6:
ee:57:df:5b:81:83:fd:56:01:0b:0d:1e:7a:e3:ab:
91:75:79:e9:b2:34:1b:22:66:d7:e4:e1:0c:e6:16:
a4:54:19:39:d2:10:77:43:67:c0:55:37:bc:5b:97:
79:d9:ce:3a:d5:8d:dc:8b:0a:56:1d:b1:c6:63:90:
7c:21:1e:2d:6c:64:84:1a:eb:d5:79:cf:d1:5d:95:
60:31:f8:db:c2:5f:db:60:4f:d0:1a:8c:e8:51:a9:
e8:3e:9a:82:c7:93:f9:e5:b0:02:01:1d:29:b5:c8:
4c:7f:5c:2b:00:ef:b1:7f:a0:cd:ff:b2:1f:ee:2a:
6d:48:62:76:1a:55:fb:51:bf:c4:fc:4f:86:1f:56:
a3:3a:b0:49:4d:ff:75:6a:d0:dd:93:0e:07:46:3b:
e2:0b:6f:d9:00:bb:25:f5:ab:4a:48:59:83:bf:5e:
a9:ab:66:e4:fe:92:94:b0:46:27:68:d5:0e:01:29:
22:24:a8:41:5b:3f:7f:1e:13:40:6c:6c:2e:98:ad:
7e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:38:E5:76:95:26:2A:F0:87:DF:83:4D:B6:56:E3:57:24:DF:E6:63
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/NDjldpUmKvCH34NNtlbjVyTf5mM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.244.0/22
77.247.120.0/22
89.42.112.0/23
185.227.103.0/24
217.26.190.0/23
Signature Algorithm: sha256WithRSAEncryption
85:ae:13:51:4d:2d:fa:e5:49:ea:b7:d6:49:b2:e8:c8:3e:2f:
6b:42:3d:5f:f3:92:1d:a1:bd:77:38:e1:f7:4d:97:6b:5d:22:
a2:f5:c7:99:25:c9:8e:f2:7d:d1:fc:28:83:19:7e:ce:8c:25:
d3:bc:d0:4a:e3:80:a3:96:34:d9:06:2b:d2:9e:1d:bb:aa:1d:
56:c6:bd:73:32:b5:41:fa:74:28:61:bc:33:e5:1e:7c:2b:45:
67:5d:9b:b6:c9:a6:8f:58:8e:b9:c4:1a:65:40:26:01:55:c0:
69:c2:49:92:7e:bd:50:94:8b:20:16:6e:39:df:f1:6f:6f:9e:
16:a4:f0:b3:0b:7f:fe:50:9c:80:4d:1a:60:2c:51:70:de:9e:
13:42:6c:30:3a:eb:dd:f7:08:44:7a:33:43:07:70:e0:9f:ba:
f9:e1:3d:16:b5:56:2a:cb:0d:fa:60:63:d0:ff:e0:90:70:da:
9f:5d:fc:0c:cf:11:6f:fa:e1:d0:7e:08:86:6e:13:a8:32:4a:
46:73:42:be:9f:8d:e8:be:f1:12:6c:e5:e3:ce:13:45:55:dc:
3c:73:e3:84:6a:52:1b:29:f5:34:c1:d0:cf:d2:e6:3b:fb:ea:
f5:9f:3f:d2:9e:d0:df:50:f1:08:30:43:5f:5f:e3:c4:0e:71:
68:b9:c1:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org