Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/naPrOJh6Vt5ivytPFtQtd_rvo3s.roa
File: naPrOJh6Vt5ivytPFtQtd_rvo3s.roa (raw, json)
Hash identifier: 3IoWRrFbsosoyGDEx7fLgR/YEhwyAHC+ceUIAdPhvGU=
Subject key identifier: 9D:A3:EB:38:98:7A:56:DE:62:BF:2B:4F:16:D4:2D:77:FA:EF:A3:7B
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03DC0754
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/naPrOJh6Vt5ivytPFtQtd_rvo3s.roa
Signing time: Sat 01 Jan 2022 13:04:06 +0000
ROA not before: Sat 01 Jan 2022 13:04:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202813
IP address blocks: 185.28.48.0/24 maxlen: 24
185.242.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64751444 (0x3dc0754)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9da3eb38987a56de62bf2b4f16d42d77faefa37b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a3:1d:90:8c:aa:d2:33:ed:9b:7d:aa:ec:32:
8e:cd:9a:3f:9c:2b:18:e8:3c:50:66:54:51:9f:fb:
87:59:41:35:10:f2:c0:2e:88:f7:27:64:fa:b8:53:
f3:96:56:2f:47:1f:fc:61:58:0b:7d:0c:31:58:4d:
fc:88:b1:c9:e2:49:1b:f3:16:fb:51:a9:b5:dc:6c:
5b:a0:ea:c4:e2:78:3d:35:ae:4a:c5:f1:59:0f:e6:
7c:ff:34:63:49:7a:2d:66:79:43:93:be:06:37:59:
1d:27:30:b6:ad:25:91:9a:2c:5f:00:1e:35:58:6e:
56:7b:70:e3:f1:61:eb:a4:d0:a2:15:48:58:e2:67:
9e:f4:8a:32:53:0f:5f:b3:f9:d9:9a:72:70:5a:be:
39:32:f8:9b:d6:d3:d0:c7:bd:36:6e:01:3d:79:a3:
bb:f9:3f:95:c9:b4:08:40:e2:32:e1:fd:5c:86:d6:
d7:8f:a9:76:7f:21:6a:e3:08:2e:f6:95:76:1f:3a:
e5:c0:b5:30:dd:19:95:29:57:3d:43:82:34:5d:33:
7c:58:3d:05:b1:32:5b:7d:fa:7c:e7:33:6f:17:43:
a6:89:4f:d2:37:06:04:4e:c8:9f:4d:4a:ef:64:6e:
c2:25:47:9f:fb:3e:39:79:30:72:03:57:5e:3a:ac:
23:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:A3:EB:38:98:7A:56:DE:62:BF:2B:4F:16:D4:2D:77:FA:EF:A3:7B
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/naPrOJh6Vt5ivytPFtQtd_rvo3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.48.0/24
185.242.172.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:ec:70:e2:c4:65:73:c5:37:39:35:ea:05:45:86:22:32:0a:
8e:c8:7b:6b:f8:b1:9d:20:69:46:07:67:e3:c8:47:4d:f8:5a:
70:93:fb:d6:23:d5:28:76:b5:67:62:1f:05:db:60:e0:3c:53:
fe:fd:f5:6c:d5:c4:66:fe:a7:70:16:dd:41:b7:3b:d6:4c:b0:
6f:ca:b8:2f:f8:ba:0a:cf:34:b1:9f:d5:d8:51:0d:8c:77:f2:
ca:80:24:86:01:89:b5:7d:00:f3:a8:11:31:e7:be:d7:f1:54:
70:98:8d:e7:ce:64:5b:67:97:05:75:c4:59:94:1c:37:cb:fb:
8b:67:9f:bd:ea:a5:3c:3b:fd:9b:e5:05:e9:84:db:e3:5e:02:
27:33:0c:e7:1e:72:07:7b:b2:40:c3:f5:5c:27:62:8b:a0:4e:
dd:91:39:31:a0:d0:c1:ad:b8:cc:16:c3:20:bc:f0:81:61:fb:
ac:ad:e4:26:2a:a1:6a:f1:8e:c4:1c:c2:ad:4f:1d:38:e9:e6:
a8:1b:62:d3:5a:fb:45:d7:bf:ff:8e:1b:e9:b7:11:0c:2b:f2:
f6:ad:d2:a7:49:50:86:18:e3:b6:75:ef:13:68:ba:f4:8a:3b:
cf:e1:de:e9:f8:2f:18:9e:d2:17:60:f3:91:f7:32:5c:b6:e9:
52:b0:89:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:56 2024 by rpki-client on console-fra.rpki-client.org