Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/Nhh8WB56u_uM5FHdJ-CR02QpjSM.roa
File: Nhh8WB56u_uM5FHdJ-CR02QpjSM.roa (raw, json)
Hash identifier: IIUyBLTLfPFGYB69FweWqIjfZEnqPqDxX/ITMazb49E=
Subject key identifier: 36:18:7C:58:1E:7A:BB:FB:8C:E4:51:DD:27:E0:91:D3:64:29:8D:23
Certificate issuer: /CN=764928a97be955377013d382c62940e950dd212b
Certificate serial: 0185736857684B7A5598DF75BA59094AC2CB
Authority key identifier: 76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/Nhh8WB56u_uM5FHdJ-CR02QpjSM.roa
Signing time: Mon 02 Jan 2023 16:54:55 +0000
ROA not before: Mon 02 Jan 2023 16:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206813
IP address blocks: 87.253.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:57:68:4b:7a:55:98:df:75:ba:59:09:4a:c2:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764928a97be955377013d382c62940e950dd212b
Validity
Not Before: Jan 2 16:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36187c581e7abbfb8ce451dd27e091d364298d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:50:d9:17:48:7d:08:f6:e2:92:76:c3:8f:72:
fb:52:90:e4:30:99:b6:23:bc:04:c9:7f:b8:2f:6c:
bc:e7:bd:75:56:64:0f:e3:ab:2f:f8:8e:1c:9f:d6:
1f:4c:8c:ca:ad:84:fb:9d:39:48:39:7a:d5:13:da:
a5:c4:f2:09:d1:09:b2:84:cd:87:3e:16:f7:fb:f4:
17:0a:7a:ee:1b:2c:9d:28:4b:82:3a:b9:9f:db:02:
10:d6:c2:9b:9e:1c:08:6d:a5:47:17:a5:e1:d9:cf:
3b:44:3c:02:0a:b2:f9:39:de:b0:6f:62:02:58:0d:
81:fe:48:fe:18:18:7b:54:d3:70:6a:77:38:14:d3:
82:ac:37:4a:1d:3e:2f:52:2c:18:ba:5b:d5:0f:b1:
a2:51:f4:ad:34:c0:57:40:0b:77:d7:b4:77:c5:cb:
95:b3:f5:b5:7f:64:2c:f8:48:ad:69:20:80:aa:45:
31:7a:f2:71:60:b2:8e:a5:25:18:75:cb:3f:b7:5b:
17:db:e3:fc:08:dc:37:6d:f5:f9:20:2b:f2:16:cf:
fe:b6:3b:af:5d:db:a1:86:ce:c5:04:1d:c5:e1:6f:
51:7b:00:fd:91:d9:57:e9:50:7a:4d:92:20:09:36:
cc:49:84:fb:69:58:de:a6:36:89:40:10:b6:30:d8:
84:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:18:7C:58:1E:7A:BB:FB:8C:E4:51:DD:27:E0:91:D3:64:29:8D:23
X509v3 Authority Key Identifier:
keyid:76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/Nhh8WB56u_uM5FHdJ-CR02QpjSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.253.188.0/24
Signature Algorithm: sha256WithRSAEncryption
97:66:f6:9f:90:f5:7d:86:31:59:30:35:0f:a6:34:be:ee:35:
fa:63:f4:96:a3:f4:14:fb:d2:aa:5b:01:2d:b4:e0:ae:90:22:
85:b9:e1:01:6f:6c:3a:9a:46:e1:2e:98:61:94:85:bc:04:3f:
ba:6b:07:af:76:9e:7f:e3:dd:d5:86:3b:4a:0b:04:c8:10:f8:
e5:47:82:30:58:d2:ca:a7:d6:70:2f:e7:3d:44:48:b2:df:81:
74:81:45:30:e4:45:02:65:50:19:7a:3d:33:73:b8:18:37:8b:
7b:57:a1:36:15:a1:5d:33:9f:99:12:87:14:cb:dd:9b:4a:04:
71:a6:65:07:07:85:41:b9:28:89:ab:23:f3:b7:0e:c1:6f:f4:
d8:82:bc:58:d6:1e:ff:30:0d:c9:2b:4b:7f:61:21:01:d6:63:
50:68:4a:a6:2b:95:5c:5e:03:d8:d2:72:e5:43:f4:32:04:24:
e3:31:e3:69:d3:b6:8b:c9:d2:2d:64:e9:38:78:41:2f:2f:14:
22:d3:8e:ef:ef:3b:92:4b:27:65:5f:8d:c3:c2:55:75:ee:00:
74:08:1d:df:31:c1:c5:1f:ec:4c:64:1e:56:f2:03:37:52:fb:
ab:be:2c:df:37:41:db:ad:58:39:f1:5c:f4:37:d7:2c:3b:ea:
a3:72:83:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:30 2025 by rpki-client