Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/NnEYB_R5ERenfgVgicPxTM5BDQk.roa
File: NnEYB_R5ERenfgVgicPxTM5BDQk.roa (raw, json)
Hash identifier: hi0wUq4Fp6N473sb/7TanDo5aWmaTLaBgk1wJCRFU9M=
Subject key identifier: 36:71:18:07:F4:79:11:17:A7:7E:05:60:89:C3:F1:4C:CE:41:0D:09
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A816A01
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/NnEYB_R5ERenfgVgicPxTM5BDQk.roa
Signing time: Sat 01 Jan 2022 04:52:04 +0000
ROA not before: Sat 01 Jan 2022 04:52:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197903
IP address blocks: 82.177.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981559809 (0x3a816a01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36711807f4791117a77e056089c3f14cce410d09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:75:90:2b:77:fe:08:b8:fc:80:83:6e:0e:3b:
41:dc:42:85:0f:0c:97:cb:fe:e9:38:ab:4a:54:4a:
b5:00:5d:19:9f:5b:f5:ac:db:c7:be:84:07:36:26:
b5:49:ea:98:33:01:19:43:d7:67:1f:29:61:ce:b0:
a6:63:41:e8:f6:a1:a8:ce:ab:b7:e7:6d:1e:2f:d4:
75:7b:66:6b:0c:f3:00:18:ad:07:0f:db:2c:52:04:
cd:ab:a2:19:c7:d0:a4:9c:56:e7:3d:f7:a7:d2:30:
66:0f:c7:24:86:1c:8e:b0:af:c0:94:03:4b:1a:9c:
fe:c0:84:0e:10:65:df:cc:9e:5b:82:6e:0c:42:95:
6b:36:91:0d:cd:eb:b4:78:f3:fe:bc:2e:03:6e:c7:
78:27:11:bf:82:06:31:22:83:20:4a:0a:86:a2:7c:
80:1f:0d:27:10:0a:b4:e4:54:26:2b:c6:80:a6:63:
6c:70:a5:d9:ad:4b:d8:7a:83:e5:81:ad:e2:9f:23:
59:7e:d6:b0:81:48:e5:7e:71:18:14:2e:02:8b:1c:
36:0f:52:7d:da:53:e4:73:e3:5e:81:f7:dd:65:4e:
9e:cd:78:ff:5c:39:d6:d9:a6:7d:04:34:ea:14:73:
39:b4:e7:cc:c0:00:8f:e3:64:8a:10:6c:78:6b:0d:
8f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:71:18:07:F4:79:11:17:A7:7E:05:60:89:C3:F1:4C:CE:41:0D:09
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/NnEYB_R5ERenfgVgicPxTM5BDQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.190.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:40:16:5d:c4:87:0e:05:1b:69:4d:7c:c9:fa:a3:14:84:31:
02:91:12:a7:04:1a:49:9e:f4:30:ce:a3:55:dd:a6:7d:53:19:
c8:8a:69:6a:c2:df:81:c0:ef:57:57:77:f3:43:82:dc:64:d1:
10:50:d8:ad:d6:3f:c7:89:8a:25:1e:2c:6a:ee:90:1c:2a:8a:
b3:91:52:11:a0:16:57:0a:df:c5:b3:30:2e:26:9f:5f:40:9c:
5f:de:6e:38:1b:cc:1b:c5:a6:0d:4b:07:a7:d9:ee:c8:9a:c2:
a5:f8:9b:7f:62:5d:e9:4b:64:7f:b1:b3:01:60:97:91:b5:9f:
99:e3:cf:8a:10:7b:90:a6:43:08:00:70:84:3c:dc:cf:c6:7a:
ea:2c:e8:e5:bb:29:c5:b5:f7:dc:8f:56:24:72:b3:f0:f2:42:
0f:6e:2d:fb:f5:42:4f:c0:32:ca:7c:39:94:b9:be:54:bc:62:
04:ef:9f:f9:01:ff:6d:84:66:ab:d6:6f:24:3c:28:33:26:63:
ae:6c:7d:ea:be:89:54:41:a4:9f:91:f9:ff:af:ae:c2:e2:1e:
37:d8:63:d1:02:3a:08:e5:01:f8:72:f0:ef:9a:00:b5:52:e2:
f5:df:43:57:49:a1:57:96:c1:4a:6e:be:28:4b:26:79:82:9d:
cf:d9:27:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:32 2025 by rpki-client