Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/NVLD6jMXL_SP9nzsSjMTs2bVrLA.roa
File: NVLD6jMXL_SP9nzsSjMTs2bVrLA.roa (raw, json)
Hash identifier: iDkmSXof5eiozgxiiqemKXMuK4Bu8C4pz9wu/tTsha8=
Subject key identifier: 35:52:C3:EA:33:17:2F:F4:8F:F6:7C:EC:4A:33:13:B3:66:D5:AC:B0
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01826DF4050194E90076797AED7A2925C954
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/NVLD6jMXL_SP9nzsSjMTs2bVrLA.roa
Signing time: Fri 05 Aug 2022 12:21:24 +0000
ROA not before: Fri 05 Aug 2022 12:21:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134413
IP address blocks: 185.248.186.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6d:f4:05:01:94:e9:00:76:79:7a:ed:7a:29:25:c9:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Aug 5 12:21:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3552c3ea33172ff48ff67cec4a3313b366d5acb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4b:1f:16:e8:a1:7e:cd:a1:8e:b0:44:17:b5:
3a:6c:97:35:73:0d:ab:07:21:44:35:ae:e0:f3:8b:
56:03:6f:fd:10:ce:09:63:95:13:2c:ff:6c:c7:7e:
8a:ba:1d:82:c3:43:98:77:97:11:9c:9d:03:4e:55:
01:be:19:84:43:5c:42:38:1a:57:c7:a8:f2:c8:54:
02:79:a6:a1:89:e0:55:2a:7d:a5:83:21:07:38:33:
4b:43:b6:4a:5e:9e:ea:b3:62:33:83:aa:d3:81:55:
e1:d1:04:93:17:74:93:72:65:14:d5:78:9d:ff:db:
35:cf:ed:2f:e0:00:14:07:e6:19:26:62:72:4f:5f:
ad:85:9f:d3:bf:7f:40:02:3a:fa:cb:f7:f4:d0:dc:
99:45:13:d2:ae:0c:9d:6a:05:69:0d:64:d0:5f:78:
00:10:a1:ad:9f:7c:63:f9:0e:4e:e7:46:cb:11:00:
ab:f6:11:73:7d:83:f9:df:c9:f6:7e:25:2c:e2:22:
0a:8e:29:0f:5e:74:41:42:be:88:e9:67:6a:39:2f:
fe:90:6a:90:a2:46:48:b4:c3:3f:5b:24:7f:91:24:
90:7a:ec:90:ca:bc:6e:c3:2c:52:37:8d:07:47:8f:
3b:d3:4d:f4:51:30:70:1a:7e:c1:a8:cd:37:c2:50:
a3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:52:C3:EA:33:17:2F:F4:8F:F6:7C:EC:4A:33:13:B3:66:D5:AC:B0
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/NVLD6jMXL_SP9nzsSjMTs2bVrLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.186.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:62:fc:92:31:20:50:69:fb:63:27:ec:8b:c3:1e:23:e8:6e:
63:a6:fc:06:40:ac:52:64:ea:00:01:23:9a:f7:88:22:b8:01:
0a:33:28:ce:c4:ee:4b:df:36:45:8a:a1:ee:10:48:1f:02:2e:
72:25:7a:69:c8:33:69:e1:fa:dd:45:e6:67:80:87:a5:2a:e4:
02:e5:55:55:86:f3:14:5a:ed:d5:99:2a:fb:d6:a2:8a:a4:56:
20:98:5a:93:2f:67:cb:85:b2:49:e1:b8:8b:9e:f8:20:26:50:
fc:74:a1:5d:2f:5a:35:74:31:2b:23:20:d6:db:02:a2:7c:3d:
3e:f0:e4:33:49:50:9a:24:d0:07:75:3a:54:9f:a9:fa:14:8b:
6e:07:06:ba:d5:e3:ea:39:72:1c:38:28:21:db:ce:fc:bb:b8:
3e:d7:ea:9c:5f:df:b7:31:f6:0d:69:e3:d1:94:f5:2e:35:7a:
78:40:2a:3d:ee:e5:7a:6c:c7:57:39:80:6f:f1:f5:7c:3f:8e:
3e:dc:be:3b:cf:42:eb:96:16:32:2d:2f:d6:01:9a:99:ff:5f:
57:9f:42:06:66:a5:15:83:ba:06:1f:cc:41:42:c5:17:08:b6:
70:dc:4c:f3:bb:84:57:89:bf:57:9f:a6:67:f3:f7:7b:27:d3:
61:78:12:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org