Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/NORWQJv5_cs4o0J_cCCximvl0gI.roa
File: NORWQJv5_cs4o0J_cCCximvl0gI.roa (raw, json)
Hash identifier: 3bqZBmviY+WdSJVkD+L8QCOWrsLufHgfnQdaoyF+w44=
Subject key identifier: 34:E4:56:40:9B:F9:FD:CB:38:A3:42:7F:70:20:B1:8A:6B:E5:D2:02
Certificate issuer: /CN=c9633fa6fc66b43639c056d02174f80c2426614b
Certificate serial: 0ACE71D4
Authority key identifier: C9:63:3F:A6:FC:66:B4:36:39:C0:56:D0:21:74:F8:0C:24:26:61:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yWM_pvxmtDY5wFbQIXT4DCQmYUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/NORWQJv5_cs4o0J_cCCximvl0gI.roa
Signing time: Sat 01 Jan 2022 04:53:18 +0000
ROA not before: Sat 01 Jan 2022 04:53:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.166.140.0/23 maxlen: 24
185.166.143.0/24 maxlen: 24
185.166.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181301716 (0xace71d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9633fa6fc66b43639c056d02174f80c2426614b
Validity
Not Before: Jan 1 04:53:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34e456409bf9fdcb38a3427f7020b18a6be5d202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ef:04:06:dc:be:b0:14:b2:1d:3a:b3:6f:5a:
bc:fc:d6:21:5a:fe:8b:31:a2:ce:9a:fc:d8:4f:e5:
b9:66:5e:77:51:4d:b3:ea:83:4b:7d:f2:c6:47:b0:
2b:71:b0:ea:7a:ec:22:eb:39:d8:c9:a2:44:bd:a1:
4d:f4:06:fd:20:19:ae:b1:b4:19:12:89:10:bf:34:
3f:dd:f5:26:e5:bb:35:ff:bb:c6:6e:19:68:a6:cb:
71:d5:ca:94:d8:e9:18:37:22:2b:30:1d:df:aa:b9:
7c:14:00:34:cd:cd:7d:fd:f8:ae:be:31:e2:5b:31:
e7:3e:ab:a9:ea:e5:bc:63:9f:93:37:a2:54:2d:37:
ec:dc:0d:90:b5:47:c7:d7:55:be:15:84:6b:7c:09:
d4:75:ee:34:e7:ea:87:36:45:4d:34:48:dd:98:b1:
e3:2d:fd:cd:2e:b8:c9:0b:25:77:14:73:d6:6d:e4:
8b:d1:27:d4:01:38:0e:ba:ee:0b:29:26:99:c8:2b:
27:06:b6:d0:f3:f0:2a:9d:ad:ea:2e:54:b7:2c:4e:
44:95:31:a9:3e:fb:6c:24:7d:b4:e4:66:8d:e6:1d:
9b:95:a3:70:59:96:8a:a0:0b:ae:ab:88:e3:57:fa:
ed:11:58:70:f8:a9:f7:c5:2d:ba:54:b0:18:de:cb:
39:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E4:56:40:9B:F9:FD:CB:38:A3:42:7F:70:20:B1:8A:6B:E5:D2:02
X509v3 Authority Key Identifier:
keyid:C9:63:3F:A6:FC:66:B4:36:39:C0:56:D0:21:74:F8:0C:24:26:61:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yWM_pvxmtDY5wFbQIXT4DCQmYUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/NORWQJv5_cs4o0J_cCCximvl0gI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/yWM_pvxmtDY5wFbQIXT4DCQmYUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.140.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:fc:c1:d3:07:fd:0f:87:85:3a:12:b5:0f:3f:0b:82:4c:85:
04:1f:fd:2d:4b:aa:bf:c4:65:83:49:e0:f6:09:af:bf:51:31:
ac:b1:70:66:db:03:91:d8:d7:6f:1c:a0:70:94:19:23:68:17:
d9:b0:9c:e1:6b:0f:6c:ba:af:4a:16:a2:77:40:3d:14:b1:a8:
cf:c5:8d:6e:8e:4a:a8:76:85:48:5c:fd:ed:45:d7:6a:d4:f0:
b9:97:15:85:af:e6:9d:8f:5d:25:f5:cb:10:01:a2:77:04:0c:
d2:0c:2d:4d:0f:18:c9:b5:f0:40:8e:60:79:9b:8a:d2:e7:be:
81:1d:94:3f:e1:c4:50:59:2e:da:0f:26:59:2d:88:83:48:f0:
50:ef:2e:e5:0b:21:ae:4e:81:4c:27:87:60:a7:60:70:f8:0d:
59:49:bc:80:74:c9:37:1e:d1:85:72:df:e9:e7:b2:56:ba:a3:
9a:85:b8:6c:c8:f4:31:26:d2:ad:9e:f1:63:d8:1a:ac:d9:ed:
c9:66:ec:8b:56:dc:18:d6:10:21:a4:a1:06:a8:24:ba:24:26:
d0:69:ea:a4:f4:89:13:d8:34:e4:b7:b4:cc:50:c8:fd:db:de:
e6:d0:9d:6c:71:f1:1b:b0:a5:eb:99:e3:69:09:de:d7:98:77:
1a:5c:60:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:47 2024 by rpki-client on console-ams.rpki-client.org