Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/NV9rZZTN6q9bB_DsGVb2Cu-aRKc.roa
File: NV9rZZTN6q9bB_DsGVb2Cu-aRKc.roa (raw, json)
Hash identifier: eRSq/bN4XSBz6mNKFEUh0RtULbKG4kDExnWnmt1TmV0=
Subject key identifier: 35:5F:6B:65:94:CD:EA:AF:5B:07:F0:EC:19:56:F6:0A:EF:9A:44:A7
Certificate issuer: /CN=261b941dbe59651fafbba9724a12775e07edb635
Certificate serial: 01824437D3499E6EA52212B429C65C0B029E
Authority key identifier: 26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/NV9rZZTN6q9bB_DsGVb2Cu-aRKc.roa
Signing time: Thu 28 Jul 2022 09:51:25 +0000
ROA not before: Thu 28 Jul 2022 09:51:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.172.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:44:37:d3:49:9e:6e:a5:22:12:b4:29:c6:5c:0b:02:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261b941dbe59651fafbba9724a12775e07edb635
Validity
Not Before: Jul 28 09:51:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=355f6b6594cdeaaf5b07f0ec1956f60aef9a44a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:4d:69:c6:63:5b:3b:f1:78:c2:e9:7d:11:75:
ab:87:bc:38:7c:cc:0e:16:33:91:da:2d:c1:14:e5:
4f:c3:cb:ce:0d:d7:0c:d5:0d:bc:f2:ce:4d:a0:d5:
36:da:bf:49:c1:d8:dc:fc:8b:94:b9:01:53:a7:99:
88:bb:5c:4f:04:4f:5c:0c:e0:4a:3a:91:4a:1d:11:
51:6d:d0:0b:38:50:7c:aa:64:ec:f0:ec:0b:26:c2:
f7:19:f3:48:01:52:ca:bf:69:6f:9d:8c:32:32:a8:
69:33:07:38:8c:cc:89:71:1b:90:05:22:e4:e2:50:
11:83:e0:6e:d5:01:a4:b9:1a:8b:17:39:f8:56:8e:
42:73:f7:9e:69:72:bb:55:cb:59:cc:c1:51:e1:ae:
9f:74:dd:09:8c:2f:f8:27:c3:86:d8:c2:2c:c1:8f:
8c:11:65:46:f7:a7:de:c9:b5:22:82:a9:29:e9:8a:
f2:e3:4a:3a:20:06:b0:85:d6:03:1f:47:bb:aa:6d:
39:b1:98:0e:3b:55:39:33:e3:4b:8b:7a:ef:3f:40:
38:46:a7:86:c5:20:a3:fe:09:8c:23:57:3b:1a:c6:
09:e7:f5:d5:e3:22:8b:8f:cb:55:67:ea:94:c8:0f:
5e:8b:9e:37:35:ec:76:d4:45:7c:3b:5a:41:ea:e4:
3c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:5F:6B:65:94:CD:EA:AF:5B:07:F0:EC:19:56:F6:0A:EF:9A:44:A7
X509v3 Authority Key Identifier:
keyid:26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/NV9rZZTN6q9bB_DsGVb2Cu-aRKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.152.0/22
Signature Algorithm: sha256WithRSAEncryption
c5:84:03:f2:8a:43:0f:d5:b0:21:9c:b3:da:44:1e:fe:62:18:
83:c7:3d:73:11:fc:ee:12:28:f0:89:eb:90:d5:7b:97:41:ca:
39:89:b5:c2:a4:ce:f2:11:6f:8e:e0:b1:20:0e:36:ec:17:ff:
62:42:11:99:96:35:6c:3f:49:de:83:4b:5f:b6:75:81:79:db:
d5:90:f2:1e:c2:07:2f:96:9f:4c:49:d9:d5:a1:20:30:63:c0:
be:04:1b:8b:fe:ff:91:c7:cc:76:85:02:e0:eb:7b:14:0b:4c:
fe:7e:fb:de:77:78:8f:2f:92:40:4d:55:63:8d:ca:a9:02:65:
92:ab:c3:a7:f6:54:a1:55:83:9c:92:c1:7c:88:b8:ad:a9:9e:
6c:7b:c0:2f:43:c6:18:e3:11:f2:51:93:49:3d:c5:f3:ff:bf:
a7:19:5e:07:1c:5b:e6:8a:32:10:d7:46:03:19:19:3a:63:a9:
1d:32:b4:86:13:cc:2b:8f:f5:72:af:c0:25:f0:76:da:44:06:
1d:a7:85:08:53:2a:c8:0f:9a:ce:87:b8:3f:43:94:60:4a:c7:
81:86:8f:62:af:2c:fe:2c:54:67:bf:41:61:8e:8e:07:88:8c:
77:f8:0f:4e:ea:11:4e:68:82:70:70:e4:8f:4d:9f:b4:4f:25:
a7:26:21:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:57 2024 by rpki-client on console-fra.rpki-client.org