Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/e22980-d5e5-41e8-a06a-7469ef203f82/1/nSvm2O49Oya2vHYC8_9NG8MnAws.roa
File: nSvm2O49Oya2vHYC8_9NG8MnAws.roa (raw, json)
Hash identifier: wOmO7gTOzCCPvY6MwuYUR3zKBVP86gudrDfUAPtWmxA=
Subject key identifier: 9D:2B:E6:D8:EE:3D:3B:26:B6:BC:76:02:F3:FF:4D:1B:C3:27:03:0B
Certificate issuer: /CN=c87c78b5b06a6f902c510f9b4a8f803ba32dfa84
Certificate serial: 14013541
Authority key identifier: C8:7C:78:B5:B0:6A:6F:90:2C:51:0F:9B:4A:8F:80:3B:A3:2D:FA:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHx4tbBqb5AsUQ-bSo-AO6Mt-oQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/e22980-d5e5-41e8-a06a-7469ef203f82/1/nSvm2O49Oya2vHYC8_9NG8MnAws.roa
Signing time: Thu 07 Apr 2022 07:19:59 +0000
ROA not before: Thu 07 Apr 2022 07:19:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203391
IP address blocks: 185.136.98.0/24 maxlen: 24
185.136.97.0/24 maxlen: 24
185.136.96.0/22 maxlen: 22
185.136.96.0/24 maxlen: 24
185.136.99.0/24 maxlen: 24
45.83.251.0/24 maxlen: 24
45.83.250.0/24 maxlen: 24
45.83.249.0/24 maxlen: 24
45.83.248.0/24 maxlen: 24
2a06:fb00:3::/48 maxlen: 48
2a06:fb00:2::/48 maxlen: 48
2a06:fb00:1::/48 maxlen: 48
2a06:fb00:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335623489 (0x14013541)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87c78b5b06a6f902c510f9b4a8f803ba32dfa84
Validity
Not Before: Apr 7 07:19:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d2be6d8ee3d3b26b6bc7602f3ff4d1bc327030b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:56:1a:63:dd:80:f6:1e:0c:59:7c:18:2e:91:
02:c7:98:6d:e8:ca:c5:86:fc:9c:be:1d:80:0b:7b:
ff:2c:f9:fb:98:44:b3:ad:38:29:19:51:ac:47:5b:
1c:cc:dc:a1:8f:10:54:38:8e:bd:5c:c0:87:9c:d2:
80:29:33:11:aa:5e:52:29:c8:84:17:47:01:35:fa:
d8:cc:a6:a9:60:70:ca:cf:af:c4:0e:ce:1a:11:43:
23:68:cd:67:2d:a1:9c:f5:07:dd:b1:90:1a:61:22:
48:0f:5a:7e:09:ad:85:fc:c8:ad:9c:19:d9:f9:53:
3c:01:19:23:06:89:b8:30:53:63:13:4c:c5:e6:ae:
93:f0:2b:e3:69:8d:33:be:e2:96:a2:a1:da:7c:7c:
72:3c:a7:c2:b5:72:5f:e3:69:cf:8a:e4:ca:a5:28:
b7:3e:ce:19:eb:09:38:ca:60:4b:9e:9c:b0:82:42:
9b:10:23:36:4b:db:72:5f:77:20:cc:9b:fe:43:48:
1a:f2:9a:3f:e6:9f:65:b5:37:b3:7a:9e:7a:cf:72:
52:9b:19:5e:34:81:22:4d:ca:2e:be:06:61:fe:44:
d4:c3:f2:30:f3:40:40:4b:d0:80:25:e2:fe:5a:6c:
dd:62:fe:a1:1a:8d:e4:83:f5:10:6b:a2:8d:da:41:
cd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2B:E6:D8:EE:3D:3B:26:B6:BC:76:02:F3:FF:4D:1B:C3:27:03:0B
X509v3 Authority Key Identifier:
keyid:C8:7C:78:B5:B0:6A:6F:90:2C:51:0F:9B:4A:8F:80:3B:A3:2D:FA:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHx4tbBqb5AsUQ-bSo-AO6Mt-oQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e22980-d5e5-41e8-a06a-7469ef203f82/1/nSvm2O49Oya2vHYC8_9NG8MnAws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e22980-d5e5-41e8-a06a-7469ef203f82/1/yHx4tbBqb5AsUQ-bSo-AO6Mt-oQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.248.0/22
185.136.96.0/22
IPv6:
2a06:fb00:1::-2a06:fb00:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
55:2c:ad:2d:90:51:04:ca:cf:ce:d4:59:9c:42:7c:04:4f:70:
c6:2b:d0:b9:d0:8b:41:d9:24:0a:3e:e2:85:c3:97:5f:fa:00:
29:98:83:2c:30:e1:f5:b5:2a:8b:66:7f:f8:f3:9f:02:e1:3e:
ae:f7:9e:db:3d:69:b7:df:64:a4:6e:36:26:bd:73:34:a2:5c:
a1:d5:f7:2d:0d:21:e2:b7:b0:78:5e:a0:38:8f:2f:a4:b4:2f:
f1:be:ae:05:a2:ca:34:f1:d5:10:32:7f:cc:b5:f4:af:27:13:
2b:e8:40:45:43:aa:f4:83:65:71:93:c7:68:26:33:56:2d:1b:
05:64:9c:23:32:c7:44:f3:b6:96:0b:6e:06:e6:f1:20:f7:35:
7c:55:eb:58:f1:12:3e:72:b6:9b:15:99:b4:34:c2:f7:4a:07:
32:9f:25:23:d5:9a:a9:02:05:25:9e:d6:ea:9a:11:12:e0:6c:
f5:48:45:52:d7:e0:2a:0e:e6:c5:06:29:58:dc:fa:6e:1d:2d:
90:ce:ec:6a:23:16:6f:10:c8:9a:a0:b2:dd:1f:29:85:61:34:
3a:0e:c7:f5:90:2a:67:08:2e:57:90:93:0a:ee:4c:5b:12:97:
1e:1b:38:85:e7:57:2c:b2:f1:f8:b0:19:e9:91:b3:db:dd:4b:
37:9e:dc:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:30 2024 by rpki-client on console-ams.rpki-client.org