Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/6f99d2-ad05-4cfc-9a5e-9cbedcec86d6/1/Nd9r75hdo3YL2mfbR5nrNXep4Gs.roa
File: Nd9r75hdo3YL2mfbR5nrNXep4Gs.roa (raw, json)
Hash identifier: V5NBV6URH9tZkhELKb5vHdIRlnH9UlexgtfLRkjTZbU=
Subject key identifier: 35:DF:6B:EF:98:5D:A3:76:0B:DA:67:DB:47:99:EB:35:77:A9:E0:6B
Certificate issuer: /CN=b9e2dc2340c5309b63eba23cfbe7eed11b74af47
Certificate serial: 9860F8
Authority key identifier: B9:E2:DC:23:40:C5:30:9B:63:EB:A2:3C:FB:E7:EE:D1:1B:74:AF:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueLcI0DFMJtj66I8--fu0Rt0r0c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/6f99d2-ad05-4cfc-9a5e-9cbedcec86d6/1/Nd9r75hdo3YL2mfbR5nrNXep4Gs.roa
Signing time: Sat 01 Jan 2022 00:51:28 +0000
ROA not before: Sat 01 Jan 2022 00:51:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206789
IP address blocks: 185.173.236.0/24 maxlen: 24
185.173.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9986296 (0x9860f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e2dc2340c5309b63eba23cfbe7eed11b74af47
Validity
Not Before: Jan 1 00:51:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35df6bef985da3760bda67db4799eb3577a9e06b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:03:c6:8f:4e:fa:bc:fe:f8:5c:ce:37:69:21:
1e:8f:d3:e4:3c:a6:48:65:ff:11:dd:eb:95:17:3c:
ec:7f:11:c3:cc:f5:f1:43:7d:46:a3:f5:9b:c8:7c:
44:da:ac:1b:15:d2:02:f2:87:33:95:48:52:67:ba:
b6:07:4a:b9:ae:81:23:6a:9e:8c:4b:26:11:02:f0:
34:cc:29:1e:38:a8:b8:76:02:55:ce:fe:da:55:8b:
ce:30:92:f0:90:20:e4:19:14:99:62:75:bb:cd:7b:
7f:ee:3b:7d:44:b3:59:82:8d:b9:6f:a6:59:c7:4a:
5e:bd:2e:39:ba:2c:c7:c9:cd:54:e1:e8:e4:22:1e:
ad:43:fe:2a:f9:b2:96:38:ca:d0:f9:ef:ed:0c:6f:
3a:2c:0a:92:94:36:42:af:c1:c3:5d:1d:2e:60:c4:
0f:37:7d:db:b7:64:3c:86:9e:d5:8a:f2:13:be:1f:
82:6a:7d:ff:ba:ab:4f:b4:b9:29:15:8f:8c:9b:ff:
ac:73:f5:4d:5f:5e:f6:29:e2:f0:ac:1c:09:5e:0d:
09:0e:33:88:a6:0c:67:02:85:85:47:bd:58:bf:8f:
85:d0:0d:66:5e:d9:e1:84:61:86:9c:6d:ea:1e:09:
96:83:a4:a0:e9:09:8d:2b:10:62:e8:69:4e:2f:38:
26:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:DF:6B:EF:98:5D:A3:76:0B:DA:67:DB:47:99:EB:35:77:A9:E0:6B
X509v3 Authority Key Identifier:
keyid:B9:E2:DC:23:40:C5:30:9B:63:EB:A2:3C:FB:E7:EE:D1:1B:74:AF:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueLcI0DFMJtj66I8--fu0Rt0r0c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/6f99d2-ad05-4cfc-9a5e-9cbedcec86d6/1/Nd9r75hdo3YL2mfbR5nrNXep4Gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/6f99d2-ad05-4cfc-9a5e-9cbedcec86d6/1/ueLcI0DFMJtj66I8--fu0Rt0r0c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.236.0/24
185.173.238.0/24
Signature Algorithm: sha256WithRSAEncryption
45:43:70:18:d3:d1:c4:54:9f:72:1a:47:59:fe:b9:49:dc:ec:
c1:10:f1:a2:bf:2c:0a:70:b7:dd:ed:87:0d:fd:d7:14:6c:8c:
95:e8:61:13:16:25:a8:87:41:b5:31:bf:de:b0:6b:da:e7:37:
f6:45:f7:8b:d4:dc:2f:45:9f:a8:63:0c:fa:a6:0f:44:0d:ca:
4d:6e:48:c6:69:9e:37:70:4d:ad:d8:8b:76:4a:e5:4b:93:83:
4e:01:95:60:e6:a4:02:9e:de:81:a6:2e:50:d3:e1:4b:56:1a:
6c:40:05:a4:8e:e4:29:56:67:82:cb:46:96:10:c8:4c:33:9c:
f8:cb:50:92:79:5c:47:ad:f7:4f:56:c1:fd:71:76:3a:b5:f2:
0d:c1:36:fd:98:66:c5:41:75:dd:13:37:81:d4:3e:55:1b:fb:
b7:b1:8d:cc:51:df:39:8f:fa:08:8d:8c:7f:6d:eb:6c:15:da:
60:30:6f:d9:29:fc:db:d9:06:00:57:c5:af:cc:6c:2b:64:71:
39:08:4e:53:29:c9:5c:ed:94:c7:f6:e4:b1:8d:32:de:12:83:
77:14:ab:ba:f9:13:e6:06:7c:88:bc:bf:fd:74:28:e6:40:24:
1c:e4:92:50:ef:80:15:3e:63:c5:70:96:e8:c0:d8:43:df:77:
1b:07:dc:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:35 2024 by rpki-client on console-ams.rpki-client.org