Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/NsIdpAb9ZDx8XUIMZI2Mx-Q5z_c.roa
File: NsIdpAb9ZDx8XUIMZI2Mx-Q5z_c.roa (raw, json)
Hash identifier: MJVmNLqkpFLoCFAo+iaGpSqiMK0uj8IJCUaq5J7Brps=
Subject key identifier: 36:C2:1D:A4:06:FD:64:3C:7C:5D:42:0C:64:8D:8C:C7:E4:39:CF:F7
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 433D0F03
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/NsIdpAb9ZDx8XUIMZI2Mx-Q5z_c.roa
Signing time: Sat 28 May 2022 10:20:13 +0000
ROA not before: Sat 28 May 2022 10:20:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50322
IP address blocks: 188.210.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1128075011 (0x433d0f03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 28 10:20:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36c21da406fd643c7c5d420c648d8cc7e439cff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:de:d4:4f:92:b2:ac:9d:08:de:0a:c5:45:ea:
72:b0:17:48:52:79:d7:e9:16:e2:e5:7a:2d:36:d8:
77:1f:f0:f8:82:6c:1c:32:c3:79:9c:78:ca:15:15:
98:0a:16:6e:fe:31:16:93:1e:65:85:27:39:76:23:
36:f9:74:89:64:66:66:f0:6e:ab:4a:7a:4f:47:2a:
9b:8a:e3:38:17:98:3e:7c:b2:06:70:35:62:b6:28:
63:3b:d7:a0:38:6a:e3:a6:32:93:4e:41:01:32:a3:
b7:84:88:fa:4b:7e:c1:95:d2:98:67:f5:f7:1f:41:
fc:72:0c:3d:fb:62:09:63:d5:27:5d:9a:57:41:53:
de:20:d1:6e:60:45:00:c5:2e:b7:58:db:b7:37:9d:
ef:c8:7a:8e:2c:18:44:7d:8a:7e:1e:b2:13:62:f0:
0f:40:78:e2:5a:2d:b7:2d:2e:da:b1:b6:b7:a8:ed:
93:20:42:79:1a:5e:4d:a7:29:3c:fb:cd:fd:20:d0:
b9:3b:7c:ce:da:4c:8b:95:1a:ca:95:6f:e9:34:ac:
9e:45:cf:4b:4e:9c:57:13:c2:67:27:29:4d:e9:bd:
03:d1:1c:f7:c3:2f:4e:b4:ff:1d:5e:00:e0:e3:48:
82:31:0c:ac:a8:e4:b2:5d:79:16:c6:c0:e7:e8:bb:
d0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C2:1D:A4:06:FD:64:3C:7C:5D:42:0C:64:8D:8C:C7:E4:39:CF:F7
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/NsIdpAb9ZDx8XUIMZI2Mx-Q5z_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.210.90.0/24
Signature Algorithm: sha256WithRSAEncryption
ee:58:01:ce:2b:73:20:64:ca:28:7b:b1:96:ac:8e:82:29:52:
0c:9b:ee:54:74:d7:53:63:48:b9:59:e7:3d:1f:85:3f:3e:06:
98:3f:9c:68:ed:f2:55:21:c8:a4:2b:7f:02:6b:40:66:37:19:
ac:89:c3:13:e8:69:72:60:da:e8:6f:8d:45:7c:c4:13:38:96:
65:81:8e:08:d3:b9:44:79:bf:63:6c:74:81:ed:60:5d:09:80:
bc:d8:71:67:20:5b:0e:59:36:76:c8:b0:ff:22:0e:44:d8:24:
3a:55:57:8b:5d:2a:fc:dd:b8:33:b8:e5:e1:6e:e1:f4:6f:8f:
69:b8:a2:b9:4e:41:ab:4e:1f:a7:40:a1:28:75:0c:07:2c:fd:
10:65:65:90:71:a0:4c:27:b8:6a:c4:8b:d4:f9:8e:99:20:b8:
3f:2c:3f:c7:4e:8b:4e:c4:41:72:5f:1a:60:83:c8:d1:64:37:
8c:f2:fd:11:f0:bd:27:ae:07:27:79:d4:c1:ac:43:a1:d9:53:
54:13:14:19:62:a8:0b:9a:7a:e0:b7:f7:1e:36:c5:0a:c5:bf:
28:c0:80:f2:64:b0:d1:be:7e:75:62:77:94:96:97:60:00:24:
8c:f4:1d:81:cd:0a:18:a4:e1:1c:c4:8e:42:14:74:6c:17:16:
2b:a6:8a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:32 2025 by rpki-client