Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/NaC5UVY4X33eb8mlfqh13-qw0vQ.roa
File: NaC5UVY4X33eb8mlfqh13-qw0vQ.roa (raw, json)
Hash identifier: 16T39YByt931Y3bQaRMfqIP9uAuP/XM78Bv8v0MNq3Y=
Subject key identifier: 35:A0:B9:51:56:38:5F:7D:DE:6F:C9:A5:7E:A8:75:DF:EA:B0:D2:F4
Certificate issuer: /CN=ef4f78947341ce55888b7ebf3690143b0cbff3d6
Certificate serial: 018336FCF1CAEECB4CEFE82B5A5D9D13ED91
Authority key identifier: EF:4F:78:94:73:41:CE:55:88:8B:7E:BF:36:90:14:3B:0C:BF:F3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7094lHNBzlWIi36_NpAUOwy_89Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/NaC5UVY4X33eb8mlfqh13-qw0vQ.roa
Signing time: Tue 13 Sep 2022 13:14:50 +0000
ROA not before: Tue 13 Sep 2022 13:14:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204773
IP address blocks: 185.66.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:36:fc:f1:ca:ee:cb:4c:ef:e8:2b:5a:5d:9d:13:ed:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef4f78947341ce55888b7ebf3690143b0cbff3d6
Validity
Not Before: Sep 13 13:14:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35a0b95156385f7dde6fc9a57ea875dfeab0d2f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:5f:4b:39:19:11:75:f8:ce:cc:e9:29:46:81:
e9:d0:a0:cf:cf:dd:85:e1:49:67:7a:47:ff:da:0e:
5a:ad:fc:4c:67:14:55:10:86:aa:73:87:1b:59:c6:
fe:8e:9c:44:5b:0a:e7:e3:9c:75:f2:06:f8:4c:74:
e3:51:77:60:4a:ce:70:59:99:e5:e8:38:9c:80:6a:
02:9c:97:00:68:38:4b:1d:00:89:1e:37:76:49:46:
27:b3:cf:83:80:74:bc:07:e6:3f:ea:db:8c:16:28:
c9:9b:a1:e5:08:1f:83:47:cd:ca:24:ce:c1:73:9f:
34:21:21:f6:b7:91:2c:33:02:13:5f:ed:8e:0a:bc:
44:16:56:54:3c:6a:e7:03:3f:40:7e:e4:c2:66:97:
cf:e8:7e:6a:dd:ea:a6:6c:09:3b:f9:35:99:b1:2f:
6a:f8:ac:91:aa:1e:d2:15:72:0f:a6:dd:a4:77:f0:
b8:b9:9c:cf:7d:49:63:cb:b5:77:42:0c:a4:43:3a:
5b:c5:6d:da:bb:eb:c7:c5:94:c9:4d:74:96:3b:2e:
f2:7e:4e:2d:60:b7:af:1b:a3:1b:af:6c:d2:7e:88:
18:9a:1c:e4:85:f0:80:a8:d9:f8:20:76:96:c5:51:
86:b4:c6:09:45:b7:9b:f0:c5:ff:3c:77:0e:1b:b2:
63:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A0:B9:51:56:38:5F:7D:DE:6F:C9:A5:7E:A8:75:DF:EA:B0:D2:F4
X509v3 Authority Key Identifier:
keyid:EF:4F:78:94:73:41:CE:55:88:8B:7E:BF:36:90:14:3B:0C:BF:F3:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7094lHNBzlWIi36_NpAUOwy_89Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/NaC5UVY4X33eb8mlfqh13-qw0vQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/7094lHNBzlWIi36_NpAUOwy_89Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.75.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:e0:cc:8d:12:eb:74:2b:c5:2c:aa:e6:7e:d9:b7:cb:a6:7a:
48:52:af:6d:74:e8:ff:0f:06:69:65:46:37:a5:9a:4b:d5:ad:
72:3c:f4:78:6e:a9:00:92:0d:44:1a:84:b7:ac:f9:8f:ed:7d:
bd:df:c0:5d:6f:74:37:db:d7:9f:f4:19:6b:51:47:5d:4d:05:
c9:25:74:3f:43:6f:b6:56:61:b1:37:20:1d:a8:7f:55:b1:11:
b4:a3:f5:a1:e6:6a:a0:80:ad:f5:56:7d:21:c3:34:8b:85:d7:
2c:01:2d:07:0a:43:76:5e:ea:7b:46:51:0b:e1:f7:c1:17:a9:
09:a8:7e:b9:54:a6:d6:87:04:0d:17:3d:e2:fe:8d:61:4b:9d:
e5:c1:28:89:a1:e5:01:9e:f4:80:f6:9d:de:28:33:df:39:08:
07:9d:7b:7b:0d:8f:08:a3:a0:02:98:a7:25:9b:46:34:5c:f4:
3d:91:46:f8:eb:33:ca:13:a3:7b:6f:08:b8:4a:9e:d9:e2:72:
e1:11:df:57:6d:97:21:ee:be:7e:b9:0a:90:21:ec:b9:78:bb:
dc:70:84:19:b1:d1:b1:46:c6:6e:5c:b7:80:eb:eb:7a:2b:de:
9e:ec:0a:84:e0:0d:9f:1f:47:4e:68:9a:9e:ae:52:e2:01:a4:
ea:87:3b:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:16 2023 by rpki-client on console-fra.rpki-client.org