Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/nRC7jULFNCVEwbWkVpdxRi4O_CE.roa
File: nRC7jULFNCVEwbWkVpdxRi4O_CE.roa (raw, json)
Hash identifier: /m0FbnUsl2QMm4QR9IhCqteSAOv0Oke7ivFFIPe460o=
Subject key identifier: 9D:10:BB:8D:42:C5:34:25:44:C1:B5:A4:56:97:71:46:2E:0E:FC:21
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0650099D
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/nRC7jULFNCVEwbWkVpdxRi4O_CE.roa
Signing time: Tue 01 Mar 2022 23:39:44 +0000
ROA not before: Tue 01 Mar 2022 23:39:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.81.28.0/22 maxlen: 24
185.114.144.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105908637 (0x650099d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Mar 1 23:39:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d10bb8d42c5342544c1b5a4569771462e0efc21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:27:fc:63:ec:37:c3:45:c4:41:35:98:69:d9:
09:df:6b:1c:00:c6:93:e2:fe:60:c9:88:28:9a:6a:
19:d0:6d:85:84:cd:91:48:a9:af:13:e1:59:bb:c0:
83:be:d0:48:43:b2:69:2e:c8:6d:6e:e7:c2:41:0e:
31:fc:e8:ee:22:ac:22:13:41:db:07:8a:e5:62:b3:
87:b1:8a:86:85:85:a1:86:aa:56:aa:d8:15:40:4a:
d5:83:54:b7:6c:61:98:d6:bf:5e:10:a2:59:d3:01:
cd:67:49:8e:da:b9:7d:65:b1:de:73:0e:bb:16:be:
f8:c6:09:39:fa:02:d0:b3:3e:49:8f:be:ed:20:f8:
84:59:42:ae:a7:0b:14:93:4b:97:7a:eb:be:22:29:
47:9c:e8:45:5c:62:a1:7e:ef:f4:a3:24:aa:00:aa:
3c:8c:b2:16:3f:96:43:32:41:c0:b6:df:59:e6:51:
d8:f3:87:96:cf:10:c3:42:6a:bc:07:59:1e:bb:17:
88:4c:77:6d:ac:55:5f:b5:1c:93:84:3f:7f:6b:02:
b4:fc:a7:75:5a:07:a4:ab:d8:49:1f:74:55:b6:14:
98:a3:4c:44:21:07:06:d3:c0:b2:a7:05:44:45:07:
f6:78:d0:1c:6e:81:d6:be:1c:35:55:c6:70:2a:25:
47:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:10:BB:8D:42:C5:34:25:44:C1:B5:A4:56:97:71:46:2E:0E:FC:21
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/nRC7jULFNCVEwbWkVpdxRi4O_CE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
185.114.144.0/22
Signature Algorithm: sha256WithRSAEncryption
97:c6:c6:b6:15:c0:52:db:5e:42:93:f8:fe:51:7f:0e:ce:21:
11:0e:4e:20:cf:92:fe:50:e2:8a:3f:6e:4d:6f:6c:0c:66:43:
71:cc:79:cb:c3:e9:7c:f0:ce:b7:f2:80:15:90:f0:91:3f:81:
55:12:14:a6:e4:78:cb:5f:ea:4a:6a:6a:cb:29:6a:f0:fa:a7:
11:96:fb:bb:4a:a3:cc:9d:a1:b1:7d:a1:29:5d:fb:7c:e9:7c:
84:b9:e3:2f:26:12:30:5e:db:8f:22:ba:65:c8:86:92:24:9a:
82:a6:9b:3b:4d:23:49:66:33:cd:b0:57:9f:63:5e:7a:62:c6:
28:1e:5d:07:03:c0:e7:e7:dd:1d:8d:6c:17:49:ac:f0:34:4b:
20:07:8d:01:a7:7f:bc:cb:c8:e2:6c:aa:d4:eb:61:48:e1:17:
fa:38:5d:f4:26:81:3e:41:0e:25:dd:41:d0:06:96:6a:a5:69:
c8:ec:92:10:47:f5:38:3d:d4:6e:ed:bd:f5:b4:74:e3:a4:b2:
f0:58:59:45:38:bc:3c:0d:68:4f:61:36:0a:16:53:db:d8:39:
e0:6b:c1:30:51:d9:e6:06:c1:0b:f5:99:f1:49:bc:a7:f7:ca:
13:56:ea:44:49:7c:52:ca:b0:7a:e0:4c:13:ee:70:83:3e:db:
0d:3c:17:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org