Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/NvYMN3z5qH7qCKJ9dbMICx-dmc0.roa
File: NvYMN3z5qH7qCKJ9dbMICx-dmc0.roa (raw, json)
Hash identifier: ClWqN999aXcBTIxRRcgf3AOd28FsnuaXd5lIomowxzc=
Subject key identifier: 36:F6:0C:37:7C:F9:A8:7E:EA:08:A2:7D:75:B3:08:0B:1F:9D:99:CD
Certificate issuer: /CN=f57dc5996c8178c0de2ea20499eebdeade4023eb
Certificate serial: 165C7F36
Authority key identifier: F5:7D:C5:99:6C:81:78:C0:DE:2E:A2:04:99:EE:BD:EA:DE:40:23:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9X3FmWyBeMDeLqIEme696t5AI-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/NvYMN3z5qH7qCKJ9dbMICx-dmc0.roa
Signing time: Sat 01 Jan 2022 14:57:05 +0000
ROA not before: Sat 01 Jan 2022 14:57:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59755
IP address blocks: 185.71.8.0/22 maxlen: 22
2a03:37a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 375160630 (0x165c7f36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f57dc5996c8178c0de2ea20499eebdeade4023eb
Validity
Not Before: Jan 1 14:57:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36f60c377cf9a87eea08a27d75b3080b1f9d99cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:54:56:1f:c1:0d:a3:90:cc:5f:50:e2:e4:70:
e7:01:98:2b:89:ea:33:d9:88:17:61:36:3b:e0:55:
01:02:6a:3e:8d:e7:30:96:30:18:7d:1c:0d:d0:28:
7e:93:fa:c2:6b:4d:7a:5c:76:ff:c1:5e:54:8f:ba:
9b:db:39:d9:83:4e:13:5c:3e:ba:f9:e3:d6:a2:28:
74:7d:de:83:1a:9d:b3:e4:c7:b1:9a:e8:2c:e4:02:
47:72:3a:c1:d0:8c:c7:9c:03:e9:ce:07:03:eb:37:
ce:f5:14:39:c7:3d:19:61:5a:7e:cd:9c:98:4f:1d:
e5:f5:13:d7:3e:d5:84:70:f5:1c:75:b1:5f:38:0f:
2d:c9:ee:1e:d9:7e:30:19:54:3d:87:6f:fb:88:e8:
03:6f:f3:91:99:49:c0:65:af:30:47:b7:db:84:a8:
e6:19:af:68:18:df:d9:e5:4e:3e:e3:17:71:4d:80:
62:f9:4a:2b:ca:90:8f:5e:2c:b9:31:30:ec:01:68:
c2:11:30:c8:36:e6:18:b3:fa:6c:9c:d9:e0:33:2e:
b3:ac:6f:7a:71:1b:bf:f5:81:06:fd:dd:44:f4:68:
35:00:65:ed:77:0b:d4:fe:e0:73:35:be:85:2d:74:
04:d3:e5:4a:f6:66:c7:60:81:c1:47:a8:dd:25:0c:
8b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F6:0C:37:7C:F9:A8:7E:EA:08:A2:7D:75:B3:08:0B:1F:9D:99:CD
X509v3 Authority Key Identifier:
keyid:F5:7D:C5:99:6C:81:78:C0:DE:2E:A2:04:99:EE:BD:EA:DE:40:23:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9X3FmWyBeMDeLqIEme696t5AI-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/NvYMN3z5qH7qCKJ9dbMICx-dmc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/67e3ac-c332-4d13-83ef-c7b10d505cfe/1/9X3FmWyBeMDeLqIEme696t5AI-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.8.0/22
IPv6:
2a03:37a0::/32
Signature Algorithm: sha256WithRSAEncryption
2c:78:09:ba:2d:93:d5:d9:45:d4:84:69:47:8e:d8:9f:55:8f:
fd:cf:4f:a2:91:97:57:38:b1:00:d1:78:86:38:30:54:a0:ee:
61:af:47:e5:46:49:54:e9:ac:3a:6f:69:b5:f9:4c:0e:c4:7c:
eb:28:ff:4c:f5:d6:0e:3a:c9:fb:74:4d:62:2d:2c:ae:a5:57:
21:d7:ff:7f:e4:4f:46:66:e9:cb:25:56:d2:10:5f:7f:21:ff:
37:93:2f:15:87:46:e0:58:ed:8a:2a:23:1a:39:c9:d5:85:73:
93:83:35:7b:c2:ee:71:d4:dd:97:71:f5:73:6a:55:49:28:27:
01:dc:eb:99:2d:0c:de:5b:09:71:e8:65:03:08:fc:98:6f:de:
a1:35:b5:80:6e:c4:cb:5f:58:72:39:2e:08:2d:29:36:0d:d4:
bb:c7:af:26:3a:b6:49:ca:36:35:2f:26:3e:ab:c0:22:07:97:
04:37:a9:5d:88:3f:2a:e4:a5:53:fe:ff:d4:92:0f:5b:71:35:
20:46:f6:5d:79:f3:b6:8e:24:1d:f1:99:a9:23:55:9a:2d:46:
eb:19:10:02:c3:15:aa:5b:ad:95:5a:a0:15:36:38:6d:2f:9a:
49:7d:26:22:98:ea:6e:20:80:4f:2a:b5:84:dc:5b:57:64:c8:
f0:ac:5b:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:47 2023 by rpki-client on console-fra.rpki-client.org