Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/3NJD1TbZ-9isp0H8vg5OgKJ1y3Y.roa
File: 3NJD1TbZ-9isp0H8vg5OgKJ1y3Y.roa (raw, json)
Hash identifier: c+gy3kzbdiEI4H/X7Fw0eS3bZhV0XvY4URDH178FAWc=
Subject key identifier: DC:D2:43:D5:36:D9:FB:D8:AC:A7:41:FC:BE:0E:4E:80:A2:75:CB:76
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 0684BD7D
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/3NJD1TbZ-9isp0H8vg5OgKJ1y3Y.roa
Signing time: Sat 01 Jan 2022 10:05:16 +0000
ROA not before: Sat 01 Jan 2022 10:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 185.155.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109362557 (0x684bd7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Jan 1 10:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcd243d536d9fbd8aca741fcbe0e4e80a275cb76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:57:a8:85:a3:12:42:3b:c8:d4:8b:87:91:09:
4f:50:98:1f:f9:a9:f6:4f:01:fd:c7:c0:2d:d8:9c:
0a:9e:2a:06:01:2d:3c:c6:3c:b5:db:9a:aa:a4:a5:
91:52:f4:3d:e0:af:77:bd:b9:ee:4d:c8:8b:8c:b6:
71:98:8e:c4:ef:97:aa:4b:3f:55:0b:06:da:62:5a:
86:9d:08:98:44:27:ce:5f:5b:ea:05:e2:c8:8d:e4:
1c:aa:f3:d8:2f:08:f7:8b:a0:f2:25:e1:2f:9b:7c:
4e:1f:49:9a:e9:f4:53:77:ab:b7:05:61:63:da:b0:
0c:04:4c:13:2a:1f:69:0a:3e:64:10:df:cd:82:86:
fc:e7:1c:04:63:52:b4:25:01:3a:a2:91:4f:64:d3:
ad:39:b4:2d:a1:c3:67:c5:4b:24:29:98:ba:f0:40:
1d:f0:42:8d:a6:28:6f:ef:74:ce:44:13:df:67:e6:
70:70:ac:99:39:54:6a:1d:c1:cf:43:e4:0f:ff:2f:
0f:ff:59:27:c6:af:ed:84:f6:0f:12:bd:a4:df:88:
95:a8:30:8b:1a:d0:07:e8:00:70:63:28:09:fa:fc:
78:0e:71:ba:1d:d5:ac:c7:61:7a:04:e7:3e:09:08:
e4:a6:4c:d6:10:dc:05:2d:af:97:53:64:73:07:49:
2b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:D2:43:D5:36:D9:FB:D8:AC:A7:41:FC:BE:0E:4E:80:A2:75:CB:76
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/3NJD1TbZ-9isp0H8vg5OgKJ1y3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.52.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:c4:28:44:7a:18:e5:9a:c8:53:b4:2f:ee:f8:ca:70:a1:84:
8c:3c:2f:af:58:a7:3d:f7:3c:b1:dd:90:45:2d:b7:eb:b2:92:
28:dd:c3:1a:05:2f:d0:e2:1e:94:52:3d:d7:b3:3c:9d:7e:3a:
ba:db:5c:e3:6a:0c:38:eb:f2:30:8e:f7:47:44:d2:db:3b:be:
11:35:b3:6b:1a:48:36:ca:25:29:af:08:61:2a:7f:21:37:dc:
c2:9f:77:01:90:e1:7d:0f:f6:25:11:12:89:b7:50:52:e7:3e:
44:44:bd:e3:07:3a:56:f5:e4:91:d3:85:78:72:aa:ec:e4:1d:
e0:fa:a1:fa:d6:a4:fc:68:7e:1e:91:a8:1f:8e:d1:45:7f:8b:
f5:05:a4:02:c9:04:ae:98:5d:01:b0:8f:8c:e4:b7:69:4e:1e:
39:17:33:ab:28:93:c4:9f:f8:21:f4:3b:64:b5:4f:f3:ef:21:
7d:fd:d4:e9:02:9c:fa:d8:bd:df:01:29:2e:2f:92:fc:91:1b:
a3:53:e4:9e:5c:d2:4f:1d:d6:c3:2c:42:26:68:1d:89:f9:f1:
08:d9:5d:fb:7c:13:c7:8c:4d:f5:d7:9d:c8:94:2d:07:bd:58:
4c:47:06:de:3b:7c:49:fd:17:6e:c3:3b:34:1d:97:ce:aa:c1:
0f:1c:09:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:47 2023 by rpki-client on console-fra.rpki-client.org