Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/NUlZPgyWKBH3I6hcorg1dHvmgTw.roa
File: NUlZPgyWKBH3I6hcorg1dHvmgTw.roa (raw, json)
Hash identifier: WzJp4xurH+ukLLMu21JVJillJIFGjAA8irfdBcFt5Hk=
Subject key identifier: 35:49:59:3E:0C:96:28:11:F7:23:A8:5C:A2:B8:35:74:7B:E6:81:3C
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 3940275B
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/NUlZPgyWKBH3I6hcorg1dHvmgTw.roa
Signing time: Sat 01 Jan 2022 08:05:31 +0000
ROA not before: Sat 01 Jan 2022 08:05:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34592
IP address blocks: 194.225.148.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960505691 (0x3940275b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 1 08:05:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3549593e0c962811f723a85ca2b835747be6813c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:61:22:a5:f6:39:a4:2d:a6:44:28:5a:8b:da:
9c:d8:52:6c:c8:40:60:55:66:c8:d8:6a:7b:3e:b4:
84:06:c6:67:7c:11:09:a2:37:57:5c:2f:23:97:f0:
c9:f2:74:e0:20:65:9a:11:ff:eb:f5:a3:b1:ce:67:
57:02:24:b1:fc:6e:f7:e8:d8:40:ed:c8:4e:3b:c0:
ee:56:f0:97:c2:2e:6e:3d:f8:28:f5:d6:94:ce:a9:
8c:a9:4e:d8:54:28:ad:be:93:4f:34:5b:91:66:84:
1f:a8:12:c9:a3:0c:36:8c:0e:7f:c2:92:72:c6:34:
63:78:2f:04:63:15:fe:75:67:78:be:01:dd:7f:e2:
fb:1b:d1:9f:1a:db:dc:10:d4:52:9b:fe:4f:16:e2:
e8:d9:1a:ec:ba:21:71:5a:0e:2b:ec:d4:2d:ae:8f:
12:b7:3d:17:6c:f9:6f:ce:6d:35:4b:d7:a9:9d:aa:
07:2c:89:6b:af:4b:3d:3b:58:69:bc:dd:a7:fc:94:
7b:62:4a:b6:c8:d7:ac:61:78:74:17:63:cf:d8:db:
19:65:14:49:c2:61:b7:c3:13:cb:b4:d8:54:34:a0:
f1:4e:81:72:35:7d:43:1e:7c:f4:bc:ce:86:12:53:
cb:85:bd:ef:c6:be:f6:88:c4:64:dd:5a:b4:dc:19:
c1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:49:59:3E:0C:96:28:11:F7:23:A8:5C:A2:B8:35:74:7B:E6:81:3C
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/NUlZPgyWKBH3I6hcorg1dHvmgTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.225.148.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:17:5b:e4:7a:65:bb:61:1c:62:02:4c:85:5e:0c:58:00:99:
d0:13:8b:50:b8:74:60:5f:86:08:0f:4c:42:f4:db:2f:45:d1:
6f:3a:9e:23:46:8f:16:48:1e:da:d7:d8:df:58:08:10:5d:45:
df:5e:8e:d3:87:d0:b6:28:b0:46:39:ce:5a:92:03:a4:38:2f:
90:83:36:de:84:36:71:8f:03:b2:8c:d3:d9:53:fe:35:33:15:
7f:d5:2d:dd:ec:52:70:cb:9e:c7:6e:ae:0e:30:91:0f:7e:ef:
96:5a:4a:e9:83:50:54:70:f3:b1:15:1f:90:9c:dc:2b:d2:09:
a5:8b:f9:51:3c:82:25:95:8d:1f:89:91:8e:99:54:88:ef:dd:
19:09:a5:95:19:db:72:88:e2:f8:53:10:15:0c:59:66:99:65:
a2:21:58:9c:28:e3:45:e4:a3:eb:c3:16:40:41:76:79:b3:02:
7c:0a:7d:49:7f:9e:b0:9f:c3:52:af:78:49:ef:81:7e:3b:17:
45:67:f2:39:6d:c0:77:2f:4a:1a:2d:7b:2a:19:13:65:2e:da:
54:96:b6:14:f5:69:dd:b7:de:34:d0:b9:3f:a5:d8:6b:aa:ea:
81:76:9f:14:6a:47:1d:17:c9:17:63:1c:3b:b0:b4:23:49:03:
e4:7b:52:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:22 2024 by rpki-client on console-fra.rpki-client.org