Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/bbf75d-c1dd-44b0-a5e0-cdcc704b38a7/1/NprE2_5nw1Cst2COHZsd478nVaY.roa
File: NprE2_5nw1Cst2COHZsd478nVaY.roa (raw, json)
Hash identifier: 74Rns6qfyN6mNAI0+gewOebJtDk0M/zx234MGIRweEg=
Subject key identifier: 36:9A:C4:DB:FE:67:C3:50:AC:B7:60:8E:1D:9B:1D:E3:BF:27:55:A6
Certificate issuer: /CN=2d0c21cffa80b5a1e5cbd631930e7fc55fddfc48
Certificate serial: 04E6EA89
Authority key identifier: 2D:0C:21:CF:FA:80:B5:A1:E5:CB:D6:31:93:0E:7F:C5:5F:DD:FC:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LQwhz_qAtaHly9Yxkw5_xV_d_Eg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/bbf75d-c1dd-44b0-a5e0-cdcc704b38a7/1/NprE2_5nw1Cst2COHZsd478nVaY.roa
Signing time: Sat 01 Jan 2022 06:04:33 +0000
ROA not before: Sat 01 Jan 2022 06:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209587
IP address blocks: 185.236.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82242185 (0x4e6ea89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d0c21cffa80b5a1e5cbd631930e7fc55fddfc48
Validity
Not Before: Jan 1 06:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=369ac4dbfe67c350acb7608e1d9b1de3bf2755a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:67:85:13:53:13:e6:47:2c:98:9f:d4:35:c5:
3e:f6:89:58:18:81:fc:b4:98:0b:ec:96:cd:6a:e4:
6d:26:8c:f9:2b:0d:f8:eb:22:9e:f4:45:af:49:09:
41:36:02:32:f9:17:73:c3:bc:c2:46:08:39:2f:3e:
47:95:52:2d:41:f2:06:95:4a:78:0d:21:c5:a4:da:
70:fc:d2:f7:1b:3b:12:db:e5:e6:4f:e4:2d:a9:60:
d6:83:9d:01:e1:16:f0:9d:00:21:8c:3a:4c:4a:8e:
5f:90:90:78:9c:53:5a:e3:36:2f:25:69:22:ab:8b:
1e:41:5c:60:ad:cf:80:43:20:99:3c:27:3a:a0:54:
53:ec:f1:43:74:76:cf:34:78:4f:2f:41:82:07:54:
71:50:a4:71:3a:d6:08:b3:6c:3b:ce:7e:5b:9f:0b:
75:9e:0f:df:4d:ac:60:3d:9e:22:11:62:6c:18:7d:
24:3d:8d:05:c5:4d:9e:04:a7:57:4b:86:aa:b2:23:
38:f6:55:c8:1e:b9:a0:4d:0d:fb:b0:84:02:94:97:
54:2c:db:9f:c5:90:e5:af:de:4c:c5:fb:26:66:f5:
01:a2:da:76:52:68:66:ee:2c:6b:22:e6:34:96:f2:
c4:7d:e7:94:3e:bc:29:ad:ea:4c:87:3c:85:41:05:
00:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:9A:C4:DB:FE:67:C3:50:AC:B7:60:8E:1D:9B:1D:E3:BF:27:55:A6
X509v3 Authority Key Identifier:
keyid:2D:0C:21:CF:FA:80:B5:A1:E5:CB:D6:31:93:0E:7F:C5:5F:DD:FC:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LQwhz_qAtaHly9Yxkw5_xV_d_Eg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/bbf75d-c1dd-44b0-a5e0-cdcc704b38a7/1/NprE2_5nw1Cst2COHZsd478nVaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/bbf75d-c1dd-44b0-a5e0-cdcc704b38a7/1/LQwhz_qAtaHly9Yxkw5_xV_d_Eg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.32.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:61:86:b7:0f:1b:76:26:6e:10:b6:5a:25:c5:63:90:c3:d0:
e0:74:84:52:49:78:3c:98:6b:91:ad:54:0d:d2:39:97:43:96:
8a:35:b7:f0:39:cc:cc:b6:68:08:3f:24:9e:73:5c:f8:60:ba:
ff:0d:31:ee:25:e5:93:b4:d2:99:05:69:e7:fe:fd:d2:25:3e:
82:d9:98:7d:00:70:0a:ce:21:9e:0c:72:7f:83:35:63:c0:ac:
6a:6c:66:97:17:e5:a5:a4:67:83:dc:b0:6d:be:62:73:9f:8d:
18:c8:7d:78:8d:b1:df:35:9d:77:70:73:7e:63:63:ee:95:bd:
12:c7:52:74:c0:fa:b0:6b:ab:ff:36:af:96:5a:ee:18:e2:63:
82:9e:af:5a:e2:d3:84:bb:2a:9f:36:76:20:7c:be:57:1f:09:
c5:19:c3:57:bd:8b:7f:7c:61:e7:2f:e9:d8:ce:47:a0:37:ca:
c6:19:77:8f:06:2e:e6:35:3e:17:95:bd:02:1d:05:2d:a1:96:
91:19:06:fe:62:0e:58:4e:38:99:93:37:ae:c0:c1:86:17:0d:
30:0c:99:a8:2c:a2:d5:75:b7:ca:2d:be:a4:e7:79:a0:32:b5:
71:58:ab:e9:58:ae:94:ca:c9:f4:76:e1:ac:b4:7d:6e:3f:18:
66:81:55:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:22 2023 by rpki-client on console-ams.rpki-client.org