Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/94c2ce-9f7b-4ca7-abbc-ca67fd64d34c/1/NGXR2ZBg_AmiaMh5ClGel_YpUHA.roa
File: NGXR2ZBg_AmiaMh5ClGel_YpUHA.roa (raw, json)
Hash identifier: Tnojub7WqJ3/pipGNlW2Cm06oFjA37qIDPbEgkyoXfI=
Subject key identifier: 34:65:D1:D9:90:60:FC:09:A2:68:C8:79:0A:51:9E:97:F6:29:50:70
Certificate issuer: /CN=762239893807eb09846e829727d71a92e963a7c8
Certificate serial: 17EEF63E
Authority key identifier: 76:22:39:89:38:07:EB:09:84:6E:82:97:27:D7:1A:92:E9:63:A7:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diI5iTgH6wmEboKXJ9cakuljp8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/94c2ce-9f7b-4ca7-abbc-ca67fd64d34c/1/NGXR2ZBg_AmiaMh5ClGel_YpUHA.roa
Signing time: Sat 01 Jan 2022 00:51:00 +0000
ROA not before: Sat 01 Jan 2022 00:51:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200030
IP address blocks: 92.63.112.0/22 maxlen: 22
92.63.116.0/22 maxlen: 22
92.63.120.0/22 maxlen: 22
92.63.125.0/24 maxlen: 24
92.63.124.0/24 maxlen: 24
92.63.127.0/24 maxlen: 24
185.49.156.0/22 maxlen: 22
92.63.126.0/24 maxlen: 24
77.241.164.0/22 maxlen: 22
77.241.172.0/22 maxlen: 22
77.241.168.0/22 maxlen: 22
2a01:a360::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401536574 (0x17eef63e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=762239893807eb09846e829727d71a92e963a7c8
Validity
Not Before: Jan 1 00:51:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3465d1d99060fc09a268c8790a519e97f6295070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9f:12:08:24:67:80:2e:56:ac:36:74:96:7f:
28:be:4a:d2:36:8e:20:7e:68:2a:f8:06:97:e6:73:
16:f4:b3:6a:9b:11:ad:61:94:40:b8:e3:63:20:8f:
8d:07:c7:d1:a4:04:c5:26:70:11:35:6e:ce:ff:b0:
6b:ea:24:a1:ca:0c:17:b8:6f:50:03:17:7b:51:ed:
ff:da:02:d3:bf:e8:c8:17:12:18:0f:34:8a:fb:72:
b4:f0:8c:5c:81:58:09:47:58:d3:98:a4:a9:db:2b:
a0:26:65:29:f7:63:a6:2b:62:ca:6d:02:b2:6a:79:
67:f5:43:33:48:f5:83:44:5c:44:e7:2a:19:35:f0:
cb:bc:30:7c:3d:d1:65:e0:89:8c:f6:a5:aa:02:72:
f0:24:4f:d3:80:34:eb:62:6e:76:ff:a4:8f:74:c1:
60:24:70:d6:12:4c:dc:9d:7e:05:12:4a:50:76:9f:
0e:e0:1e:80:ef:35:4a:9e:7d:31:b6:59:94:f3:54:
06:63:6c:8c:db:44:d8:e6:ca:04:85:f5:92:77:17:
3b:7e:44:21:e1:62:0d:de:ff:4a:27:fc:49:c9:f4:
52:24:fd:84:bc:63:a0:5e:0f:b8:2e:b8:30:b8:56:
01:33:c0:28:ed:4b:27:93:26:75:90:c7:56:3d:5a:
67:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:65:D1:D9:90:60:FC:09:A2:68:C8:79:0A:51:9E:97:F6:29:50:70
X509v3 Authority Key Identifier:
keyid:76:22:39:89:38:07:EB:09:84:6E:82:97:27:D7:1A:92:E9:63:A7:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diI5iTgH6wmEboKXJ9cakuljp8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/94c2ce-9f7b-4ca7-abbc-ca67fd64d34c/1/NGXR2ZBg_AmiaMh5ClGel_YpUHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/94c2ce-9f7b-4ca7-abbc-ca67fd64d34c/1/diI5iTgH6wmEboKXJ9cakuljp8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.241.164.0-77.241.175.255
92.63.112.0/20
185.49.156.0/22
IPv6:
2a01:a360::/32
Signature Algorithm: sha256WithRSAEncryption
08:3b:3b:4e:04:ef:ce:fd:c4:a9:47:8f:cf:1d:1e:ff:72:8c:
b2:b8:97:09:c9:10:be:65:88:ac:f4:6e:71:3a:1f:c7:21:1f:
ae:6e:a2:95:38:3b:d2:09:98:e8:c3:7e:ce:b0:93:d0:d0:9b:
a9:87:e2:2b:cf:c3:30:46:82:b6:16:3c:68:50:ea:ac:0e:5f:
95:cc:ff:f9:a6:4f:9d:f7:16:5b:89:24:73:ae:ae:44:ae:65:
02:d8:81:a3:d5:84:b5:f7:9d:49:eb:4f:ee:26:2a:bc:5c:7d:
63:15:00:d8:30:26:d9:30:89:4b:90:ca:0a:d2:74:c9:c2:c0:
d0:4e:46:97:0a:ba:cb:e4:78:d4:73:7e:50:03:d1:35:ed:e5:
86:27:1d:ad:8f:3c:45:78:46:3c:01:f5:10:4a:75:cf:67:bc:
84:2a:95:93:5b:62:58:9c:c1:36:ab:c5:a2:fb:55:11:d4:72:
74:cb:09:b1:02:d8:39:c7:32:c6:49:16:b5:42:b0:49:3b:31:
92:ac:47:94:d4:64:22:05:66:9a:71:bb:22:52:16:4d:c2:eb:
36:53:b8:9c:9d:39:ce:46:48:b8:d3:61:d3:f1:c8:75:b6:ac:
9f:11:25:61:25:35:83:c2:8d:68:70:70:be:83:01:77:a8:c2:
87:2d:3d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:26 2024 by rpki-client on console-ams.rpki-client.org