Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/d4835b-7323-4671-ad59-7fb05920e228/1/Nb2Co2gYRrygaAUng2OWV-kYwE8.roa
File: Nb2Co2gYRrygaAUng2OWV-kYwE8.roa (raw, json)
Hash identifier: Fs5lOqLiaC2fm4CMLk+oyy6tqsfaGTtBIz7sG86bPYU=
Subject key identifier: 35:BD:82:A3:68:18:46:BC:A0:68:05:27:83:63:96:57:E9:18:C0:4F
Certificate issuer: /CN=7482b017717ca83a05e4cbc3f266f12a5359d5e5
Certificate serial: 138F2F82
Authority key identifier: 74:82:B0:17:71:7C:A8:3A:05:E4:CB:C3:F2:66:F1:2A:53:59:D5:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dIKwF3F8qDoF5MvD8mbxKlNZ1eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/d4835b-7323-4671-ad59-7fb05920e228/1/Nb2Co2gYRrygaAUng2OWV-kYwE8.roa
Signing time: Sat 01 Jan 2022 14:57:47 +0000
ROA not before: Sat 01 Jan 2022 14:57:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 192.44.66.0/24 maxlen: 24
134.246.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 328150914 (0x138f2f82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7482b017717ca83a05e4cbc3f266f12a5359d5e5
Validity
Not Before: Jan 1 14:57:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35bd82a3681846bca068052783639657e918c04f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b2:c8:9c:d0:78:f7:e0:ad:d8:03:37:a2:8b:
1b:c8:99:3e:58:38:b3:99:b7:59:fd:dd:e2:87:55:
17:75:0f:3c:f6:e3:5a:cb:15:54:38:87:41:21:6f:
d7:e5:3d:d1:a6:be:90:8e:6e:47:f7:3a:33:13:de:
8f:e1:88:de:35:1b:fa:62:4b:03:0b:78:11:8e:69:
c2:4a:e3:df:44:4a:e7:f4:7e:24:b5:62:10:8e:8b:
28:9a:0a:9f:2b:42:ea:2f:1a:41:46:3d:48:f3:ce:
be:de:2e:15:6b:a8:19:a6:ad:6c:90:94:b0:87:3e:
76:7a:00:46:1e:e9:9d:38:39:68:a6:ba:77:02:ce:
3e:32:13:a0:a8:3f:d3:27:31:66:a6:2f:03:06:b3:
be:a8:ad:56:dd:c5:fc:01:b6:4b:54:37:bd:05:95:
a7:e4:b3:b0:c7:ce:9e:91:af:8a:61:61:96:c3:37:
67:20:18:29:3b:3d:0c:27:5b:62:28:9f:da:64:f1:
dd:f4:03:74:27:ef:de:6a:0b:e9:4a:74:0b:8d:35:
d6:c5:7e:8d:35:9e:33:75:43:af:89:db:2f:d3:4e:
bf:38:d4:f0:fe:6e:14:5d:f5:56:22:02:bd:13:66:
ac:ba:67:95:5f:cc:32:3a:98:25:9b:c1:0e:a0:58:
b7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:BD:82:A3:68:18:46:BC:A0:68:05:27:83:63:96:57:E9:18:C0:4F
X509v3 Authority Key Identifier:
keyid:74:82:B0:17:71:7C:A8:3A:05:E4:CB:C3:F2:66:F1:2A:53:59:D5:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dIKwF3F8qDoF5MvD8mbxKlNZ1eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/d4835b-7323-4671-ad59-7fb05920e228/1/Nb2Co2gYRrygaAUng2OWV-kYwE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/d4835b-7323-4671-ad59-7fb05920e228/1/dIKwF3F8qDoF5MvD8mbxKlNZ1eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.246.0.0/16
192.44.66.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:22:ef:ed:97:98:a1:fb:e8:2c:83:f6:a0:6f:44:d3:b8:31:
7f:17:e3:ab:93:d0:db:1c:90:4b:3a:a6:58:52:c4:b9:57:41:
67:1c:a9:54:22:a5:af:b0:b9:e7:f3:0d:89:01:af:ca:09:c0:
cb:fc:95:40:eb:26:26:a9:c8:4c:f1:62:cf:30:78:90:61:8c:
ea:38:2c:2d:b5:28:c7:4f:ad:8e:0c:25:22:5a:d7:88:85:d8:
d2:c4:d3:3b:57:76:e0:ae:b2:5e:81:05:bd:0c:c0:c6:af:d4:
d8:6f:ce:10:2d:34:ad:63:bf:3e:75:1d:88:14:99:65:4c:3f:
8d:dc:4c:db:8e:11:e9:53:5c:cd:4b:c8:67:f8:e6:95:0a:33:
87:9b:f7:96:09:50:b0:e9:00:eb:ea:32:31:5a:ae:83:28:80:
3a:3f:fe:b3:c5:56:99:3a:8c:bb:86:e2:9c:b8:fb:b7:74:13:
71:bc:bf:48:02:f8:58:cb:4e:29:e8:50:b4:06:6e:cc:3b:77:
f7:7e:3b:64:64:5a:40:44:86:5f:50:98:b2:fe:dd:41:d3:7c:
4f:c3:e0:74:86:ff:ff:60:5e:10:ce:12:8b:06:c1:a1:a1:f2:
0d:d8:8b:52:97:1a:32:28:12:f4:73:17:44:95:c0:5a:1d:b1:
ca:b3:83:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:56 2024 by rpki-client on console-fra.rpki-client.org