Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/dc9309-ca08-418e-b518-1aa0166e37e4/1/nHBl_K-D41I1wAUMZrfbwxfSmlk.roa
File: nHBl_K-D41I1wAUMZrfbwxfSmlk.roa (raw, json)
Hash identifier: 6jKnlkTDdS9XYPxl30oV9LL10K9PKYGLXpavgoEID+U=
Subject key identifier: 9C:70:65:FC:AF:83:E3:52:35:C0:05:0C:66:B7:DB:C3:17:D2:9A:59
Certificate issuer: /CN=8b34f0f9275d980662afbb6cafffe4db9c9c9d47
Certificate serial: 0184BE3D520D8D37CF6FCF8FAF6084778D45
Authority key identifier: 8B:34:F0:F9:27:5D:98:06:62:AF:BB:6C:AF:FF:E4:DB:9C:9C:9D:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izTw-SddmAZir7tsr__k25ycnUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/dc9309-ca08-418e-b518-1aa0166e37e4/1/nHBl_K-D41I1wAUMZrfbwxfSmlk.roa
Signing time: Mon 28 Nov 2022 12:36:40 +0000
ROA not before: Mon 28 Nov 2022 12:36:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206758
IP address blocks: 185.150.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:3d:52:0d:8d:37:cf:6f:cf:8f:af:60:84:77:8d:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b34f0f9275d980662afbb6cafffe4db9c9c9d47
Validity
Not Before: Nov 28 12:36:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c7065fcaf83e35235c0050c66b7dbc317d29a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a7:44:f7:33:f7:cf:54:62:b8:bf:8d:a8:70:
bb:2f:29:80:8e:86:ad:6c:7e:88:fd:5b:c9:22:b5:
3f:85:93:15:44:eb:d6:d4:ae:41:5b:4d:96:66:93:
ad:07:fe:50:d7:0d:93:e1:bc:31:72:70:95:f7:f5:
d9:75:40:ce:61:3f:05:61:64:d0:7d:59:aa:d2:8f:
e4:9f:4d:d5:64:4a:0c:70:9f:8d:79:dd:99:ed:65:
64:91:10:01:cc:4d:1b:69:15:0c:2b:83:95:d0:a9:
ba:b2:0e:0c:bd:6d:76:52:33:e4:5d:40:a6:13:d8:
d8:16:93:80:01:e8:50:43:a9:22:79:7b:2d:21:ae:
78:9e:78:60:fc:af:7e:4e:2a:8e:21:f1:1d:c7:f2:
65:5e:69:47:e1:34:1d:17:ff:15:7e:79:24:93:78:
28:32:3c:d9:92:85:0f:44:31:3c:a4:45:7b:92:f8:
85:77:03:c6:4e:54:42:7d:88:4d:b3:9e:4a:d7:73:
25:95:44:0f:c5:7b:b1:23:fb:fe:6b:3d:ec:db:e4:
6a:4e:06:2c:02:eb:38:8a:df:2e:5e:64:37:da:17:
7e:19:4e:26:bf:b4:f1:10:e0:0f:e1:a3:95:b8:33:
7e:22:75:31:6d:7a:0d:f2:f8:cb:0b:2f:e6:fb:c0:
c8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:70:65:FC:AF:83:E3:52:35:C0:05:0C:66:B7:DB:C3:17:D2:9A:59
X509v3 Authority Key Identifier:
keyid:8B:34:F0:F9:27:5D:98:06:62:AF:BB:6C:AF:FF:E4:DB:9C:9C:9D:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izTw-SddmAZir7tsr__k25ycnUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/dc9309-ca08-418e-b518-1aa0166e37e4/1/nHBl_K-D41I1wAUMZrfbwxfSmlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/dc9309-ca08-418e-b518-1aa0166e37e4/1/izTw-SddmAZir7tsr__k25ycnUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.236.0/22
Signature Algorithm: sha256WithRSAEncryption
91:46:43:5c:07:8b:e2:23:87:f0:00:e5:cc:76:4f:66:8f:80:
3f:60:78:1a:9e:db:ad:aa:0d:5d:6f:a1:bb:63:b7:5c:c3:6b:
aa:5f:2f:ae:67:6e:7e:20:f1:43:1b:e8:a4:63:e3:de:d2:34:
04:21:5a:67:b9:69:60:53:4d:7c:eb:86:b7:be:fc:a2:10:0a:
6d:c7:6c:0b:f8:fb:14:bb:16:d8:18:82:80:d4:17:b3:6e:3d:
d2:35:02:f8:bb:7c:01:6c:f6:55:cc:d4:cc:95:d2:73:46:b2:
cb:90:32:0c:f6:d4:da:5e:12:19:f7:c4:b6:22:56:30:eb:aa:
bc:e8:28:d5:0c:da:04:63:6b:85:4a:86:24:3a:9b:d2:1b:dc:
bb:eb:75:ed:e9:d8:59:a7:19:5b:b7:c0:bc:c1:be:40:0e:4f:
d4:01:f8:be:24:97:6c:d5:e7:83:b9:fe:8a:e6:33:b2:e4:e3:
a1:d2:c1:d9:ab:31:de:20:6c:6b:28:27:76:89:30:64:2c:6b:
9c:fb:e3:89:7e:b8:c8:c4:60:a9:39:d1:5c:82:31:85:9d:83:
2b:37:4d:f2:9f:d3:25:d2:06:9b:b0:05:6f:38:90:06:03:ed:
8d:3f:0a:6f:18:09:8b:7b:15:a6:6f:7a:5a:70:ad:fe:41:ab:
3f:69:98:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:04 2024 by rpki-client on console-fra.rpki-client.org