Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/NdedVMzOZj3IsSPEHFxWwMTfHHU.roa
File: NdedVMzOZj3IsSPEHFxWwMTfHHU.roa (raw, json)
Hash identifier: 1+wKBePOxjJe1a3H62/5aoBxxU6cDy7aRqsgGpNgE/o=
Subject key identifier: 35:D7:9D:54:CC:CE:66:3D:C8:B1:23:C4:1C:5C:56:C0:C4:DF:1C:75
Certificate issuer: /CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Certificate serial: 09E5A8EB
Authority key identifier: 6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/NdedVMzOZj3IsSPEHFxWwMTfHHU.roa
Signing time: Sat 01 Jan 2022 10:03:01 +0000
ROA not before: Sat 01 Jan 2022 10:03:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212988
IP address blocks: 185.219.216.0/24 maxlen: 24
185.219.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166045931 (0x9e5a8eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba3186597742a926cd26504e1ed76f8543fdb26
Validity
Not Before: Jan 1 10:03:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35d79d54ccce663dc8b123c41c5c56c0c4df1c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:92:46:62:62:bd:81:a9:de:c4:84:62:91:86:
ae:ee:a3:4f:23:e1:89:94:49:25:8d:f1:9c:bc:c5:
ae:08:c2:44:e6:6c:d9:93:fd:72:00:a6:88:f6:1a:
c2:db:cb:60:04:bc:13:09:35:bb:72:e3:d2:b9:ba:
a1:19:e1:64:d3:98:28:ae:c3:f2:53:41:b4:d3:e3:
e1:c8:19:9a:5e:77:b3:a7:ef:c7:98:da:5e:6e:64:
c4:c9:10:09:72:15:7b:c5:18:49:c8:bf:dc:b9:29:
95:b6:09:73:1f:57:6c:6b:2f:c2:fa:c7:8c:b9:a2:
f4:ef:00:f0:97:60:39:22:aa:1c:23:93:d2:46:89:
e9:55:7b:ca:41:d3:62:64:9b:51:9b:74:37:9e:8f:
40:ae:c5:bf:f2:98:8d:f7:32:2f:fc:5b:5e:4d:49:
d3:45:cf:ee:71:0f:10:1e:ee:64:41:a3:cd:1c:20:
64:1c:00:02:61:73:c2:15:54:e2:a4:89:9c:72:21:
b9:9f:b8:08:46:86:d5:f1:55:56:27:e0:9a:60:3c:
49:8f:8b:60:4e:55:57:f1:d5:c4:23:63:df:09:01:
4e:0e:ef:7b:b7:e9:88:e0:a2:80:3a:5f:76:2a:4b:
b6:e8:11:1f:90:e1:91:62:d3:00:4d:80:2f:e2:0d:
a9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:D7:9D:54:CC:CE:66:3D:C8:B1:23:C4:1C:5C:56:C0:C4:DF:1C:75
X509v3 Authority Key Identifier:
keyid:6B:A3:18:65:97:74:2A:92:6C:D2:65:04:E1:ED:76:F8:54:3F:DB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6MYZZd0KpJs0mUE4e12-FQ_2yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/NdedVMzOZj3IsSPEHFxWwMTfHHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9d5910-9f5e-446c-8d3c-bc007f2dac24/1/a6MYZZd0KpJs0mUE4e12-FQ_2yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.216.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:44:3b:c3:5a:59:39:6b:e6:0b:51:75:1e:e8:98:ec:a4:77:
82:c2:77:da:cf:12:c2:05:a9:b0:11:b2:4b:0a:54:b1:a1:48:
f8:99:a8:1e:5e:e9:fe:dd:2e:6b:11:6f:92:22:cc:4f:22:2c:
cd:b4:73:94:53:5e:2f:50:5d:98:41:25:4a:e8:d4:40:ad:3c:
ca:46:b5:8f:98:5f:36:d2:fb:1f:a1:4e:a4:fe:f8:f0:b0:31:
6a:17:8c:78:ed:7d:90:38:67:cc:1a:02:75:17:09:4f:67:d4:
6d:d9:7a:c8:df:94:36:cf:57:bb:4d:f4:0e:cc:dd:ea:a3:f6:
be:78:06:e2:d3:62:3c:8c:6c:0d:c8:ab:b6:57:99:52:5c:32:
f9:42:46:e1:7f:63:02:f5:e8:e1:c2:dc:6f:6e:a4:08:fe:52:
10:95:f3:b5:2d:33:9e:69:52:6b:05:e0:1e:04:6c:da:72:ac:
1e:94:db:5f:f6:5e:26:68:39:18:fb:60:ac:1f:df:7d:08:60:
37:70:c3:76:07:46:a9:e6:8a:b6:46:18:bf:38:d5:aa:e3:17:
a0:45:6f:41:4d:e9:d8:68:f0:8a:87:95:ed:a7:4a:d0:1c:88:
dc:87:19:88:dd:d5:80:c8:5a:f7:a8:a4:d9:10:3a:2e:c6:de:
81:91:83:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:38 2024 by rpki-client on console-fra.rpki-client.org