Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ee4748-4eab-4e55-b64a-2c7a11c1fbaf/1/NnXHRGoX08rWZuJ2vd8ioqanhr8.roa
File: NnXHRGoX08rWZuJ2vd8ioqanhr8.roa (raw, json)
Hash identifier: cTcN6zlC2ZlZiQV67aTlU/MjDgw0U9D0oq7jSfCDmXk=
Subject key identifier: 36:75:C7:44:6A:17:D3:CA:D6:66:E2:76:BD:DF:22:A2:A6:A7:86:BF
Certificate issuer: /CN=95d61ae8472c5c8fcd813756c164c2f1864d3c90
Certificate serial: 1423B8B3
Authority key identifier: 95:D6:1A:E8:47:2C:5C:8F:CD:81:37:56:C1:64:C2:F1:86:4D:3C:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ldYa6EcsXI_NgTdWwWTC8YZNPJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ee4748-4eab-4e55-b64a-2c7a11c1fbaf/1/NnXHRGoX08rWZuJ2vd8ioqanhr8.roa
Signing time: Sat 01 Jan 2022 12:57:16 +0000
ROA not before: Sat 01 Jan 2022 12:57:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200423
IP address blocks: 185.107.220.0/22 maxlen: 24
2a06:4600::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337885363 (0x1423b8b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95d61ae8472c5c8fcd813756c164c2f1864d3c90
Validity
Not Before: Jan 1 12:57:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3675c7446a17d3cad666e276bddf22a2a6a786bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d9:a9:de:ec:b0:62:5a:1f:65:7c:19:49:de:
dd:c0:ac:73:06:e2:14:8e:11:59:74:f3:96:f4:68:
d3:97:e7:f6:1e:cd:e7:cf:5c:1b:8b:37:8e:9a:68:
44:d5:75:2e:2f:7b:63:84:8f:0a:c7:47:33:e8:cf:
75:71:96:1e:3c:fb:1d:4b:17:fc:dd:0d:90:2a:41:
83:1e:07:1f:38:ba:0d:55:28:f6:71:8d:c5:8e:6e:
bb:7f:e2:64:b7:33:23:17:2b:8d:2a:87:84:01:6d:
9e:46:04:ed:23:05:a1:69:db:d5:37:22:fc:30:23:
fc:b7:31:d5:c3:43:67:4c:9d:74:fc:45:00:53:3c:
38:39:51:7c:34:fc:2b:08:db:b7:2c:8f:57:8a:72:
c3:d1:24:e3:fa:1d:4f:9e:66:c3:95:36:e9:1f:f1:
28:2b:df:05:e0:ff:f1:ba:ed:98:44:9a:f0:bf:7e:
ec:96:d6:34:2a:b2:8b:48:16:32:8d:dd:d1:76:a3:
9a:bb:46:48:d3:3b:f7:8f:c3:c5:9a:f4:3f:25:b4:
fe:77:3d:12:99:dc:d8:76:81:76:26:00:40:f0:34:
3e:13:6a:0c:25:70:29:88:39:fc:06:9b:0c:74:5e:
47:91:38:d4:0e:38:f4:8f:95:1c:94:bf:60:9a:0f:
d3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:75:C7:44:6A:17:D3:CA:D6:66:E2:76:BD:DF:22:A2:A6:A7:86:BF
X509v3 Authority Key Identifier:
keyid:95:D6:1A:E8:47:2C:5C:8F:CD:81:37:56:C1:64:C2:F1:86:4D:3C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ldYa6EcsXI_NgTdWwWTC8YZNPJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ee4748-4eab-4e55-b64a-2c7a11c1fbaf/1/NnXHRGoX08rWZuJ2vd8ioqanhr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ee4748-4eab-4e55-b64a-2c7a11c1fbaf/1/ldYa6EcsXI_NgTdWwWTC8YZNPJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.220.0/22
IPv6:
2a06:4600::/29
Signature Algorithm: sha256WithRSAEncryption
0e:d7:e0:df:22:00:ae:16:d5:f7:e0:51:16:df:f9:76:31:80:
3c:71:f0:6b:56:fc:e6:56:60:b5:8e:66:1b:b7:5f:b4:e2:32:
96:38:16:bf:44:13:bc:9a:7e:b5:27:b1:d7:69:cb:d6:a4:46:
ce:79:8d:b2:f4:23:2d:40:d3:c4:3f:2b:9e:98:44:01:7e:01:
0f:b5:a2:3a:74:69:03:c0:63:92:83:da:5b:16:32:d1:ae:5b:
26:14:f6:a7:c5:4e:5d:47:1d:86:56:b6:af:91:e4:86:46:a3:
59:70:47:03:c1:f4:1f:47:4f:1a:08:2c:a5:80:fb:24:cd:3f:
12:ee:b5:b1:e5:02:84:50:1b:f4:bf:27:87:f3:ad:8f:a8:12:
b2:0c:f3:dc:40:1f:28:21:b0:8a:f8:30:5a:34:32:0d:e7:e9:
7f:41:ca:54:0b:68:ae:da:f5:67:31:94:d4:8b:db:fb:60:41:
a3:d5:89:85:3b:ab:9d:a2:bd:74:71:64:3d:64:14:d1:26:ae:
77:d6:ea:66:fd:55:fe:4e:16:1b:47:38:27:f0:3e:9e:d9:47:
a4:21:a6:58:91:9f:e1:e0:33:34:9b:78:f2:bc:80:9a:11:b6:
78:cb:85:de:a5:5d:3f:48:5f:42:66:19:c2:79:7b:3d:07:01:
a6:8a:90:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:43 2024 by rpki-client on console-ams.rpki-client.org