Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a63d-1730-4d88-ab38-3fd30988f677/1/nTyGogK5hTDBTHg4lJAESpb0-0E.roa
File: nTyGogK5hTDBTHg4lJAESpb0-0E.roa (raw, json)
Hash identifier: PgW1h8t7Vg7LEYmC9Dnwkija6Bk4btZLH0lYjNcJV5E=
Subject key identifier: 9D:3C:86:A2:02:B9:85:30:C1:4C:78:38:94:90:04:4A:96:F4:FB:41
Certificate issuer: /CN=19f1a9dd126f37237ce200fb8616ff937bca966c
Certificate serial: 19E6E4BD
Authority key identifier: 19:F1:A9:DD:12:6F:37:23:7C:E2:00:FB:86:16:FF:93:7B:CA:96:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GfGp3RJvNyN84gD7hhb_k3vKlmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a63d-1730-4d88-ab38-3fd30988f677/1/nTyGogK5hTDBTHg4lJAESpb0-0E.roa
Signing time: Sat 01 Jan 2022 05:01:55 +0000
ROA not before: Sat 01 Jan 2022 05:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49467
IP address blocks: 85.95.224.0/24 maxlen: 24
85.95.225.0/24 maxlen: 24
85.95.226.0/24 maxlen: 24
85.95.227.0/24 maxlen: 24
85.95.230.0/24 maxlen: 24
85.95.231.0/24 maxlen: 24
85.95.228.0/24 maxlen: 24
85.95.229.0/24 maxlen: 24
85.95.232.0/24 maxlen: 24
85.95.233.0/24 maxlen: 24
85.95.234.0/24 maxlen: 24
85.95.235.0/24 maxlen: 24
85.95.236.0/24 maxlen: 24
85.95.245.0/24 maxlen: 24
85.95.246.0/24 maxlen: 24
85.95.251.0/24 maxlen: 24
85.95.252.0/24 maxlen: 24
85.95.249.0/24 maxlen: 24
85.95.250.0/24 maxlen: 24
85.95.253.0/24 maxlen: 24
85.95.248.0/24 maxlen: 24
85.95.247.0/24 maxlen: 24
85.95.254.0/24 maxlen: 24
92.42.32.0/24 maxlen: 24
92.42.33.0/24 maxlen: 24
92.42.36.0/24 maxlen: 24
92.42.37.0/24 maxlen: 24
92.42.34.0/24 maxlen: 24
92.42.35.0/24 maxlen: 24
92.42.38.0/24 maxlen: 24
92.42.39.0/24 maxlen: 24
37.152.72.0/24 maxlen: 24
37.152.75.0/24 maxlen: 24
37.152.76.0/24 maxlen: 24
37.152.73.0/24 maxlen: 24
37.152.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434562237 (0x19e6e4bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19f1a9dd126f37237ce200fb8616ff937bca966c
Validity
Not Before: Jan 1 05:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d3c86a202b98530c14c78389490044a96f4fb41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4c:32:a6:1e:50:6b:d1:26:9a:41:30:7a:3e:
79:f7:d8:48:50:17:57:a0:0c:ef:fd:41:3f:a5:4b:
3f:98:34:1f:7d:d8:96:be:e4:a1:74:d7:19:85:b7:
6a:87:30:a6:9e:ef:c5:a2:b7:d3:5b:54:39:b3:21:
4b:7c:53:f1:10:70:81:25:d5:fe:89:10:fa:dc:68:
c6:20:52:4b:68:8b:80:f7:fc:26:b1:da:9a:0e:cf:
71:70:91:8b:d6:2c:98:ae:e2:97:a9:c6:18:af:88:
4c:f0:d1:61:fe:b3:00:49:72:a4:6a:8d:a8:ea:7f:
cd:4a:be:08:89:dd:0b:e0:6f:59:ca:bd:53:51:37:
22:22:3f:18:0a:c3:b7:e6:3c:48:61:23:d0:41:1d:
ef:6d:f4:ac:04:4f:99:03:b4:91:41:78:ee:c7:5f:
75:a4:18:89:98:3e:2b:3d:eb:28:81:98:a6:61:c8:
ce:c8:f9:13:2d:b1:b8:f3:5c:86:0b:47:34:60:09:
97:05:60:ad:ec:a4:1a:fe:04:8b:26:13:d3:f1:59:
5a:1d:ee:9f:44:a5:00:b0:ca:40:82:d8:5f:8f:8f:
63:94:78:15:b3:5a:ae:82:ed:a8:7d:6b:0d:a7:5a:
34:4c:1a:ed:c9:9f:62:1f:04:39:7a:d2:0e:2a:ed:
c8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:3C:86:A2:02:B9:85:30:C1:4C:78:38:94:90:04:4A:96:F4:FB:41
X509v3 Authority Key Identifier:
keyid:19:F1:A9:DD:12:6F:37:23:7C:E2:00:FB:86:16:FF:93:7B:CA:96:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GfGp3RJvNyN84gD7hhb_k3vKlmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a63d-1730-4d88-ab38-3fd30988f677/1/nTyGogK5hTDBTHg4lJAESpb0-0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a63d-1730-4d88-ab38-3fd30988f677/1/GfGp3RJvNyN84gD7hhb_k3vKlmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.152.72.0-37.152.76.255
85.95.224.0-85.95.236.255
85.95.245.0-85.95.254.255
92.42.32.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:86:67:31:a5:2f:db:83:d6:e5:40:ca:69:f8:89:10:8d:fa:
76:9b:ba:63:da:c1:51:9d:63:da:8e:d0:76:f4:a5:8f:d5:91:
a4:5c:bb:2c:da:07:32:49:0c:04:0d:1b:39:45:5f:ed:6e:1d:
03:ff:d1:bb:6e:78:16:28:4c:b2:d0:7e:24:66:4d:17:f0:be:
17:70:f3:0e:70:70:dd:42:f8:08:34:32:84:89:18:b7:82:6e:
32:42:a5:70:1b:c4:96:a9:3a:72:d0:8a:1e:8e:1d:b3:62:16:
15:2b:e9:7f:58:90:32:cc:ce:86:c8:2e:aa:0c:78:c7:a5:1e:
4d:0d:00:05:ee:42:d8:35:63:aa:5c:ac:f6:bf:7e:76:47:f5:
9f:bd:de:28:56:0b:29:2c:58:54:ee:fc:8c:00:66:7c:fd:74:
38:2b:8f:78:9f:96:e2:62:22:26:d1:e9:4b:1b:41:e8:a7:e2:
e3:3d:12:fe:1b:4f:09:42:35:d2:36:96:d4:ab:6b:96:eb:41:
f4:90:45:d9:5f:f3:a8:49:f8:ec:01:e4:c0:ac:01:10:fa:25:
ff:c8:48:0d:bf:8c:c7:e8:2e:88:d5:71:8c:c0:2e:29:d5:af:
5e:d9:62:4c:90:f5:29:13:bd:2a:2a:94:af:ed:41:91:4c:c1:
a5:26:28:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:21 2023 by rpki-client on console-ams.rpki-client.org