Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/NtNkZhczdzVBffpUvrSy5TJ2Bj0.roa
File: NtNkZhczdzVBffpUvrSy5TJ2Bj0.roa (raw, json)
Hash identifier: HPHWNF6E0eqHtaRU9IV1G5uG7yRxE0eN0eARH8csaps=
Subject key identifier: 36:D3:64:66:17:33:77:35:41:7D:FA:54:BE:B4:B2:E5:32:76:06:3D
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 0CA00BA6
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/NtNkZhczdzVBffpUvrSy5TJ2Bj0.roa
Signing time: Tue 31 May 2022 15:20:13 +0000
ROA not before: Tue 31 May 2022 15:20:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207540
IP address blocks: 185.216.138.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211815334 (0xca00ba6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: May 31 15:20:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36d3646617337735417dfa54beb4b2e53276063d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ef:4c:e5:35:d7:31:ba:6b:ff:d8:39:4c:d6:
ee:23:30:63:4b:60:56:8f:7a:83:7e:3a:e3:71:c9:
57:db:7a:15:62:66:6a:24:9c:c1:49:80:6c:f6:ab:
b7:f4:e5:29:00:45:1b:bc:6c:99:31:6d:7f:e4:d8:
23:a0:00:23:2e:f6:c8:3e:9c:cc:e2:6b:c4:c3:6e:
76:a4:c5:53:ac:8b:b9:32:85:0d:fd:ca:c1:76:46:
8d:5f:c6:0e:5d:50:d9:78:8e:41:1e:87:5c:c1:38:
1e:81:3d:58:b9:98:d8:43:7f:da:0d:99:53:50:14:
18:34:3a:54:a4:4e:64:72:d1:bb:f6:77:b1:34:77:
91:a2:40:c6:88:b6:78:ad:19:3f:c4:88:34:41:9e:
45:c0:38:5a:b0:a0:25:b8:6e:54:40:fb:6a:6e:f9:
a7:67:1d:fd:73:28:7c:fc:c9:3e:38:4e:4d:14:48:
f4:67:59:93:c2:f0:3b:b5:66:7e:27:f0:f2:2c:77:
e2:93:67:a2:82:78:e2:88:b4:bd:0e:2b:f7:a7:7d:
fd:0d:ae:37:25:d2:fd:99:36:47:70:d0:a0:55:4c:
d2:e3:36:01:06:9b:e2:fe:2b:ac:d9:41:8c:b1:f3:
9a:93:35:1f:0f:31:d9:77:c8:55:56:db:03:68:bf:
ea:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D3:64:66:17:33:77:35:41:7D:FA:54:BE:B4:B2:E5:32:76:06:3D
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/NtNkZhczdzVBffpUvrSy5TJ2Bj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.138.0/23
Signature Algorithm: sha256WithRSAEncryption
28:9f:ff:6b:45:11:90:b7:ef:0f:09:b6:41:10:99:b0:06:f1:
a7:3e:56:4d:2c:d8:1e:99:75:42:e7:3d:33:86:12:fb:d0:e8:
85:2f:66:1b:45:33:5b:93:44:4f:87:c9:66:28:54:8a:63:59:
73:90:6e:88:76:74:81:48:d8:0a:46:41:5b:3c:0f:8c:be:61:
7f:b8:86:87:22:4a:5a:09:d3:fe:eb:db:0e:1b:f1:30:1b:d4:
8d:c0:9f:e5:2f:6d:95:58:22:b3:1a:6f:db:75:58:bb:bb:82:
7b:d5:af:52:fc:d9:ae:80:23:74:1c:30:bb:29:b3:35:11:c2:
60:86:1f:f1:bf:17:df:fd:e3:53:ed:a7:87:b0:cf:9a:8a:50:
dd:b3:57:f6:f6:cd:0d:0a:47:71:72:60:3d:47:81:e8:ed:4f:
af:87:ab:74:d1:44:26:8a:bc:4b:af:8c:55:35:11:b4:8b:35:
84:64:5f:c3:e7:d2:70:ee:31:bd:c4:43:bb:ca:bd:8a:58:2e:
51:94:92:a3:a3:0d:05:18:4a:ae:8b:1a:57:b5:57:e8:14:e3:
a4:b6:ed:07:29:0a:1d:4c:e4:d8:1c:a5:55:02:78:77:63:52:
0f:2f:0f:69:ab:e9:db:35:4c:65:5e:80:2c:27:e6:8a:9c:03:
a7:a6:79:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:16 2024 by rpki-client on console-ams.rpki-client.org