Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/NkWh7hPy9efE7m1e4JodjMxu9GE.roa
File: NkWh7hPy9efE7m1e4JodjMxu9GE.roa (raw, json)
Hash identifier: cjc4tckIxre4G7rVEiGwYK6cWBV2dkYoZ9gdcnakIqE=
Subject key identifier: 36:45:A1:EE:13:F2:F5:E7:C4:EE:6D:5E:E0:9A:1D:8C:CC:6E:F4:61
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 03F8F98F
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/NkWh7hPy9efE7m1e4JodjMxu9GE.roa
Signing time: Wed 01 Jun 2022 16:02:20 +0000
ROA not before: Wed 01 Jun 2022 16:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20048
IP address blocks: 185.119.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66648463 (0x3f8f98f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jun 1 16:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3645a1ee13f2f5e7c4ee6d5ee09a1d8ccc6ef461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b2:5d:51:dd:7f:50:18:d6:dc:1f:2e:58:44:
eb:6b:d9:f7:11:80:f4:a3:7c:c6:35:f6:5a:ee:85:
81:f9:96:17:ce:5f:d9:3d:3c:22:bb:4a:0d:b7:1e:
1c:97:28:f7:7a:b6:dd:f5:da:cc:d6:de:14:53:57:
29:27:20:e4:a1:ea:b5:5a:f6:2c:32:5a:6b:58:e4:
7a:2a:5e:69:0d:db:c8:49:33:d0:be:55:82:96:ed:
5d:d3:0a:9b:a1:7e:da:e9:b4:f6:d8:b5:c9:4f:88:
40:b8:13:98:eb:2a:62:08:75:65:81:3b:d1:6d:de:
27:a7:19:4b:6c:0e:cc:55:39:8f:6f:66:34:d1:ea:
8f:5b:d2:5c:ba:b8:46:20:34:95:73:ee:d8:71:82:
0b:32:a9:df:4e:8a:e7:70:24:ac:2b:f7:33:39:36:
80:c4:21:a2:a8:5e:a2:d4:46:27:00:27:55:3c:30:
c3:63:43:22:9c:42:10:6f:5e:5e:51:39:63:ff:e5:
1a:2c:5a:dc:c6:d4:dc:24:0e:0d:fb:ac:f4:b2:5f:
13:cf:fd:05:15:19:61:9b:0d:f3:1a:21:d1:de:b2:
e7:cb:45:95:24:6f:49:6f:08:1e:d1:44:83:b2:9f:
83:af:46:80:a7:df:8b:cf:f3:da:88:9d:da:95:93:
37:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:45:A1:EE:13:F2:F5:E7:C4:EE:6D:5E:E0:9A:1D:8C:CC:6E:F4:61
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/NkWh7hPy9efE7m1e4JodjMxu9GE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.236.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:9f:b2:a5:9d:15:87:9a:9d:6f:74:d7:de:23:8d:bf:40:a9:
22:d1:d7:01:b4:50:a1:ee:1c:19:e7:48:09:f3:99:c1:96:be:
ea:b0:38:0b:4f:eb:48:69:26:ce:9d:59:1a:0c:9f:a3:6c:44:
04:e1:6e:85:6c:10:b1:9e:a6:7a:ed:a2:90:dc:fb:b9:f9:09:
bd:89:63:c2:5f:e7:7f:89:40:05:7c:1b:81:30:9b:2f:a0:ff:
2d:3a:c6:53:9b:11:bd:24:54:cc:6a:70:38:3b:ac:d9:aa:bd:
93:f8:8e:34:93:ef:ed:15:24:bb:b8:65:97:ff:78:4d:6b:3e:
ab:f5:88:27:99:19:19:db:16:05:44:dd:49:3a:94:53:97:a8:
71:e0:6f:a7:ff:26:a8:8b:d7:44:c1:57:b7:15:41:0e:ae:c8:
6d:9a:79:7c:60:18:44:bb:67:7e:ec:31:fc:55:a3:9a:7a:40:
99:11:d1:a5:fc:2f:35:b5:5f:29:a4:04:3c:2d:7b:2b:20:ba:
34:11:c8:61:56:0f:42:34:71:6d:09:c6:cc:d5:89:db:4a:c6:
56:31:82:6a:a4:75:16:1a:98:35:d7:11:2e:bb:32:1a:dd:c1:
d2:3c:85:6b:a8:13:db:a6:b2:31:fd:0c:0e:8d:df:50:c8:9f:
e9:78:0b:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org