Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/7073f1-3a08-4e4a-bedf-58ccf95d282b/1/n01gJej0hPExGm5CxhbRy0ZQbXc.roa
File: n01gJej0hPExGm5CxhbRy0ZQbXc.roa (raw, json)
Hash identifier: YGM6l6S/CNyTfKh3FFSOk1E312ibqRNysj1v0VaXwUo=
Subject key identifier: 9F:4D:60:25:E8:F4:84:F1:31:1A:6E:42:C6:16:D1:CB:46:50:6D:77
Certificate issuer: /CN=35c0a5ba5bc82e20e046fbb54c065806f4c7b6a1
Certificate serial: 0607A137
Authority key identifier: 35:C0:A5:BA:5B:C8:2E:20:E0:46:FB:B5:4C:06:58:06:F4:C7:B6:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NcClulvILiDgRvu1TAZYBvTHtqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/7073f1-3a08-4e4a-bedf-58ccf95d282b/1/n01gJej0hPExGm5CxhbRy0ZQbXc.roa
Signing time: Sat 01 Jan 2022 07:59:13 +0000
ROA not before: Sat 01 Jan 2022 07:59:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206999
IP address blocks: 185.73.64.0/24 maxlen: 24
185.73.67.0/24 maxlen: 24
185.73.66.0/24 maxlen: 24
185.73.65.0/24 maxlen: 24
185.28.88.0/24 maxlen: 24
185.28.91.0/24 maxlen: 24
185.28.90.0/24 maxlen: 24
185.28.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101163319 (0x607a137)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35c0a5ba5bc82e20e046fbb54c065806f4c7b6a1
Validity
Not Before: Jan 1 07:59:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f4d6025e8f484f1311a6e42c616d1cb46506d77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:26:d3:a7:21:58:00:91:bb:3c:68:30:1e:9a:
2e:72:52:ef:f1:ac:44:b9:66:dc:1c:a0:f8:fe:20:
f3:dc:bc:19:54:64:fd:85:f7:b4:c7:1b:87:ea:45:
b0:90:d0:a6:e9:1e:44:76:db:71:ce:e3:4c:b7:5d:
72:fe:07:0f:cf:33:0f:71:8b:f1:ae:43:c5:1c:36:
18:34:76:55:da:31:6e:6c:3c:79:02:e1:13:aa:fe:
23:4c:c3:d4:06:5f:44:42:3b:c5:31:ec:e2:da:fb:
12:d3:b6:e7:4e:09:7b:ac:77:a3:03:f1:b4:34:fa:
65:41:a9:6d:2a:b9:17:e4:e6:10:c8:11:45:87:a8:
a5:83:94:65:7d:70:70:54:18:bd:ea:af:5d:e3:9b:
15:be:ab:26:00:16:b4:27:8e:13:91:c5:f4:0e:3f:
94:6e:ca:83:e6:6f:e5:39:8e:d8:f3:34:15:a9:ae:
db:05:81:7f:46:75:80:11:df:dd:d1:d5:93:99:1d:
e7:56:11:c5:aa:c2:a5:b4:67:51:f4:ea:68:ca:f8:
68:d7:63:d1:80:99:15:60:86:ae:a0:36:a3:da:a4:
f3:02:62:22:31:8e:db:e1:d3:2e:53:8d:bb:6e:51:
c1:c3:6d:47:f0:fc:e3:74:28:39:73:20:54:03:8f:
9f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:4D:60:25:E8:F4:84:F1:31:1A:6E:42:C6:16:D1:CB:46:50:6D:77
X509v3 Authority Key Identifier:
keyid:35:C0:A5:BA:5B:C8:2E:20:E0:46:FB:B5:4C:06:58:06:F4:C7:B6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NcClulvILiDgRvu1TAZYBvTHtqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/7073f1-3a08-4e4a-bedf-58ccf95d282b/1/n01gJej0hPExGm5CxhbRy0ZQbXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/7073f1-3a08-4e4a-bedf-58ccf95d282b/1/NcClulvILiDgRvu1TAZYBvTHtqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.28.88.0/22
185.73.64.0/22
Signature Algorithm: sha256WithRSAEncryption
32:05:f5:08:30:44:e3:73:08:9d:7c:8e:38:9b:b7:d8:ec:76:
56:21:aa:4a:0b:a8:62:4b:9d:5f:94:85:61:e2:14:df:ae:7f:
f7:ac:c4:06:f3:0c:86:4e:cf:b1:65:d7:60:fb:1e:9c:1d:ba:
3a:ce:f0:56:2f:14:8e:27:c9:c4:6d:36:b8:83:34:f8:22:37:
b7:21:51:d0:49:8a:c3:1f:f9:48:6d:91:7f:61:18:24:56:2b:
a8:a9:f6:72:18:b4:6b:66:c5:50:2a:d7:f7:4d:3c:7d:82:6f:
a3:88:a3:11:ef:9c:c7:a2:ad:53:91:8b:ec:89:82:ae:08:f5:
da:9b:82:60:bc:35:a9:21:c2:3c:3f:fe:ae:f2:f6:cb:00:68:
32:aa:70:37:cd:25:62:46:dd:b2:bd:49:4f:ab:71:81:e1:89:
d9:12:56:25:b5:18:78:99:a4:24:bd:c1:f7:be:c1:c2:6f:2b:
c6:e6:f4:f7:3c:71:55:b2:00:7d:ef:9a:84:27:43:1c:04:57:
84:fc:58:07:b0:9b:ee:4b:5e:9f:f2:1c:f7:63:87:26:bd:8c:
fe:0b:8b:84:b3:d0:9c:80:7c:70:22:dd:8f:91:23:ee:11:44:
ef:9d:3f:47:c1:36:dd:42:0b:92:dc:b7:4e:cd:a7:35:f5:94:
68:b9:c0:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:10 2024 by rpki-client on console-ams.rpki-client.org