Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/NjaGjmIMCI8Zje_HDGlfmMwrrVI.roa
File: NjaGjmIMCI8Zje_HDGlfmMwrrVI.roa (raw, json)
Hash identifier: oLKPuOV79RrjXmEMgdWWQC5ZS16utpC0lkMe3Bvw9TI=
Subject key identifier: 36:36:86:8E:62:0C:08:8F:19:8D:EF:C7:0C:69:5F:98:CC:2B:AD:52
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 035AD0C0
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/NjaGjmIMCI8Zje_HDGlfmMwrrVI.roa
Signing time: Sun 05 Jun 2022 12:05:20 +0000
ROA not before: Sun 05 Jun 2022 12:05:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 185.228.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56283328 (0x35ad0c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: Jun 5 12:05:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3636868e620c088f198defc70c695f98cc2bad52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4e:1e:db:ec:56:e5:99:2f:06:43:e3:21:c3:
27:96:f0:f3:0f:1d:b4:6f:95:23:03:3b:41:fa:04:
d2:7d:ae:77:b8:6e:31:a8:16:28:e2:2b:96:24:fb:
e1:47:0a:dd:3c:cb:69:df:ba:0c:28:cf:6f:e0:27:
46:b0:d0:be:52:f5:d3:30:fe:26:49:d6:db:0f:4e:
30:dc:05:a0:05:cf:88:a3:43:db:99:9b:50:a9:7e:
6a:8d:2c:40:7b:f1:0f:8b:88:c4:ce:f6:67:35:b7:
40:cb:94:22:a6:d9:9c:73:a6:2d:cf:53:ef:86:c9:
6e:36:a3:8c:61:9d:e3:19:50:d8:ed:51:4a:e9:a4:
04:2d:5f:35:56:41:03:d3:a4:7c:8b:6c:51:c0:d7:
28:51:9e:44:dd:97:8e:cd:56:e3:af:c7:c6:ba:69:
36:d3:44:df:b9:9c:18:25:9b:85:41:0a:05:12:00:
d4:6f:41:48:29:78:c4:59:20:21:11:93:b8:7a:6c:
e2:be:22:3e:68:a1:fc:3c:8c:2a:9d:ba:6a:57:0c:
bc:46:0e:93:c1:38:1f:99:7f:6d:5b:71:3c:a7:f8:
fd:16:e5:40:0d:60:7b:cd:0f:07:5e:f1:9b:c1:1b:
9b:c1:e5:09:2f:8c:0b:68:c1:ff:76:c8:0c:0c:8b:
bf:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:36:86:8E:62:0C:08:8F:19:8D:EF:C7:0C:69:5F:98:CC:2B:AD:52
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/NjaGjmIMCI8Zje_HDGlfmMwrrVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.3.0/24
Signature Algorithm: sha256WithRSAEncryption
15:cf:d8:39:7b:e5:47:a7:7a:3e:ac:0e:fc:67:5d:c1:07:01:
01:e6:ca:8d:dd:1a:22:51:30:d8:5d:88:61:2a:7f:ff:f5:39:
58:61:af:ee:95:cf:f8:4f:db:c1:3a:62:ef:e8:8e:8d:6d:e9:
0d:8c:84:d1:c4:ef:5b:3d:3c:5c:63:da:ee:97:57:bd:97:46:
6a:3e:f5:7b:de:94:91:10:bd:28:a3:e3:62:20:0f:88:35:5e:
1a:fd:79:3b:36:d0:98:41:37:9a:c4:96:d3:68:44:15:43:e3:
c8:90:09:e9:3e:ea:69:e8:b0:d2:9a:51:6b:81:db:5f:53:3c:
2b:e5:97:3c:fc:16:87:74:1d:17:96:04:a0:37:80:18:5d:23:
91:b3:5b:d1:c9:5b:e0:30:7a:80:02:ee:8a:4e:ec:4c:0c:9d:
fe:f1:59:ea:28:5a:5f:96:12:26:db:4b:7a:d8:e6:29:fb:6a:
28:49:98:42:0c:ec:64:4f:58:ec:ea:c0:26:a4:60:1c:91:1d:
92:e8:03:b1:dc:ed:9b:3b:3c:d1:1a:9e:72:9d:c8:2f:ce:9d:
be:78:2c:67:17:a0:97:cb:0e:9e:a2:36:dc:25:9e:39:ad:04:
6d:69:fe:e4:0b:82:06:c6:8f:29:6b:ee:04:e8:02:f2:5b:ca:
50:35:66:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-fra.rpki-client.org