Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/NniPKI3BOkfdf8ogMuAEpDftiZY.roa
File: NniPKI3BOkfdf8ogMuAEpDftiZY.roa (raw, json)
Hash identifier: H8i/JO5ovoj4boKxmZttgQFC2q38bX4/XdSiR1Y9Z+o=
Subject key identifier: 36:78:8F:28:8D:C1:3A:47:DD:7F:CA:20:32:E0:04:A4:37:ED:89:96
Certificate issuer: /CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Certificate serial: 0404DF51
Authority key identifier: 81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/NniPKI3BOkfdf8ogMuAEpDftiZY.roa
Signing time: Thu 07 Apr 2022 05:13:33 +0000
ROA not before: Thu 07 Apr 2022 05:13:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 83.147.14.0/24 maxlen: 24
83.147.13.0/24 maxlen: 24
83.147.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67428177 (0x404df51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8193ffe9db37626b13f85d7cc457aad5c1f30c9f
Validity
Not Before: Apr 7 05:13:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36788f288dc13a47dd7fca2032e004a437ed8996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:1c:19:ec:cc:1d:47:b9:b8:9c:eb:c1:7f:4f:
7e:c2:cf:23:c3:71:4a:8c:e3:70:d3:06:0a:7f:fc:
a7:ce:23:c5:99:21:b0:76:6f:95:41:1f:3a:91:8f:
a0:f1:9c:c2:4a:cf:32:c5:d4:56:ce:8b:98:e2:5f:
21:ed:89:d6:27:e9:b2:be:39:9d:0c:9c:9f:93:4f:
8c:ad:d6:27:7c:f4:82:cf:04:ce:69:4c:52:a7:ce:
67:9e:d8:e8:49:0b:32:13:b0:9f:fe:8f:26:9b:1d:
b1:69:e8:07:28:88:3a:a7:77:b7:c0:8d:c4:ca:ac:
20:f7:24:84:68:48:80:08:c1:48:3a:d0:4c:17:fb:
cf:22:c7:01:0d:10:37:68:4a:a1:8a:15:df:f7:24:
69:bf:8c:b1:3d:32:69:71:9f:5e:b9:5f:fe:41:7b:
8c:bb:ea:82:49:32:13:fc:bb:9b:fa:f7:91:28:50:
c8:c1:68:9b:c9:45:66:68:16:07:52:26:de:5b:6c:
b0:35:12:52:12:cb:d3:71:46:e3:19:05:85:8d:0d:
2d:ca:e0:f7:b4:a4:c1:22:3f:b3:c6:a4:85:b3:6f:
af:a4:d5:bb:b3:82:b8:64:5f:ea:08:c0:0f:a5:b4:
49:80:8e:94:35:18:ed:54:45:8b:e6:f7:9b:19:09:
3e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:78:8F:28:8D:C1:3A:47:DD:7F:CA:20:32:E0:04:A4:37:ED:89:96
X509v3 Authority Key Identifier:
keyid:81:93:FF:E9:DB:37:62:6B:13:F8:5D:7C:C4:57:AA:D5:C1:F3:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZP_6ds3YmsT-F18xFeq1cHzDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/NniPKI3BOkfdf8ogMuAEpDftiZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/76bc1e-b6f4-408a-bb89-08d1270c2e71/1/gZP_6ds3YmsT-F18xFeq1cHzDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.13.0-83.147.14.255
83.147.22.0/24
Signature Algorithm: sha256WithRSAEncryption
58:78:53:78:f9:d6:2d:7c:42:93:93:f7:aa:78:46:fa:89:94:
6d:91:a1:00:f4:d5:d1:4a:f7:c7:de:17:43:05:bb:62:71:7d:
94:ac:b3:f5:4b:6d:68:51:14:f7:85:f7:81:8c:13:54:49:e9:
f3:62:4e:ba:ca:b6:4d:c6:29:90:90:5e:86:58:ca:4f:fa:bf:
0e:ab:f9:49:55:6b:31:1f:4e:6e:7c:12:2d:e5:11:9a:05:5d:
2c:4e:0c:86:1b:bf:03:2a:36:86:3d:c5:0e:23:07:0b:83:7d:
e7:0f:9f:b7:63:20:52:3f:90:27:63:d9:46:8b:2a:06:7c:42:
7a:0f:54:2b:bc:d0:8b:0d:1c:07:d1:65:11:fd:b4:11:cd:8c:
e2:b7:f5:0f:bf:e2:25:a6:91:aa:2b:cd:84:cb:e8:29:76:db:
92:65:1c:3c:12:0b:dd:d2:6b:4b:bb:6e:6d:2a:bf:0c:ce:ba:
2b:7c:78:43:40:73:6a:fa:40:c3:b0:cb:d1:ba:86:38:51:4f:
1d:cf:e4:96:4e:99:fc:3d:e0:6d:e6:1e:8e:3f:fa:0b:38:28:
4c:40:e5:34:b1:84:46:c7:3f:e9:90:cd:51:42:b1:96:8f:fb:
6a:c3:ae:eb:bf:44:44:ce:dd:77:ce:ac:04:da:31:d6:37:0b:
1b:31:a2:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:50 2024 by rpki-client on console-fra.rpki-client.org