Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/Nvkjmdj5wKYDwUw6IgQTCmPJOoU.roa
File: Nvkjmdj5wKYDwUw6IgQTCmPJOoU.roa (raw, json)
Hash identifier: PVl/Nk3quu6vVonAll+xxd44d4hAzSh5/03Dhu2y6OI=
Subject key identifier: 36:F9:23:99:D8:F9:C0:A6:03:C1:4C:3A:22:04:13:0A:63:C9:3A:85
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 300BDE
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/Nvkjmdj5wKYDwUw6IgQTCmPJOoU.roa
Signing time: Mon 04 Jul 2022 19:01:25 +0000
ROA not before: Mon 04 Jul 2022 19:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.155.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3148766 (0x300bde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Jul 4 19:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36f92399d8f9c0a603c14c3a2204130a63c93a85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f5:2a:62:ba:93:2e:a9:1a:49:c6:fe:80:24:
43:07:36:99:67:e3:93:f4:e5:89:56:03:f5:ca:61:
10:bf:6c:aa:93:b8:98:c4:84:96:f8:ad:5f:17:fe:
e2:e4:3f:64:df:5e:5b:35:81:fd:56:dc:0c:d8:b6:
9a:c4:e7:9d:e1:1f:e3:d4:2e:69:5c:53:c2:d4:e2:
ff:1d:11:b9:cd:4a:d4:e1:3a:78:aa:7e:bf:7c:1d:
4d:a9:d0:7a:06:91:71:c2:76:07:71:27:3b:37:3a:
11:f8:35:36:f6:90:54:98:0e:81:85:cf:42:67:d5:
b1:66:cd:79:f9:4c:70:61:12:79:61:7d:00:83:fb:
dc:94:7d:3a:a6:2f:c8:87:f8:7f:e0:50:d3:55:d2:
2e:5a:11:c7:1b:1c:6e:35:de:97:af:9b:7c:f4:dc:
28:9d:20:db:c8:16:77:3a:62:d3:b3:f4:31:e3:1d:
05:cd:fa:c3:24:74:4a:b7:f2:27:ad:8c:43:9b:a1:
e7:2f:76:34:b5:60:fb:88:9c:66:1f:28:d9:3b:85:
bb:25:39:16:b2:de:23:9d:ab:e4:90:31:d3:cf:c5:
c1:17:6e:43:2f:f2:de:d5:27:3b:75:4b:d5:87:20:
bc:5c:49:cb:9b:f7:ca:c2:7d:61:0d:46:af:d9:8c:
4c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F9:23:99:D8:F9:C0:A6:03:C1:4C:3A:22:04:13:0A:63:C9:3A:85
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/Nvkjmdj5wKYDwUw6IgQTCmPJOoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.233.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:e6:31:76:f5:fd:5b:4c:c1:99:15:22:08:29:72:e3:da:cf:
93:4e:4c:7a:ff:87:6e:3d:4b:68:7e:4d:74:83:42:95:e1:77:
3b:9d:44:28:47:65:46:79:10:21:3c:db:59:dd:34:15:15:d1:
a1:fe:ca:b1:27:00:0d:8e:d2:cd:c7:ad:f5:ce:05:9c:ed:cb:
64:13:3d:6e:2d:22:86:2d:52:95:cc:30:76:fe:e0:19:48:2b:
90:9f:9d:dc:3d:bf:e3:7f:59:76:86:df:e4:2e:4d:98:a3:d6:
f4:b3:37:3b:f9:b2:d7:32:cc:50:7a:66:35:a7:d0:7a:67:19:
10:00:aa:18:62:c0:d4:e4:4b:e5:e0:9e:ff:c2:5c:69:87:c9:
62:70:22:be:88:b6:8d:ed:47:a8:74:d7:ff:8f:b3:bb:00:e7:
83:f4:36:9f:9c:36:d6:18:0b:ce:1e:06:18:65:52:ce:ef:b5:
bc:ed:29:2b:20:8e:8b:5b:7a:ae:c2:0d:6c:d4:ce:5d:d9:49:
c5:42:1d:20:c4:f1:a7:4c:86:31:c7:55:ec:57:2c:6a:12:e4:
19:5c:9b:fe:ab:69:1f:32:62:8f:1f:14:15:a4:01:11:12:c4:
e7:9b:69:dc:b9:3d:c9:c3:3b:9e:71:8a:88:2d:a6:1c:06:28:
a8:40:59:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:02 2024 by rpki-client on console-ams.rpki-client.org