Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/a8d6d8-d2a5-4af2-bb44-0807091aa77d/1/Nshzu1MNORnagix1ZuVmih9XZrM.roa
File: Nshzu1MNORnagix1ZuVmih9XZrM.roa (raw, json)
Hash identifier: UohDcSFVs+q7gksBFmXANuUjYqO2/Ics+3qgAmAr9gc=
Subject key identifier: 36:C8:73:BB:53:0D:39:19:DA:82:2C:75:66:E5:66:8A:1F:57:66:B3
Certificate issuer: /CN=7d57b153eed110bcbd14dc7e33fd47f02e2fe071
Certificate serial: 095D68F7
Authority key identifier: 7D:57:B1:53:EE:D1:10:BC:BD:14:DC:7E:33:FD:47:F0:2E:2F:E0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVexU-7RELy9FNx-M_1H8C4v4HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/a8d6d8-d2a5-4af2-bb44-0807091aa77d/1/Nshzu1MNORnagix1ZuVmih9XZrM.roa
Signing time: Sat 01 Jan 2022 12:55:21 +0000
ROA not before: Sat 01 Jan 2022 12:55:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31236
IP address blocks: 160.20.214.0/23 maxlen: 23
82.112.64.0/19 maxlen: 19
94.198.48.0/23 maxlen: 23
82.112.90.0/24 maxlen: 24
2a00:92c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157116663 (0x95d68f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d57b153eed110bcbd14dc7e33fd47f02e2fe071
Validity
Not Before: Jan 1 12:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36c873bb530d3919da822c7566e5668a1f5766b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f7:b9:80:c8:f2:e6:ce:38:f1:e3:73:b9:ce:
e5:10:5a:e9:ab:94:45:7a:47:d3:1a:7e:7d:c6:bf:
46:ab:8f:05:39:b2:b4:ff:3d:9b:1b:2a:74:6f:32:
70:15:43:20:c7:06:0b:c9:31:0a:30:30:35:18:02:
b1:d6:2b:68:79:d4:47:09:06:b4:c5:5b:6e:51:bd:
d4:d2:a5:75:9d:06:81:42:63:83:50:2f:84:13:7f:
28:98:30:f7:bc:1e:6f:89:03:27:c3:06:bd:b6:33:
ed:89:d8:27:67:f6:10:46:5f:27:f8:f8:63:42:af:
ca:e9:ae:bc:41:a0:c7:c3:37:8f:c0:49:33:b1:1f:
58:b9:06:ab:dd:d9:a2:cb:99:e9:94:de:d0:90:f6:
94:99:89:42:37:ac:36:dd:1d:a3:5b:bf:f6:3f:89:
ce:18:c6:c7:3f:19:3c:2e:a9:77:da:92:87:97:cd:
22:87:e8:65:8b:c7:d1:bc:b6:70:78:1e:46:93:41:
12:64:b3:2c:5a:78:6a:a9:47:70:48:c9:f9:0b:be:
8d:de:1b:12:74:d5:95:03:8e:03:8e:04:79:3f:89:
0a:d2:ff:30:7d:52:2e:32:64:f1:de:0a:fe:6c:b3:
2c:22:5f:07:3b:23:cd:ae:68:0c:8a:c0:7b:ec:1a:
8b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C8:73:BB:53:0D:39:19:DA:82:2C:75:66:E5:66:8A:1F:57:66:B3
X509v3 Authority Key Identifier:
keyid:7D:57:B1:53:EE:D1:10:BC:BD:14:DC:7E:33:FD:47:F0:2E:2F:E0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVexU-7RELy9FNx-M_1H8C4v4HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/a8d6d8-d2a5-4af2-bb44-0807091aa77d/1/Nshzu1MNORnagix1ZuVmih9XZrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/a8d6d8-d2a5-4af2-bb44-0807091aa77d/1/fVexU-7RELy9FNx-M_1H8C4v4HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.112.64.0/19
94.198.48.0/23
160.20.214.0/23
IPv6:
2a00:92c0::/29
Signature Algorithm: sha256WithRSAEncryption
7e:04:06:7c:93:87:fe:87:44:b0:a0:48:b0:3e:2c:5b:28:79:
11:ad:56:e7:e3:da:2b:3c:a2:76:0d:f5:7a:fb:a5:98:88:5a:
45:c4:63:6a:3d:8b:89:e8:2f:88:17:e4:e4:00:6e:37:c2:66:
23:85:c7:35:cb:b4:4e:ba:43:41:bc:44:26:a0:5f:4c:6b:06:
ac:c3:8c:36:eb:88:88:57:23:99:99:f6:9f:09:52:b5:25:d1:
bc:41:69:a0:f0:18:1f:5a:1b:73:d8:ff:12:21:8a:02:01:fd:
9a:35:03:c1:2c:42:87:5a:7f:5d:99:9c:dd:36:ee:01:97:df:
a2:7f:75:1d:dc:e1:6f:05:e0:e0:5f:26:6a:79:4e:2a:3a:a2:
7d:a9:d1:5c:81:93:a5:62:d0:f3:40:5f:be:97:f1:99:5a:c9:
25:3b:95:46:5b:f9:4d:48:0f:19:a6:52:c9:63:98:c5:a0:99:
67:d2:78:47:83:91:c0:4c:1b:05:53:ad:69:4e:4f:e7:11:57:
f6:94:07:fe:7f:e6:6d:bb:ef:ea:85:78:1b:99:48:cd:ab:dd:
a5:d2:c2:53:86:54:65:2a:43:0c:b5:80:f4:46:4e:8d:1c:37:
e2:45:12:89:35:2a:1d:98:36:25:0b:91:23:4b:ca:3c:4b:9a:
52:92:22:96
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:46 2025 by rpki-client