Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/NE-K0F9WSEQJYlYbxgynUIzRiWM.roa
File: NE-K0F9WSEQJYlYbxgynUIzRiWM.roa (raw, json)
Hash identifier: dPM7KYpyKHgzPAvte42gSZOnipLBoj53n4LLXsMTECc=
Subject key identifier: 34:4F:8A:D0:5F:56:48:44:09:62:56:1B:C6:0C:A7:50:8C:D1:89:63
Certificate issuer: /CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Certificate serial: 041B4E92
Authority key identifier: 2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/NE-K0F9WSEQJYlYbxgynUIzRiWM.roa
Signing time: Sat 01 Jan 2022 10:55:33 +0000
ROA not before: Sat 01 Jan 2022 10:55:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34602
IP address blocks: 185.185.140.0/22 maxlen: 22
77.50.0.0/23 maxlen: 23
77.50.4.0/22 maxlen: 22
77.50.2.0/23 maxlen: 23
77.50.0.0/16 maxlen: 16
77.50.8.0/21 maxlen: 21
77.50.16.0/20 maxlen: 20
77.243.96.0/20 maxlen: 20
94.141.160.0/19 maxlen: 19
81.17.144.0/20 maxlen: 20
91.204.128.0/22 maxlen: 22
77.50.128.0/17 maxlen: 17
31.130.128.0/19 maxlen: 19
77.50.32.0/19 maxlen: 19
77.233.192.0/19 maxlen: 19
77.50.64.0/18 maxlen: 18
2a00:e79::/36 maxlen: 36
2a00:e79::/32 maxlen: 32
2a00:e78::/34 maxlen: 34
2a00:e78::/33 maxlen: 33
2a00:e78:6000::/36 maxlen: 36
2a00:e7a::/31 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68898450 (0x41b4e92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Validity
Not Before: Jan 1 10:55:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=344f8ad05f5648440962561bc60ca7508cd18963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e8:38:c4:d3:eb:be:96:36:b8:05:05:28:f4:
69:e0:2e:fd:84:bd:5a:70:fc:88:97:78:e4:9c:bc:
e1:58:58:c6:b6:5e:90:4a:cf:7b:20:c2:38:84:c1:
5f:c5:90:c5:99:70:7f:5b:93:06:96:5f:bf:bb:28:
3e:c6:9a:c3:3d:04:64:60:aa:b5:89:06:b3:66:47:
8a:f9:7c:f3:04:92:56:2a:4a:de:27:59:32:8d:6f:
4e:8b:27:e3:4d:c1:1a:90:cc:39:4b:30:c0:1b:3f:
ff:ba:36:29:cd:e3:83:00:18:e8:00:70:48:f3:d4:
36:50:df:33:de:f2:a8:cd:02:8a:29:1e:cb:be:a9:
4e:07:e6:42:1f:49:e2:c4:51:cb:d2:91:bb:e2:ec:
f0:ef:b2:0a:bd:6d:77:08:b8:1b:4a:c2:2d:b4:75:
70:77:12:36:b3:1a:56:8d:17:84:e8:08:02:ae:f3:
c5:b1:35:65:3f:92:74:bd:50:a8:fe:f8:29:2a:b9:
aa:dd:1a:b2:c1:ee:37:85:8e:4c:52:a8:72:b6:b2:
4f:83:92:d7:5f:dd:78:7a:a8:bc:77:50:82:c4:85:
76:90:25:be:d0:fe:d4:84:54:62:25:8e:8e:1d:ef:
67:24:7c:b9:96:9b:cd:11:ad:e2:3e:42:0d:6f:2f:
2f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:4F:8A:D0:5F:56:48:44:09:62:56:1B:C6:0C:A7:50:8C:D1:89:63
X509v3 Authority Key Identifier:
keyid:2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/NE-K0F9WSEQJYlYbxgynUIzRiWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LHHJYAXhOoSj8x7x2ZF3f0tuMac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.128.0/19
77.50.0.0/16
77.233.192.0/19
77.243.96.0/20
81.17.144.0/20
91.204.128.0/22
94.141.160.0/19
185.185.140.0/22
IPv6:
2a00:e78::/33
2a00:e79::-2a00:e7b:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
7d:d2:c3:ee:5f:bf:d0:08:2e:fb:9c:e7:b3:87:16:eb:1e:0b:
db:a2:80:ac:8e:e9:80:fe:56:7f:39:3d:f8:a0:ec:13:65:59:
14:b8:c0:a7:40:ca:2b:4a:80:39:dc:d1:29:32:cd:b1:22:81:
e9:20:32:68:50:3d:41:4b:a4:14:76:c2:30:86:53:c6:67:11:
ed:bb:c6:6f:9f:bd:26:2c:bb:80:41:66:f8:16:b0:cb:b1:65:
71:3d:89:0f:d0:06:2a:ec:d5:f9:8c:1a:5a:93:0a:84:08:90:
40:86:15:13:8c:a0:a2:13:2f:03:6f:83:f2:10:14:1e:67:09:
7b:33:d0:89:31:6b:4c:8c:28:57:52:ec:c0:ed:af:6f:07:55:
8e:38:48:9b:40:4a:ee:9c:e5:7d:58:e6:9e:13:0a:20:c3:17:
dd:9f:e8:9e:8e:3d:b1:a7:94:b0:3f:76:07:80:7d:ea:43:bf:
8f:d5:f5:f9:a6:14:cc:ef:b6:ae:4e:19:50:b3:36:57:38:0b:
d2:77:24:0e:1f:46:c4:aa:c2:39:01:9d:f3:3d:39:07:e6:f9:
be:c7:b6:7f:e3:f7:b9:e3:7f:c2:28:9a:01:f5:8c:05:96:98:
e6:1c:78:1e:2d:27:ff:b5:3e:f8:0f:1b:67:80:e8:fc:d6:b6:
c3:d2:67:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:02 2024 by rpki-client on console-fra.rpki-client.org