Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/763921-3cd7-466b-864b-188c4a78cd62/1/NuXAlAG0fSYX4oDSs7Ot0ptv37A.roa
File: NuXAlAG0fSYX4oDSs7Ot0ptv37A.roa (raw, json)
Hash identifier: PysWhOpYvQ2JZ5fOEZx02RwK2dGir6dtuRkclW/kt/c=
Subject key identifier: 36:E5:C0:94:01:B4:7D:26:17:E2:80:D2:B3:B3:AD:D2:9B:6F:DF:B0
Certificate issuer: /CN=66626623084e6cf116674a3fd0a9951cac0dedc0
Certificate serial: 045ADE65
Authority key identifier: 66:62:66:23:08:4E:6C:F1:16:67:4A:3F:D0:A9:95:1C:AC:0D:ED:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmJmIwhObPEWZ0o_0KmVHKwN7cA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/763921-3cd7-466b-864b-188c4a78cd62/1/NuXAlAG0fSYX4oDSs7Ot0ptv37A.roa
Signing time: Sat 01 Jan 2022 00:59:10 +0000
ROA not before: Sat 01 Jan 2022 00:59:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197312
IP address blocks: 194.147.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73064037 (0x45ade65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66626623084e6cf116674a3fd0a9951cac0dedc0
Validity
Not Before: Jan 1 00:59:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36e5c09401b47d2617e280d2b3b3add29b6fdfb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:01:95:a3:6d:85:da:db:69:55:e6:6b:1a:d3:
10:c1:3a:34:46:f0:9f:be:b5:22:87:3b:7c:84:18:
47:47:71:e7:0d:15:05:e9:5e:61:c4:c1:dc:2c:e0:
81:ee:9d:56:c2:4b:dc:5c:3b:f4:8d:df:08:13:6f:
21:c2:7c:d1:bd:34:10:4d:77:9d:69:d8:51:c3:05:
d1:71:0a:ad:c4:c4:34:28:37:60:8a:f0:92:73:48:
2b:79:37:a7:33:e4:91:f2:8a:7c:de:a6:17:ac:13:
1e:c6:48:a0:4e:de:2c:21:2b:5b:58:02:43:fe:dd:
c1:58:f6:b4:b9:2c:e2:af:30:47:36:e1:3a:91:6f:
8a:26:6d:71:d1:7f:3b:ed:17:a0:7b:fa:da:71:66:
72:4b:da:3c:aa:fc:d1:d4:2f:14:8d:02:c0:b9:bc:
d2:0f:85:56:94:50:56:d6:bb:6d:62:29:ba:7d:da:
6a:66:d4:09:46:93:17:77:9b:c1:84:94:69:9b:4b:
91:45:61:af:dc:cc:f6:9d:08:be:cd:39:f3:aa:25:
02:84:8f:df:46:30:c5:2d:9c:ba:d9:72:33:eb:ee:
20:c0:c5:04:76:a1:c4:5c:bc:6b:da:a3:69:f1:e9:
00:ee:31:d0:20:02:47:bb:0d:44:10:49:64:7b:62:
93:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E5:C0:94:01:B4:7D:26:17:E2:80:D2:B3:B3:AD:D2:9B:6F:DF:B0
X509v3 Authority Key Identifier:
keyid:66:62:66:23:08:4E:6C:F1:16:67:4A:3F:D0:A9:95:1C:AC:0D:ED:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmJmIwhObPEWZ0o_0KmVHKwN7cA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/763921-3cd7-466b-864b-188c4a78cd62/1/NuXAlAG0fSYX4oDSs7Ot0ptv37A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/763921-3cd7-466b-864b-188c4a78cd62/1/ZmJmIwhObPEWZ0o_0KmVHKwN7cA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.254.0/24
Signature Algorithm: sha256WithRSAEncryption
06:dc:7c:c4:18:62:8a:60:8e:ae:18:8c:1d:8c:41:a7:cf:78:
36:a8:bf:f8:88:9e:a0:75:d5:e4:cb:09:96:d3:4b:7e:8d:18:
b1:9d:02:c7:3b:e5:cd:1b:7b:41:4a:67:0c:8d:be:4d:f2:43:
5b:0f:5e:5b:49:61:58:d9:d0:f4:9d:2a:d7:3c:29:ae:d5:1a:
52:96:c9:f0:39:e6:8e:88:8c:7a:94:2a:eb:21:28:08:6b:ae:
53:bf:c2:82:75:ec:64:46:8c:46:bd:8d:3a:77:a0:9f:91:8b:
b5:40:a7:a7:5f:65:bc:2a:96:48:23:af:41:02:35:7d:90:5c:
d4:ac:5a:da:5a:b0:e7:5a:38:9e:8e:15:30:eb:6c:f2:ee:c4:
24:57:e8:a6:79:4d:90:fc:bf:37:49:8f:66:71:8c:47:da:1f:
6e:f6:4a:93:05:4f:29:81:e9:75:8f:23:25:2b:79:2b:5d:e1:
aa:f6:dc:ad:a7:e3:3b:b7:95:09:2a:7f:ed:66:41:74:43:44:
cb:f7:14:aa:35:48:09:cf:86:1f:c6:6b:fd:fe:1f:7e:33:63:
93:91:99:e4:6e:30:5e:3b:d7:25:0c:a7:ab:e1:66:dc:e6:a7:
2a:28:05:66:f9:a1:9f:f5:45:1d:68:5e:6e:5b:43:24:9d:f3:
66:27:9d:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org