Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/e2767c-e447-4d77-87f0-883e0ebed6bf/1/Naev4H2ISuqv9Beefrn4EivyWsI.roa
File: Naev4H2ISuqv9Beefrn4EivyWsI.roa (raw, json)
Hash identifier: pQT7M+HCke3xvxwSfjGFmGHpplfu7nAGftMt6ftBXgw=
Subject key identifier: 35:A7:AF:E0:7D:88:4A:EA:AF:F4:17:9E:7E:B9:F8:12:2B:F2:5A:C2
Certificate issuer: /CN=c3ff0489a0641ccf1dc1eb3b674f3f611163baee
Certificate serial: 056178E4
Authority key identifier: C3:FF:04:89:A0:64:1C:CF:1D:C1:EB:3B:67:4F:3F:61:11:63:BA:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w_8EiaBkHM8dwes7Z08_YRFjuu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/e2767c-e447-4d77-87f0-883e0ebed6bf/1/Naev4H2ISuqv9Beefrn4EivyWsI.roa
Signing time: Sat 01 Jan 2022 13:00:55 +0000
ROA not before: Sat 01 Jan 2022 13:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48685
IP address blocks: 185.119.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90274020 (0x56178e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3ff0489a0641ccf1dc1eb3b674f3f611163baee
Validity
Not Before: Jan 1 13:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35a7afe07d884aeaaff4179e7eb9f8122bf25ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f5:c1:1e:03:8b:c1:cf:6f:23:12:88:92:33:
56:02:4f:46:1a:8d:65:83:80:9a:cd:b3:3c:11:49:
ff:7e:c8:5f:7d:7a:6a:a2:56:ed:13:7b:37:ec:e4:
c0:b1:38:23:d1:1c:7b:af:ac:af:38:a4:3c:e3:aa:
51:fd:ae:02:2f:ef:f0:49:59:71:a5:b1:db:51:1f:
61:42:c3:c9:d6:9b:a9:d0:22:78:67:9c:80:36:ec:
2d:64:2a:15:e3:1b:9e:27:e0:54:4a:99:59:37:6c:
1f:d9:80:80:17:0b:2c:91:78:80:1a:9a:b1:8e:e5:
22:db:b4:d6:03:7a:39:77:c5:60:d2:fe:72:05:a1:
29:71:d1:9b:17:09:30:c3:26:d9:ab:35:b3:40:2a:
f4:be:6d:d3:54:ca:66:24:35:64:04:95:d5:36:dd:
f1:18:77:c7:cf:63:06:26:f4:7f:91:f0:b6:90:7d:
16:5b:b8:a4:ec:15:c3:18:f9:d0:cb:be:3d:cf:48:
8f:27:f5:82:17:48:29:50:60:e4:30:ae:12:96:7e:
c8:92:9a:e6:de:87:6f:be:41:4a:27:f5:d9:d5:14:
4c:ca:c4:ab:50:21:4b:33:39:01:04:2a:8e:7a:6c:
41:3f:e0:cd:8a:5c:4c:e7:22:01:b6:fc:5f:43:58:
c1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A7:AF:E0:7D:88:4A:EA:AF:F4:17:9E:7E:B9:F8:12:2B:F2:5A:C2
X509v3 Authority Key Identifier:
keyid:C3:FF:04:89:A0:64:1C:CF:1D:C1:EB:3B:67:4F:3F:61:11:63:BA:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w_8EiaBkHM8dwes7Z08_YRFjuu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/e2767c-e447-4d77-87f0-883e0ebed6bf/1/Naev4H2ISuqv9Beefrn4EivyWsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/e2767c-e447-4d77-87f0-883e0ebed6bf/1/w_8EiaBkHM8dwes7Z08_YRFjuu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.124.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:73:4e:34:55:51:23:5c:71:a5:b5:35:9d:ae:34:a7:88:ad:
2c:1f:16:f8:1d:e6:09:25:fb:bc:8d:d5:2a:6e:c4:37:f0:1b:
0d:1e:bf:6c:18:15:d1:5b:a5:2e:cc:1c:d5:3b:14:2b:81:11:
e3:a6:b0:98:dc:08:63:58:4d:17:f9:8a:4e:9b:1e:83:25:50:
5e:20:f6:18:f0:a4:be:49:b0:fe:f4:a8:d7:7f:9d:dd:97:70:
6f:f1:1e:15:1f:73:74:c7:4d:61:88:0b:80:71:11:10:97:e5:
e1:a0:0b:7b:36:b1:6f:3c:e1:09:07:9f:e0:c7:49:28:3a:9d:
1d:7f:1f:7a:da:6b:5c:0d:dd:7a:1f:9b:99:32:33:5d:bc:4e:
2e:7f:ce:4d:aa:6e:1f:f1:8e:62:fe:5b:5d:24:55:4c:40:ff:
97:88:0e:13:5f:7d:ea:fe:48:5d:eb:18:bb:99:eb:95:1d:59:
5a:e9:e2:a9:d6:1d:62:c3:e5:3a:6e:d1:21:a3:ab:30:c3:83:
dd:f6:81:b6:17:c5:fa:ef:22:e6:eb:c9:92:0d:3f:32:8d:15:
0d:5f:62:58:a1:51:d3:20:2a:46:44:89:5e:d7:84:53:42:64:
04:90:16:27:65:88:b5:70:d7:26:c8:ff:49:05:1a:5f:0b:03:
d2:23:ed:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:09 2024 by rpki-client on console-fra.rpki-client.org