Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/nEtrvsz-m-FBEzr8pSC17_WYi20.roa
File: nEtrvsz-m-FBEzr8pSC17_WYi20.roa (raw, json)
Hash identifier: 73kd9WrNcJY0627OEIhlU/cY16ppiEwsTSWFOrha55Y=
Subject key identifier: 9C:4B:6B:BE:CC:FE:9B:E1:41:13:3A:FC:A5:20:B5:EF:F5:98:8B:6D
Certificate issuer: /CN=24051080400940ff47c807dd6742becbb4edf22d
Certificate serial: 026C763B
Authority key identifier: 24:05:10:80:40:09:40:FF:47:C8:07:DD:67:42:BE:CB:B4:ED:F2:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/nEtrvsz-m-FBEzr8pSC17_WYi20.roa
Signing time: Sat 01 Jan 2022 16:06:54 +0000
ROA not before: Sat 01 Jan 2022 16:06:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15447
IP address blocks: 85.119.49.0/24 maxlen: 24
85.119.48.0/24 maxlen: 24
85.119.48.0/23 maxlen: 24
85.119.51.0/24 maxlen: 24
85.119.50.0/24 maxlen: 24
85.119.50.0/23 maxlen: 24
85.119.52.0/24 maxlen: 24
85.119.54.0/24 maxlen: 24
188.94.185.0/24 maxlen: 24
188.94.184.0/24 maxlen: 24
188.94.184.0/23 maxlen: 24
188.94.186.0/23 maxlen: 24
188.94.186.0/24 maxlen: 24
31.169.58.0/24 maxlen: 24
31.169.58.0/23 maxlen: 24
31.169.57.0/24 maxlen: 24
31.169.56.0/23 maxlen: 24
31.169.56.0/24 maxlen: 24
31.169.59.0/24 maxlen: 24
31.169.60.0/24 maxlen: 24
31.169.60.0/23 maxlen: 24
31.169.62.0/24 maxlen: 24
31.169.62.0/23 maxlen: 24
31.169.61.0/24 maxlen: 24
31.169.63.0/24 maxlen: 24
188.94.187.0/24 maxlen: 24
2a10:9d80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40662587 (0x26c763b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24051080400940ff47c807dd6742becbb4edf22d
Validity
Not Before: Jan 1 16:06:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c4b6bbeccfe9be141133afca520b5eff5988b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:30:bb:d2:a7:1c:a4:8d:46:2a:7b:c5:eb:cc:
13:d5:6f:fa:38:cb:d7:67:80:1f:b8:06:81:29:67:
4f:46:05:7b:ae:79:29:86:b1:6c:36:84:e2:d8:ed:
da:4c:39:87:a4:0c:50:e7:15:4a:80:d4:7e:5f:b0:
6e:77:06:02:b1:9a:61:cb:c5:00:2f:78:db:4e:a2:
67:74:12:ee:e2:d2:55:b3:65:b1:17:5d:45:b3:49:
92:3f:15:b5:73:8b:59:6f:2f:31:7a:60:c8:65:b7:
83:97:11:2a:79:44:0e:8e:48:3f:8f:30:4b:9a:ac:
51:7f:f6:e8:fe:c8:22:6b:bd:ad:2d:f4:51:b0:e4:
42:4c:4f:b2:b1:ed:aa:ec:61:ee:41:0f:ac:19:d3:
10:a4:cd:71:b2:3e:f0:99:27:42:ad:fe:23:2b:66:
99:e1:4f:ae:b2:73:95:ea:77:6f:d6:a5:72:32:74:
db:51:ae:bb:cf:69:7a:38:bf:65:77:0c:de:16:19:
a4:f9:2a:a4:7d:60:72:7b:64:0e:71:f4:9b:eb:c2:
50:cd:39:3f:da:be:78:19:e9:6b:d2:60:cd:68:83:
4f:a1:bd:a7:4b:cb:ab:fd:f5:51:43:28:bb:a6:08:
ac:5e:2b:4f:9d:db:a1:c0:55:d4:41:45:af:21:2b:
35:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:4B:6B:BE:CC:FE:9B:E1:41:13:3A:FC:A5:20:B5:EF:F5:98:8B:6D
X509v3 Authority Key Identifier:
keyid:24:05:10:80:40:09:40:FF:47:C8:07:DD:67:42:BE:CB:B4:ED:F2:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/nEtrvsz-m-FBEzr8pSC17_WYi20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.56.0/21
85.119.48.0-85.119.52.255
85.119.54.0/24
188.94.184.0/22
IPv6:
2a10:9d80::/29
Signature Algorithm: sha256WithRSAEncryption
4e:a9:54:03:44:0d:2a:14:0f:7d:a0:46:9a:2a:9f:4d:32:8c:
93:a8:06:99:eb:c3:15:36:47:fc:6d:32:83:c2:1e:cc:1c:7d:
7a:98:f3:d2:a4:6b:4d:16:b2:ee:9c:93:ac:1e:ab:35:7a:8f:
78:91:9f:1b:71:9c:04:4a:0d:b3:b8:2a:4f:e5:12:bd:49:26:
43:1b:f1:fb:ed:ae:b1:d5:24:e2:fc:38:65:b9:0e:3c:8f:19:
59:3a:44:02:a4:82:9e:48:30:49:25:63:7a:3c:79:85:e8:31:
04:91:5f:8d:87:c4:cc:e2:a4:8f:7c:a5:11:1c:70:e4:82:c9:
22:44:e7:29:da:c1:80:8c:2d:76:5a:a9:84:1b:61:4d:7a:c8:
ff:b0:26:8f:3f:c6:72:c6:08:f2:4c:62:45:6e:37:3d:41:cf:
a8:c2:8c:5a:44:7c:02:8a:89:41:62:d9:30:1d:b2:15:9b:5a:
3c:09:d5:06:69:f8:8c:f2:e2:ef:41:70:09:27:68:05:bd:80:
b7:87:38:b8:e0:05:3b:39:6a:56:05:e2:d2:10:b6:b4:a2:d0:
89:dc:4e:80:fa:94:28:03:0a:98:e6:d9:8c:fd:b1:de:a2:66:
ca:79:88:81:a4:08:3a:0e:3c:e9:18:83:12:1c:3a:4d:59:85:
2a:b4:75:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net