Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/1aa2aa-bfbf-4428-a3df-3857232f456c/1/NLY_htfkTI0hoTIW68NdhuXE2Wk.roa
File: NLY_htfkTI0hoTIW68NdhuXE2Wk.roa (raw, json)
Hash identifier: /aicWZ6H2gYLDBJZKgb76bv7anEikS31gKFBgLHS+Qw=
Subject key identifier: 34:B6:3F:86:D7:E4:4C:8D:21:A1:32:16:EB:C3:5D:86:E5:C4:D9:69
Certificate issuer: /CN=ac9b939a3ac97dada0825161f3a0e85033a82d25
Certificate serial: ED24E0
Authority key identifier: AC:9B:93:9A:3A:C9:7D:AD:A0:82:51:61:F3:A0:E8:50:33:A8:2D:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rJuTmjrJfa2gglFh86DoUDOoLSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/1aa2aa-bfbf-4428-a3df-3857232f456c/1/NLY_htfkTI0hoTIW68NdhuXE2Wk.roa
Signing time: Sat 01 Jan 2022 01:54:35 +0000
ROA not before: Sat 01 Jan 2022 01:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210627
IP address blocks: 185.188.40.0/24 maxlen: 24
2a11:2c0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15541472 (0xed24e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac9b939a3ac97dada0825161f3a0e85033a82d25
Validity
Not Before: Jan 1 01:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34b63f86d7e44c8d21a13216ebc35d86e5c4d969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:87:5e:13:ec:c2:0d:8a:f9:c7:1e:fc:b1:06:
f6:3a:4b:5f:25:cb:a2:64:5b:02:6e:7c:fb:e4:44:
39:43:40:35:b6:db:2a:c3:83:f1:19:ea:25:5c:e7:
e6:46:03:4f:74:25:b8:cf:5f:2a:4d:c1:6b:ac:06:
9f:1d:aa:2f:71:a5:05:04:ea:3b:a4:9a:f7:b8:d0:
51:79:76:fd:78:ae:a6:ed:9d:5d:19:4b:e1:bc:9b:
15:01:77:e3:e5:d1:99:47:81:f0:10:02:ce:99:0a:
af:62:0a:b1:9e:2e:62:22:cc:26:e4:97:b0:26:2b:
2f:f9:e1:2f:c7:98:2c:1b:59:2b:d1:f5:a3:21:8f:
7c:64:e5:6b:9a:89:90:89:85:c8:17:30:bf:c1:7a:
3a:8c:f2:3e:6e:7d:b6:54:f2:d6:f2:18:14:77:70:
ad:d9:71:26:9d:29:b1:2a:5a:ba:0d:20:5b:1d:63:
72:d8:04:09:33:e0:8e:72:8e:75:18:5f:4a:f2:45:
0a:82:d5:ae:c0:26:a1:98:c2:ba:9a:a7:24:46:fd:
ce:29:39:2e:ef:c8:10:ae:8b:c6:c0:63:d1:98:00:
86:74:75:fd:d9:2e:28:c6:7c:5c:a7:9c:3e:d6:20:
d8:eb:93:ae:48:3b:56:01:02:91:2d:a7:52:a3:d5:
fe:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B6:3F:86:D7:E4:4C:8D:21:A1:32:16:EB:C3:5D:86:E5:C4:D9:69
X509v3 Authority Key Identifier:
keyid:AC:9B:93:9A:3A:C9:7D:AD:A0:82:51:61:F3:A0:E8:50:33:A8:2D:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rJuTmjrJfa2gglFh86DoUDOoLSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/1aa2aa-bfbf-4428-a3df-3857232f456c/1/NLY_htfkTI0hoTIW68NdhuXE2Wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/1aa2aa-bfbf-4428-a3df-3857232f456c/1/rJuTmjrJfa2gglFh86DoUDOoLSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.40.0/24
IPv6:
2a11:2c0::/29
Signature Algorithm: sha256WithRSAEncryption
67:6f:8a:10:79:7d:fc:e7:4f:16:d4:e5:b1:32:d9:7e:d6:e1:
c1:e4:28:ef:6c:01:4f:07:33:4f:6a:0a:33:a2:06:20:c8:22:
f4:bd:47:86:f4:a4:9e:80:fa:f6:cc:09:af:7c:46:06:41:b9:
35:fd:72:be:ee:10:7c:7e:00:56:70:b4:8e:64:c5:70:68:01:
b5:9f:51:57:b9:6e:08:b1:29:0b:fd:36:01:de:af:84:85:06:
08:4c:7d:80:eb:2e:99:05:35:bf:cf:9f:7c:b0:af:c2:bc:7f:
1a:88:02:cf:16:d2:d4:c9:2a:6c:ed:dc:32:bb:46:24:fc:a8:
57:5a:c9:75:2d:a0:0e:d6:82:a4:f7:51:ff:ad:42:54:76:c8:
cc:7c:75:2e:38:55:3e:28:d1:46:7b:b4:42:fe:d1:19:9d:b7:
04:cb:fa:f3:df:1c:4a:e2:f6:90:0d:78:15:0f:58:87:6a:35:
e1:37:48:33:71:20:5f:71:b1:e8:a0:82:e3:e7:4a:ae:f8:73:
09:c1:e1:32:31:cb:d6:60:27:16:82:0e:a8:40:52:d5:15:07:
b3:da:ed:ab:ce:24:f6:02:de:d5:05:53:1b:38:d1:92:2f:db:
67:a3:b2:c4:e2:96:ae:7d:77:b1:3b:ce:b4:3d:24:f3:66:7d:
b5:ab:59:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:55 2023 by rpki-client on console.sobornost.net