Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/NKIvANyQSWG3xtYnVhIvy5ftYmE.roa
File: NKIvANyQSWG3xtYnVhIvy5ftYmE.roa (raw, json)
Hash identifier: elURZOyYdeDUk1VlCOqj/UbE2UBFXo2dyFfA+vSViLo=
Subject key identifier: 34:A2:2F:00:DC:90:49:61:B7:C6:D6:27:56:12:2F:CB:97:ED:62:61
Certificate issuer: /CN=af734108705a95796e8577125dd300c751dfd9a8
Certificate serial: 01837902778B0191D211AD33F8DD08D9214D
Authority key identifier: AF:73:41:08:70:5A:95:79:6E:85:77:12:5D:D3:00:C7:51:DF:D9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3NBCHBalXluhXcSXdMAx1Hf2ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/NKIvANyQSWG3xtYnVhIvy5ftYmE.roa
Signing time: Mon 26 Sep 2022 08:55:48 +0000
ROA not before: Mon 26 Sep 2022 08:55:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48551
IP address blocks: 185.221.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:79:02:77:8b:01:91:d2:11:ad:33:f8:dd:08:d9:21:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af734108705a95796e8577125dd300c751dfd9a8
Validity
Not Before: Sep 26 08:55:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34a22f00dc904961b7c6d62756122fcb97ed6261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3b:83:69:39:b0:41:7d:b5:81:22:1e:67:cc:
c4:e9:9f:ec:19:a5:a8:e9:11:2b:d9:95:e9:9e:bf:
6f:5f:8a:09:6f:72:a9:0b:41:94:b5:4a:51:1b:87:
f8:40:1b:7b:a4:f4:d7:2c:1c:d9:06:34:7d:dd:c5:
0b:46:57:bf:c6:8b:69:09:ac:5d:b0:30:1f:ef:37:
ea:be:e9:b6:26:cc:24:e1:4f:9d:19:85:df:28:75:
d0:4e:71:a4:7b:4e:33:2c:5a:0a:74:20:04:d0:dc:
92:d4:b3:88:b8:e3:00:0b:31:0e:0f:e9:64:ef:fd:
8a:5a:44:88:44:2b:88:30:d2:5d:54:cd:d9:9f:e6:
67:99:80:5d:47:b1:4d:7e:c3:39:79:1e:db:6a:92:
e9:82:db:05:e5:be:89:75:e8:1a:6b:7d:9b:a0:54:
3d:1d:6e:65:f6:1b:12:2f:77:f9:77:47:7f:59:06:
5a:7d:69:57:a4:e9:58:13:42:0b:c8:14:15:80:31:
18:6d:80:eb:7b:f2:e9:21:23:0a:d2:d1:0a:fe:4b:
c8:93:73:d7:7f:fd:7e:6d:21:2a:c0:9d:fc:de:a6:
68:5f:e4:d7:d1:9c:be:ac:39:8f:92:88:02:bb:a5:
a8:ec:e6:d7:17:21:12:a9:63:19:1c:97:04:3b:c9:
78:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A2:2F:00:DC:90:49:61:B7:C6:D6:27:56:12:2F:CB:97:ED:62:61
X509v3 Authority Key Identifier:
keyid:AF:73:41:08:70:5A:95:79:6E:85:77:12:5D:D3:00:C7:51:DF:D9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3NBCHBalXluhXcSXdMAx1Hf2ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/NKIvANyQSWG3xtYnVhIvy5ftYmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/r3NBCHBalXluhXcSXdMAx1Hf2ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.239.0/24
Signature Algorithm: sha256WithRSAEncryption
84:7a:9c:9a:f6:02:a5:e2:75:e7:41:34:b7:37:e9:02:13:d4:
20:3b:41:32:2e:79:7b:11:31:a4:2f:b5:db:c0:4d:cb:6e:83:
12:68:af:d7:7f:82:bc:48:9d:28:6f:73:c0:58:5c:2b:62:78:
ea:19:c7:8a:58:0b:bc:aa:08:25:10:7a:cb:25:42:b2:99:d9:
74:0e:0d:e5:d9:ac:90:37:cc:b8:d3:8d:49:9d:84:50:6f:48:
28:16:a6:c4:5f:cc:c8:34:b8:d2:c2:07:41:28:46:98:5c:df:
21:23:8f:fa:94:46:86:89:73:ad:25:75:b6:e7:3b:d5:b9:ec:
b4:45:25:00:e1:ab:a0:11:2f:ae:97:ad:17:a8:56:45:71:90:
e0:0e:86:70:55:63:6f:98:49:61:f0:ca:60:98:74:5e:9b:e0:
96:82:c2:9f:06:d0:c9:9f:b0:52:40:fa:0a:f5:fc:01:9f:56:
41:7b:bf:06:11:f6:8d:62:cd:37:ea:8e:c2:84:14:2e:c4:5c:
e1:4a:06:f9:7a:0b:74:73:30:8a:db:37:3a:35:a0:73:d6:09:
ef:59:57:44:7f:00:13:17:9e:c5:91:47:57:2f:fc:b6:08:da:
08:f2:5b:8a:26:0d:79:78:4b:b3:fd:f3:e5:ef:6c:49:2c:28:
53:7f:00:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:59 2023 by rpki-client on console.sobornost.net