Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/NGtnzEoKPG3qrSLHmqYF8rKcB6Q.roa
File: NGtnzEoKPG3qrSLHmqYF8rKcB6Q.roa (raw, json)
Hash identifier: sNMKDzlKTgqABMV98cDFE39eJowr9TKnb66eZhAH/QI=
Subject key identifier: 34:6B:67:CC:4A:0A:3C:6D:EA:AD:22:C7:9A:A6:05:F2:B2:9C:07:A4
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 01878124
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/NGtnzEoKPG3qrSLHmqYF8rKcB6Q.roa
Signing time: Thu 10 Mar 2022 12:13:40 +0000
ROA not before: Thu 10 Mar 2022 12:13:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 45.94.4.0/24 maxlen: 24
45.94.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25657636 (0x1878124)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Mar 10 12:13:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=346b67cc4a0a3c6deaad22c79aa605f2b29c07a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1b:4c:78:52:1f:23:8f:5d:52:2d:74:f8:e3:
5c:2f:4d:7c:8c:d9:a1:a3:ee:93:4f:d1:0c:e7:5c:
67:be:cb:00:fc:5d:ad:da:2f:1c:f8:be:b5:df:40:
62:bc:41:6f:5d:54:17:9d:7e:42:b3:98:f0:73:c4:
5c:ed:a4:a5:01:8c:c9:8a:a5:0f:31:54:65:66:e1:
82:f7:15:6b:e2:f7:40:6b:40:01:b6:7d:3a:17:66:
03:8e:81:5d:94:e9:bc:72:55:a2:89:bc:cc:fa:85:
70:80:9e:8b:ee:4a:58:f8:e9:62:a9:0f:65:55:92:
74:a4:4b:33:9b:57:e5:29:e4:ee:8a:19:0c:39:66:
e8:4e:13:9e:28:ce:d0:e1:46:25:ae:b5:ba:48:a3:
7b:25:e8:d5:6f:55:76:57:40:fb:ea:30:2c:ca:8d:
f4:f5:57:dc:54:2c:70:7b:61:98:a0:5c:f5:97:4a:
9b:31:58:7d:f8:83:68:83:9a:79:7c:f7:10:a6:c8:
c3:31:7a:96:5d:36:fe:64:c0:0b:04:96:64:ba:cb:
e2:66:a4:1b:65:a2:cf:53:f8:81:24:7d:b4:33:50:
4c:dc:3b:b7:1e:04:bd:73:21:c4:95:bf:18:95:d0:
46:cc:70:5f:62:f3:67:d7:c6:cd:99:44:3c:a6:23:
eb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:6B:67:CC:4A:0A:3C:6D:EA:AD:22:C7:9A:A6:05:F2:B2:9C:07:A4
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/NGtnzEoKPG3qrSLHmqYF8rKcB6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.4.0/24
45.94.6.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:6f:9a:c2:57:5f:82:f6:25:20:72:d0:c5:55:7c:46:90:6a:
d0:ca:de:20:90:12:67:e3:dd:d8:0d:4c:f7:41:fb:9f:f4:a1:
93:b0:fa:7c:75:f5:66:1d:56:eb:14:73:ee:ff:2f:c6:46:c0:
0d:7d:8c:32:a0:39:86:d2:ad:6f:e1:07:8f:62:6a:db:3f:3a:
70:e3:b8:e0:7d:35:e1:d4:3e:34:46:50:7a:d6:fc:3a:6c:ed:
58:12:21:85:4c:41:79:8e:37:db:77:3e:cd:31:72:9e:ce:dd:
81:db:ea:9c:c3:5f:03:80:ad:5c:6b:b7:3d:2e:aa:12:a6:77:
7b:d6:44:14:cf:89:d4:29:6c:9e:c7:40:7a:c1:ac:33:cf:93:
0b:f5:5d:d4:26:93:15:1b:18:cd:05:7f:f1:14:eb:cb:8c:52:
fd:98:39:d6:48:80:a1:99:5a:ee:ad:c2:98:56:be:c3:ee:51:
5c:a3:67:5e:80:6d:5c:4e:7c:e6:ea:58:ed:10:1e:f5:b2:93:
05:c0:d9:db:94:27:ad:58:6c:e5:3e:d8:f2:9e:33:20:96:cf:
4d:54:06:f2:7e:e0:30:79:76:49:21:84:d3:c1:9e:20:44:02:
1e:4d:f7:ef:d5:6f:0a:07:68:1a:12:43:76:b1:f1:01:54:8e:
cd:fc:69:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:36 2024 by rpki-client on console-ams.rpki-client.org