Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/NkPf4tWue_dkjrj12WKGJeVDuko.roa
File: NkPf4tWue_dkjrj12WKGJeVDuko.roa (raw, json)
Hash identifier: D7V020diWQtL4GXiZ4xvylYrJRPk/9Xr2UUkT45fQeQ=
Subject key identifier: 36:43:DF:E2:D5:AE:7B:F7:64:8E:B8:F5:D9:62:86:25:E5:43:BA:4A
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 1428D44C
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/NkPf4tWue_dkjrj12WKGJeVDuko.roa
Signing time: Tue 15 Mar 2022 12:53:02 +0000
ROA not before: Tue 15 Mar 2022 12:53:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34078
IP address blocks: 45.146.240.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338220108 (0x1428d44c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 15 12:53:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3643dfe2d5ae7bf7648eb8f5d9628625e543ba4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:80:2b:ac:31:6a:f3:b6:a4:eb:9c:20:b9:e1:
0a:1a:f2:c2:96:12:89:4b:ff:92:bc:8f:65:41:39:
9e:31:36:9b:e5:1d:46:dd:e0:55:07:40:6f:68:d6:
77:60:c0:43:8d:f8:4e:f7:93:2d:b8:66:1a:98:8b:
b3:bb:eb:ef:de:8c:4b:5f:bf:f7:e8:c6:80:59:9b:
2a:23:be:91:db:e2:d9:95:0c:f9:c0:e4:c6:20:35:
cf:23:b1:87:87:e2:1a:e3:ec:b8:00:16:5b:7f:e0:
91:8f:0f:12:09:78:de:2d:fb:ba:34:db:a5:48:5c:
a9:32:b5:d8:80:8a:2a:ea:6b:fd:42:3b:f8:ee:25:
ea:3c:15:37:61:f0:ea:78:57:4f:85:b7:70:ea:04:
90:1b:08:23:c3:01:f5:94:20:74:40:02:2e:22:20:
a9:1e:b0:86:ac:52:35:8d:a4:48:38:1b:ae:17:ee:
78:33:97:05:60:91:b1:56:e9:ef:38:a8:0b:77:84:
d6:8e:33:67:82:81:44:11:f0:03:58:5d:99:b7:ab:
0b:49:29:2a:6d:35:54:8b:6a:45:fd:65:fb:6f:06:
2b:1f:1f:bd:17:72:ba:06:cf:9d:70:84:46:4a:a7:
e7:e1:37:9c:5e:0a:47:61:b8:94:40:23:bc:a7:bc:
35:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:43:DF:E2:D5:AE:7B:F7:64:8E:B8:F5:D9:62:86:25:E5:43:BA:4A
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/NkPf4tWue_dkjrj12WKGJeVDuko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.240.0/23
Signature Algorithm: sha256WithRSAEncryption
77:a0:19:4c:79:ea:d7:a4:8b:b4:14:62:e6:a3:f4:52:96:6a:
33:e5:6d:0c:1f:08:91:50:cc:d6:82:bc:42:f0:96:ec:50:25:
c4:e0:f4:80:87:5c:7d:73:ea:cc:28:bb:7c:d2:75:b1:ba:ed:
ef:74:c7:c7:b1:12:47:b0:39:23:8e:f2:dd:0d:32:c8:52:88:
8e:f6:9f:21:00:38:69:e9:b5:9f:c7:9a:86:73:1b:7b:05:13:
83:e2:e2:c9:db:fb:d4:eb:3e:58:9b:9d:32:c3:42:b6:93:39:
4a:ed:17:47:47:15:24:87:ed:12:8e:74:28:2a:dc:f0:2e:00:
61:52:76:67:ba:d0:f8:48:8e:84:1a:5c:e6:99:2b:b4:10:75:
c8:7a:bc:c1:6f:40:ec:23:49:0a:80:c5:56:21:8a:55:03:53:
dc:54:40:23:fe:74:d7:21:0a:74:1e:97:0a:f8:3f:d5:fc:3a:
a5:6a:cb:f1:d0:4e:05:0f:1e:47:e1:a3:e7:00:88:30:b2:59:
ac:0d:a3:e8:41:82:d3:18:ad:d2:fa:ff:6d:0e:c9:d1:51:da:
95:54:bb:d2:6f:4e:7a:24:43:02:27:0d:88:a6:b4:2b:04:14:
09:9f:a7:42:f4:d8:b0:7b:e3:9c:93:fa:bd:ba:23:d1:6b:16:
86:48:df:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org