Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/NAvAL-v73ayVCEjqXtrdKl1PkV0.roa
File: NAvAL-v73ayVCEjqXtrdKl1PkV0.roa (raw, json)
Hash identifier: oiqbzMNIQlsZflmPqExHagdaa9TmhZ/YX7NYm+WvfII=
Subject key identifier: 34:0B:C0:2F:EB:FB:DD:AC:95:08:48:EA:5E:DA:DD:2A:5D:4F:91:5D
Certificate issuer: /CN=a811a2c9fc8de9679bb158581b10ceaee91ff791
Certificate serial: 085F869D
Authority key identifier: A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/NAvAL-v73ayVCEjqXtrdKl1PkV0.roa
Signing time: Sat 01 Jan 2022 06:05:47 +0000
ROA not before: Sat 01 Jan 2022 06:05:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199341
IP address blocks: 45.85.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140478109 (0x85f869d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a811a2c9fc8de9679bb158581b10ceaee91ff791
Validity
Not Before: Jan 1 06:05:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=340bc02febfbddac950848ea5edadd2a5d4f915d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:73:e1:3b:45:0c:87:94:f0:09:20:fe:fc:69:
f8:42:60:1c:f3:d3:52:1b:49:ef:83:4b:43:92:73:
8b:52:84:1b:c1:8f:be:14:42:9e:6b:0c:5f:b9:52:
c0:03:30:fb:8a:2c:19:af:9b:a2:2f:8c:fa:31:93:
0f:5f:c2:5a:4f:59:17:84:3c:24:c2:d4:a0:39:2a:
f5:5f:7d:59:da:83:1f:b7:14:a8:f1:ce:33:d0:7c:
92:1f:42:1c:df:68:2f:c7:b5:11:fd:20:44:ae:de:
1e:49:06:58:9e:2d:8b:35:d0:90:a3:a8:5e:56:1b:
f8:e3:92:9b:14:8a:4b:0a:07:a6:21:2d:a9:26:71:
a4:79:a4:0c:d3:3e:d5:af:2c:e1:87:52:79:24:88:
3e:ea:0f:d1:67:21:19:cf:16:e1:5a:e0:ac:e8:ef:
63:99:33:9c:dd:ff:c5:8b:4f:82:ff:b2:7e:26:f7:
6a:fd:bc:ef:62:73:bf:71:44:7d:2b:5d:bc:86:2b:
5f:53:ad:25:0f:33:64:e7:0f:c3:b5:9a:5d:60:e4:
ec:5a:f3:fd:0c:28:00:18:bc:ad:89:c1:f5:94:bd:
db:bc:66:87:4d:67:fc:4a:bd:e4:6c:97:2b:38:52:
5d:f3:08:0e:b1:73:8e:d6:40:4a:19:97:9d:10:a1:
19:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:0B:C0:2F:EB:FB:DD:AC:95:08:48:EA:5E:DA:DD:2A:5D:4F:91:5D
X509v3 Authority Key Identifier:
keyid:A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/NAvAL-v73ayVCEjqXtrdKl1PkV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/qBGiyfyN6WebsVhYGxDOrukf95E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.184.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:e3:7d:1a:9e:f0:40:10:56:3c:2b:af:e9:c8:1a:45:84:56:
65:b8:48:ac:b9:64:7f:87:96:9c:16:04:5f:53:8f:b2:9d:6c:
82:2b:49:c0:61:69:bc:2f:60:0d:af:38:54:e6:6b:4c:9d:fd:
34:50:96:bb:62:d9:00:70:3a:92:14:36:d8:bf:2e:b4:70:7f:
c7:11:f6:c0:16:87:7c:f1:6b:1e:82:5a:0f:b9:ed:9f:15:cc:
3d:f3:b4:b9:3c:6d:ad:b2:98:f9:b4:26:48:d0:f5:3a:17:31:
04:cd:09:12:37:ec:60:43:e6:a5:cd:dd:80:dd:71:b6:50:c3:
51:eb:05:e2:5e:7f:ea:a3:02:97:b6:60:3c:43:c7:0e:86:97:
17:3d:e8:3d:22:65:11:b1:b4:00:ed:e7:ef:fc:95:ac:8d:c8:
07:9b:91:39:cc:b6:20:51:10:19:c1:93:35:44:3a:4f:35:c5:
7f:f0:25:1c:bd:f2:db:ba:7c:51:c5:01:c0:01:de:cb:5d:38:
43:a6:56:15:a5:8c:21:57:03:c7:3b:07:4e:58:7f:2c:6c:51:
06:ef:c6:4d:b7:a9:0b:8f:ff:67:68:2f:2f:d5:39:38:4c:16:
e0:09:03:cb:23:6d:8d:07:4f:84:6d:4b:3e:25:f7:62:25:0b:
4d:93:30:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:59 2024 by rpki-client on console-fra.rpki-client.org