Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/wLBMljEHnUvzg2Vb1b7YN-NDVOo.roa
File: wLBMljEHnUvzg2Vb1b7YN-NDVOo.roa (raw, json)
Hash identifier: eVi2DAwVzyLwYQ0OHjb/IERiT+E+uPoAH/LdtPMkQ5E=
Subject key identifier: C0:B0:4C:96:31:07:9D:4B:F3:83:65:5B:D5:BE:D8:37:E3:43:54:EA
Certificate issuer: /CN=9eec34baf922028c3432f8f8f22bda6af86b77b2
Certificate serial: 077CDBFB
Authority key identifier: 9E:EC:34:BA:F9:22:02:8C:34:32:F8:F8:F2:2B:DA:6A:F8:6B:77:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nuw0uvkiAow0Mvj48ivaavhrd7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/wLBMljEHnUvzg2Vb1b7YN-NDVOo.roa
Signing time: Sat 01 Jan 2022 04:01:36 +0000
ROA not before: Sat 01 Jan 2022 04:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3549
IP address blocks: 45.150.214.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125623291 (0x77cdbfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eec34baf922028c3432f8f8f22bda6af86b77b2
Validity
Not Before: Jan 1 04:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0b04c9631079d4bf383655bd5bed837e34354ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:71:94:e7:eb:b7:fc:3a:76:58:37:f2:08:4a:
4d:25:3d:98:7d:91:86:6f:04:ca:55:f6:e8:a9:a4:
cd:ac:4a:6f:52:49:4a:33:7f:66:fc:fd:22:16:5f:
ba:b0:fd:42:1b:8a:56:8c:41:bd:0f:89:d0:c9:65:
5a:64:0f:f6:bd:78:56:31:70:08:80:84:74:c0:25:
77:2a:f2:fc:69:69:71:1e:84:5d:f6:be:7a:11:4a:
b0:29:fa:71:07:0b:fb:ef:9a:15:15:fa:81:5e:c7:
ce:49:ef:e8:35:78:20:fb:43:32:7b:6b:a1:6c:c9:
88:3f:c9:e2:e1:c0:49:c7:fd:0c:e2:7c:0a:60:ae:
fb:5f:45:7c:35:63:8e:3c:dc:a4:b8:1e:0e:df:d0:
a9:de:e2:17:62:f2:aa:7e:94:61:20:8f:f2:5d:7c:
e0:7f:2b:b9:6a:84:a7:df:64:4c:40:16:84:dc:7c:
75:43:f6:50:78:ff:bc:25:4c:4e:51:5d:b0:c8:09:
04:e0:f1:d3:7d:56:5b:98:e8:a1:15:1f:5b:bd:64:
e2:65:5b:ff:13:02:12:45:cb:8e:a9:8c:44:7e:9d:
11:ee:09:21:9b:cd:dd:29:1f:c6:3c:15:81:53:ac:
66:cb:ce:d5:34:22:de:f3:93:b3:57:e3:7b:9e:cd:
52:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B0:4C:96:31:07:9D:4B:F3:83:65:5B:D5:BE:D8:37:E3:43:54:EA
X509v3 Authority Key Identifier:
keyid:9E:EC:34:BA:F9:22:02:8C:34:32:F8:F8:F2:2B:DA:6A:F8:6B:77:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nuw0uvkiAow0Mvj48ivaavhrd7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/wLBMljEHnUvzg2Vb1b7YN-NDVOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/nuw0uvkiAow0Mvj48ivaavhrd7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.214.0/23
Signature Algorithm: sha256WithRSAEncryption
f1:be:71:19:3e:b6:6d:5d:4a:40:7a:bb:ba:84:9d:fa:2f:3e:
18:d0:80:f5:68:55:3b:96:6f:41:23:6c:8a:d9:8a:ba:a9:d0:
de:2f:62:f1:5c:da:b9:94:5f:27:e2:52:d0:58:6d:ac:3e:17:
65:05:fb:39:82:aa:af:83:95:39:73:7e:e8:e2:68:84:5b:9e:
e7:d1:df:02:af:e9:9c:07:4b:0f:dc:ce:d3:88:5c:70:aa:fb:
3c:80:03:c3:3b:a0:4e:0e:9c:bd:b7:73:8e:99:cb:dc:42:72:
82:fb:4d:bf:46:fb:94:04:d3:78:14:5f:0d:dc:c0:75:7e:76:
64:e7:df:8f:94:08:39:2f:af:37:70:0e:e4:33:f0:ee:d2:52:
b3:37:8d:3e:18:ca:09:ef:1c:6d:dc:e4:b4:5c:76:72:75:6e:
08:02:80:0e:b2:0c:5c:89:0e:a2:31:0e:1c:b8:1d:2c:49:3d:
d8:31:c1:86:0d:67:15:b3:7e:bf:23:72:be:a5:1c:36:c7:e7:
e0:19:f4:2c:97:1d:e1:68:7f:72:09:73:fd:43:de:60:f2:e8:
72:78:86:37:30:da:66:3d:cb:83:75:a7:2b:8f:ae:b0:d5:9d:
35:93:42:90:6b:96:a8:f7:99:91:b0:5b:ce:96:22:87:21:68:
42:cd:6d:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:56 2024 by rpki-client on console-ams.rpki-client.org