Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/NLgEJN2ubd8P6bqfXhp5fY-NHbk.roa
File: NLgEJN2ubd8P6bqfXhp5fY-NHbk.roa (raw, json)
Hash identifier: +ZQFzcdOoMLpZ2AvLQbrwigWZ/Xh/Dn6DFTvWSRksS4=
Subject key identifier: 34:B8:04:24:DD:AE:6D:DF:0F:E9:BA:9F:5E:1A:79:7D:8F:8D:1D:B9
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 01AA5B47
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/NLgEJN2ubd8P6bqfXhp5fY-NHbk.roa
Signing time: Fri 21 Jan 2022 14:38:45 +0000
ROA not before: Fri 21 Jan 2022 14:38:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206786
IP address blocks: 45.86.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27941703 (0x1aa5b47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: Jan 21 14:38:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34b80424ddae6ddf0fe9ba9f5e1a797d8f8d1db9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:96:46:7e:88:15:14:b8:67:a5:89:23:a8:4b:
0e:37:85:ef:84:6c:52:ed:53:fb:3e:40:14:86:2d:
9a:17:4c:4a:45:53:66:10:a8:c8:09:7f:ff:05:db:
d3:3b:54:ff:9b:b3:8b:14:a8:77:1d:95:22:be:d5:
28:e3:c8:26:5d:cf:c5:95:a2:30:38:8b:70:89:f3:
38:fb:2d:3d:3f:c8:9d:50:ba:88:15:bd:69:ec:68:
37:94:57:22:de:58:fe:5a:7e:18:cb:22:5e:49:0b:
34:95:4a:96:d3:a8:3c:9b:75:a0:1f:6a:7e:bb:6c:
75:b3:bc:aa:b4:a2:a7:19:d9:61:b4:b3:2f:b3:fa:
c5:16:af:ff:6b:75:71:53:34:df:84:dc:67:50:53:
6b:13:74:8f:82:9f:a2:a4:47:df:1f:fb:8e:74:5b:
6c:51:4e:2c:0b:fc:a9:fd:4f:15:d7:59:ca:32:e5:
93:0d:87:96:c5:35:a0:22:ce:91:d0:52:91:f4:d0:
18:4a:79:d1:44:b3:f0:dc:5f:ed:83:7d:83:2d:00:
cb:9b:5a:82:63:8c:fc:f6:15:4a:bb:23:ff:e5:e6:
7f:73:c3:27:d5:2f:85:44:a6:d7:8a:12:f9:20:89:
c9:29:b6:79:eb:bf:5c:7a:da:f0:c2:dd:bc:b7:fa:
cc:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B8:04:24:DD:AE:6D:DF:0F:E9:BA:9F:5E:1A:79:7D:8F:8D:1D:B9
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/NLgEJN2ubd8P6bqfXhp5fY-NHbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.34.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:5a:92:0b:d8:34:56:58:53:3f:76:d5:74:03:0a:1c:73:82:
ee:3b:d1:c4:79:57:09:e7:8c:81:4d:c0:f3:96:72:2e:88:b1:
ae:0b:73:69:8e:98:3e:cf:df:b5:f6:b7:5e:2a:8c:c9:45:35:
8f:d7:0e:fa:ff:34:69:10:49:47:c2:64:fa:7f:59:4f:a1:64:
72:db:24:d2:18:76:db:10:53:3e:a0:6a:2b:d0:c6:91:9f:56:
be:58:bd:cd:39:c7:a2:a3:49:c7:41:95:cc:64:1c:46:d0:e8:
e8:e1:55:d8:b4:25:23:dd:aa:fc:dd:23:30:8c:ad:5e:e6:3e:
42:08:40:af:69:af:09:51:a9:e1:b0:ee:ac:b0:d5:eb:8a:49:
ba:3d:82:4f:68:a3:2e:3d:fa:ed:74:f8:a6:81:57:f2:b1:f1:
97:cc:ff:f5:69:30:95:45:1d:43:7a:30:ad:a6:ec:66:7c:ab:
6a:6c:3d:c6:3e:a1:a5:81:82:9a:64:b1:16:ca:55:3b:5f:fb:
4e:e3:9d:e1:f7:db:1e:1c:fd:08:67:de:29:f6:a3:de:07:b4:
cd:8d:08:f8:a6:f2:e7:71:b0:a5:72:2b:e8:b0:44:b6:b2:45:
61:24:86:1d:ce:fb:73:e3:b4:ba:37:1c:c2:33:fb:05:a3:ef:
ec:6b:c2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:29 2024 by rpki-client on console-ams.rpki-client.org