Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/90f62b-7ae2-49d6-a42c-899f1e1b7360/1/NuKw43Vi_BlrkMyNwETp92FvVq0.roa
File: NuKw43Vi_BlrkMyNwETp92FvVq0.roa (raw, json)
Hash identifier: Z1BPwu0IaM+uRzEhrYBIRX/9gYWc4tWd/EkepXvAGF4=
Subject key identifier: 36:E2:B0:E3:75:62:FC:19:6B:90:CC:8D:C0:44:E9:F7:61:6F:56:AD
Certificate issuer: /CN=59c4cfbd871c42dd55a57bd0ff567134f322b23e
Certificate serial: 87E691
Authority key identifier: 59:C4:CF:BD:87:1C:42:DD:55:A5:7B:D0:FF:56:71:34:F3:22:B2:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WcTPvYccQt1VpXvQ_1ZxNPMisj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/90f62b-7ae2-49d6-a42c-899f1e1b7360/1/NuKw43Vi_BlrkMyNwETp92FvVq0.roa
Signing time: Sat 01 Jan 2022 01:50:41 +0000
ROA not before: Sat 01 Jan 2022 01:50:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210869
IP address blocks: 45.13.68.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8906385 (0x87e691)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59c4cfbd871c42dd55a57bd0ff567134f322b23e
Validity
Not Before: Jan 1 01:50:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36e2b0e37562fc196b90cc8dc044e9f7616f56ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:29:ff:50:80:98:88:00:6b:23:53:83:51:98:
9e:3e:c8:cc:15:00:f8:43:6d:6a:cd:d9:1c:27:f6:
3e:d5:22:0a:6b:39:cb:ff:25:a3:92:44:60:08:5c:
6c:b9:a5:51:43:dd:7c:e4:06:5e:0f:cf:fd:a2:70:
ed:26:68:ed:06:d1:e4:a5:c9:1f:ed:62:47:c4:de:
c1:33:ce:a2:1f:89:4c:70:ba:5f:f9:ae:2c:bf:fe:
af:31:b6:30:96:5a:07:8a:67:ef:48:77:72:f7:32:
8f:0a:8d:4a:09:93:21:06:27:f2:85:d9:1c:fc:fc:
02:c3:1d:77:a9:3a:05:a6:0c:b4:63:97:76:5f:88:
b0:c5:b4:11:3e:93:44:f7:06:10:e0:88:c3:c0:7a:
0f:34:0a:8b:77:84:36:f9:bb:4f:f7:25:5e:21:f9:
cb:ad:23:49:75:37:39:4d:8c:f4:4a:bf:eb:5c:44:
23:3c:3e:03:5c:d8:2d:31:d7:e7:fe:2d:9f:c6:10:
e8:fa:fe:4e:da:07:4b:8f:46:0e:7f:52:0d:31:9f:
02:62:85:ba:28:28:8e:eb:e5:b9:7d:0c:f3:68:81:
9c:6f:b2:69:4a:00:e3:34:01:72:61:f4:a4:87:0e:
5c:b8:e4:f3:a9:18:35:1c:b5:ee:4f:63:1c:29:0e:
b6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E2:B0:E3:75:62:FC:19:6B:90:CC:8D:C0:44:E9:F7:61:6F:56:AD
X509v3 Authority Key Identifier:
keyid:59:C4:CF:BD:87:1C:42:DD:55:A5:7B:D0:FF:56:71:34:F3:22:B2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WcTPvYccQt1VpXvQ_1ZxNPMisj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/90f62b-7ae2-49d6-a42c-899f1e1b7360/1/NuKw43Vi_BlrkMyNwETp92FvVq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/90f62b-7ae2-49d6-a42c-899f1e1b7360/1/WcTPvYccQt1VpXvQ_1ZxNPMisj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.68.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:ac:6f:06:43:1b:08:33:77:66:cf:a3:a8:ca:b6:d5:c2:06:
2a:f4:3e:2e:94:75:cf:9f:d5:e3:17:8b:63:96:36:30:41:6f:
f1:56:0f:b5:84:12:0e:aa:ec:60:7d:26:af:b4:12:4a:ce:da:
bc:be:8b:44:fe:a1:a3:82:54:f9:0c:ab:00:e2:ea:fe:5e:f2:
51:2e:38:78:a2:9a:bd:5c:4a:44:80:46:d7:41:92:12:f0:a1:
0f:89:37:88:7d:78:f8:54:e3:90:7b:90:57:0b:84:8d:4b:e4:
5f:4a:39:82:d2:f1:66:ba:3d:1e:70:7a:7e:64:5e:a9:83:e4:
19:c4:05:e2:b7:50:79:d4:cd:69:b9:29:ff:ca:64:e5:36:4a:
c1:e6:1f:1e:5c:e3:6b:6b:0f:dd:87:20:7c:c9:9c:32:be:52:
eb:d6:12:bf:d2:b2:83:be:60:58:6d:5d:04:b7:18:df:7f:b0:
de:ff:09:86:3d:e7:b8:eb:e7:46:d0:07:85:7a:38:4b:c3:4b:
50:d3:ef:8b:a5:bb:65:e5:d8:7e:03:78:36:5f:68:40:fb:84:
b5:8e:67:55:62:d7:18:12:71:e4:c3:a1:95:f0:58:8a:8f:23:
d2:6e:54:46:fa:31:f7:9a:2f:29:a2:bd:f3:fd:59:e6:15:d8:
a3:7b:79:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:09 2024 by rpki-client on console-ams.rpki-client.org