Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/mq8nUIwKs0zBU2hEnYN7tuXgHsM.roa
File: mq8nUIwKs0zBU2hEnYN7tuXgHsM.roa (raw, json)
Hash identifier: 5ZINecDHNHRXRPtCMVQN+nfDhBSQByDkGUMUjbsPixI=
Subject key identifier: 9A:AF:27:50:8C:0A:B3:4C:C1:53:68:44:9D:83:7B:B6:E5:E0:1E:C3
Certificate issuer: /CN=36900183cf08a6e5bc807846294a46062e190e3b
Certificate serial: 01842F21B9F1842CA8C9A7E301C22CDDDA7D
Authority key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/mq8nUIwKs0zBU2hEnYN7tuXgHsM.roa
Signing time: Mon 31 Oct 2022 17:40:50 +0000
ROA not before: Mon 31 Oct 2022 17:40:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45996
IP address blocks: 45.11.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2f:21:b9:f1:84:2c:a8:c9:a7:e3:01:c2:2c:dd:da:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36900183cf08a6e5bc807846294a46062e190e3b
Validity
Not Before: Oct 31 17:40:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9aaf27508c0ab34cc15368449d837bb6e5e01ec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:34:6b:de:28:83:55:ee:c4:78:da:b9:f1:0f:
f4:57:20:8a:d9:81:f0:c4:98:91:34:27:a4:13:67:
19:e8:0b:42:91:7e:13:45:08:d6:bf:29:23:aa:91:
41:16:57:aa:01:66:7f:e4:3a:49:b1:33:26:c8:aa:
6e:4c:de:12:b3:97:de:19:b8:dc:1e:c1:c3:27:55:
2f:37:ef:20:fe:18:bb:27:a3:20:de:f6:db:10:86:
eb:c0:63:12:25:fa:0e:f5:e5:f9:97:94:c5:42:bd:
41:19:34:62:48:fa:03:34:e1:21:aa:66:f7:8f:be:
4b:51:cb:01:43:f5:a5:2d:e7:3e:38:01:f8:b4:66:
e9:94:58:90:b3:4a:32:b5:b8:c1:90:55:ef:b5:a6:
63:ec:ac:30:c5:1b:ba:da:2d:a1:46:69:20:8a:d4:
c8:bc:03:98:7b:e7:d1:91:90:81:7d:32:f7:ac:ca:
09:47:cf:0e:44:af:fc:8e:28:d9:a7:fd:92:38:57:
06:92:2d:da:fd:36:55:8e:89:c6:27:6e:52:68:53:
01:b5:eb:80:4b:19:ec:4d:bf:65:af:29:dc:52:37:
d6:66:ec:73:1d:5b:87:b3:26:6c:ca:d4:ff:89:74:
90:bb:f8:9c:74:39:a4:1d:2e:a2:32:da:8e:a6:f9:
b6:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:AF:27:50:8C:0A:B3:4C:C1:53:68:44:9D:83:7B:B6:E5:E0:1E:C3
X509v3 Authority Key Identifier:
keyid:36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/mq8nUIwKs0zBU2hEnYN7tuXgHsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.184.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:2c:1c:d2:ef:24:a9:a1:44:cc:1e:5e:69:b2:9b:94:27:b3:
e1:e3:c1:63:65:ef:79:98:cd:00:be:19:6a:a8:41:17:b0:aa:
14:b2:80:63:18:de:79:30:10:f1:4f:79:1a:48:18:82:a3:00:
95:61:fd:71:8e:5d:6e:39:37:fa:dd:05:be:f8:c9:d7:8b:d3:
25:82:b8:71:a7:9d:1e:53:c2:ad:7e:00:c4:d4:7c:47:2e:1b:
b6:78:83:c9:23:5d:e4:5c:16:b2:82:ce:2e:b2:cc:cf:31:39:
b4:84:28:59:3d:5c:e3:ac:e5:25:fd:db:83:12:e4:27:09:1a:
0b:48:a8:84:c8:54:da:83:11:a2:37:a2:23:8c:b7:6c:84:d4:
da:fb:93:3e:70:de:cd:8e:c3:ed:78:85:78:6a:61:28:44:3f:
2d:d2:a1:64:02:40:d2:9f:f9:3b:c4:c4:5a:ac:b9:d6:91:12:
f1:5e:dd:ab:cf:7a:3f:c2:56:eb:ab:74:d1:65:ca:39:87:94:
71:cf:47:3c:46:22:98:5c:3e:7e:8e:04:d1:c1:10:0f:f5:fd:
3b:fb:98:80:2d:6b:64:47:3a:0e:6b:35:4b:93:2b:d6:b1:18:
52:57:86:f4:65:e4:e7:7e:d1:ba:2b:08:d0:ef:e1:4c:48:60:
0c:ee:4d:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:52 2024 by rpki-client on console-ams.rpki-client.org