Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9690d0-a2ab-4b74-b104-d9e1b81dd1c7/1/6NniK2eqqeZpd5tPKB6dAF3HI60.roa
File: 6NniK2eqqeZpd5tPKB6dAF3HI60.roa (raw, json)
Hash identifier: RIrNkNESaqfLoa59F6OF14P/9JPZTBvRuv+nQcewD1E=
Subject key identifier: E8:D9:E2:2B:67:AA:A9:E6:69:77:9B:4F:28:1E:9D:00:5D:C7:23:AD
Certificate issuer: /CN=1086a7c0dea73dd0f94e2e9fe1ac9ab6701b2253
Certificate serial: 07568E84
Authority key identifier: 10:86:A7:C0:DE:A7:3D:D0:F9:4E:2E:9F:E1:AC:9A:B6:70:1B:22:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EIanwN6nPdD5Ti6f4ayatnAbIlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9690d0-a2ab-4b74-b104-d9e1b81dd1c7/1/6NniK2eqqeZpd5tPKB6dAF3HI60.roa
Signing time: Sat 01 Jan 2022 01:57:44 +0000
ROA not before: Sat 01 Jan 2022 01:57:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45014
IP address blocks: 45.152.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123113092 (0x7568e84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1086a7c0dea73dd0f94e2e9fe1ac9ab6701b2253
Validity
Not Before: Jan 1 01:57:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8d9e22b67aaa9e669779b4f281e9d005dc723ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e0:9d:d6:63:6d:64:47:0a:1e:85:7c:e9:6d:
23:ba:98:41:d7:81:34:47:35:0a:1e:c7:29:37:65:
d0:85:a4:41:e6:cb:40:4d:a2:83:69:c4:4f:ff:04:
dc:8b:13:15:9d:53:37:7c:ae:81:18:a6:92:77:a2:
40:d1:18:1f:d7:a1:c0:cf:d6:20:8e:de:77:b9:d7:
73:3a:15:71:c9:9d:00:58:7f:22:a1:9e:cc:1f:31:
81:c6:ee:90:cf:73:e9:ba:08:3f:7a:ef:8f:e0:d0:
c3:aa:23:84:a6:30:83:f8:be:ea:ea:0b:89:41:21:
ff:b4:7a:03:97:55:87:3f:9e:c4:98:39:66:2f:08:
ec:cc:97:21:c3:26:6c:3d:4a:92:61:26:6c:f9:96:
85:5a:f2:f5:ba:02:0d:32:1c:8b:2c:75:fb:37:3f:
77:d2:db:32:47:ac:30:97:e9:30:22:41:a8:c2:4f:
f9:70:58:26:2b:96:dc:3f:8e:13:09:4c:07:34:8c:
5c:8e:54:a5:45:3b:09:cb:65:00:e7:8b:e8:bb:72:
b2:ea:7e:12:eb:aa:f1:8a:16:b4:12:93:39:9c:90:
df:fd:b3:fa:69:15:e9:f1:bd:42:da:2f:90:a1:fa:
f9:a4:64:d4:6b:c2:c6:6f:90:83:25:2b:21:88:29:
ee:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D9:E2:2B:67:AA:A9:E6:69:77:9B:4F:28:1E:9D:00:5D:C7:23:AD
X509v3 Authority Key Identifier:
keyid:10:86:A7:C0:DE:A7:3D:D0:F9:4E:2E:9F:E1:AC:9A:B6:70:1B:22:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EIanwN6nPdD5Ti6f4ayatnAbIlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9690d0-a2ab-4b74-b104-d9e1b81dd1c7/1/6NniK2eqqeZpd5tPKB6dAF3HI60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9690d0-a2ab-4b74-b104-d9e1b81dd1c7/1/EIanwN6nPdD5Ti6f4ayatnAbIlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.252.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:41:f4:f9:bd:20:6f:a3:15:38:07:c2:c6:c0:47:8f:fc:f1:
98:19:e6:7d:ec:d8:e9:9c:31:c3:b0:9c:7c:fe:6b:04:f1:15:
6c:ad:b4:0b:29:c9:29:b6:9b:e9:6a:14:21:31:40:3b:84:5e:
a6:48:86:ee:43:ad:5e:e7:4d:9d:63:54:75:5f:84:2d:d9:4c:
a0:cd:b5:d1:98:97:d5:ca:38:b9:7d:97:5b:29:8d:a9:1d:a6:
4b:2a:38:4a:b8:37:ec:bf:9c:60:38:86:93:f0:35:6d:91:f2:
1a:c8:94:0e:14:5a:66:c9:62:62:65:ca:f0:42:22:f0:27:be:
23:f1:42:9c:9e:c2:b6:30:d4:45:0b:9a:b9:f8:be:d1:45:b7:
e5:cb:40:66:a0:d9:b8:c1:ec:f6:50:9d:a9:3f:c0:35:d3:8f:
07:0a:7d:13:8a:e5:6b:ab:d5:7a:fc:d8:b8:10:27:4c:3e:4e:
87:5f:8d:0c:5b:49:04:2d:ae:dc:67:2d:f4:17:d5:88:1e:f8:
58:45:87:49:bf:27:09:2d:f2:43:d9:18:62:20:6a:4b:22:39:
2a:32:9e:e5:58:b6:97:79:eb:cf:da:11:f5:46:02:a2:cb:70:
61:b2:94:af:09:9d:f6:23:04:3f:1f:2b:77:4a:e5:2c:4b:7a:
1c:dc:a4:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:04 2023 by rpki-client on console-ams.rpki-client.org