Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/rn0TtqP8l8trQBWUWLxRcQcrcJE.roa
File: rn0TtqP8l8trQBWUWLxRcQcrcJE.roa (raw, json)
Hash identifier: JUx5B2jDNZWXRzLla+GGFErWZr0fHcU6b5oMJ/BmsHw=
Subject key identifier: AE:7D:13:B6:A3:FC:97:CB:6B:40:15:94:58:BC:51:71:07:2B:70:91
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0183794CF997CF1285F035D4BB87DD99EFB0
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/rn0TtqP8l8trQBWUWLxRcQcrcJE.roa
Signing time: Mon 26 Sep 2022 10:17:11 +0000
ROA not before: Mon 26 Sep 2022 10:17:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34549
IP address blocks: 45.138.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:79:4c:f9:97:cf:12:85:f0:35:d4:bb:87:dd:99:ef:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Sep 26 10:17:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae7d13b6a3fc97cb6b40159458bc5171072b7091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:88:0b:ff:57:d4:40:7a:85:a7:fd:34:ee:1d:
dd:4b:25:ab:76:33:7c:df:01:8b:df:7e:13:be:25:
a8:f8:44:f1:4e:8a:66:f2:fc:9f:e4:66:e8:13:db:
ad:6d:70:1b:63:3a:0d:40:aa:98:b8:57:17:91:e9:
06:df:03:3b:e1:1f:2c:d1:1f:15:04:5d:a4:59:86:
99:9e:f7:1a:6b:5c:17:f0:61:4a:04:3a:f7:d2:f8:
60:ca:b3:9c:b5:ee:e1:43:1b:04:af:e0:ef:c9:aa:
a3:ad:de:05:1d:b9:aa:cf:f7:d8:e4:ca:43:77:f3:
24:48:b7:a5:9e:1e:cd:d0:5c:9e:e5:1d:7d:fc:10:
89:69:20:e7:f7:8e:8d:00:40:9e:b3:d7:72:c1:53:
a2:47:68:7f:ea:52:0c:78:44:96:06:d6:aa:56:14:
6b:90:f2:30:fb:68:fe:80:c5:80:1d:84:22:75:6a:
fc:e1:c7:9e:0e:9c:eb:86:b3:08:a6:3e:c6:76:a1:
af:8a:58:59:64:d3:7d:2f:09:de:3b:4c:91:0d:6d:
32:06:4e:bd:3e:cd:02:ff:6f:50:9c:ac:6c:c1:1d:
bd:21:18:20:73:95:24:af:c7:bb:30:73:4d:9b:be:
8a:c3:2a:fe:57:5d:e9:76:a4:f5:ac:22:85:cc:86:
6d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:7D:13:B6:A3:FC:97:CB:6B:40:15:94:58:BC:51:71:07:2B:70:91
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/rn0TtqP8l8trQBWUWLxRcQcrcJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.180.0/22
Signature Algorithm: sha256WithRSAEncryption
62:fc:fc:fd:09:af:3c:51:a3:45:9d:c1:fc:47:61:05:09:d5:
21:ae:fe:2e:f2:bd:a9:bd:29:87:a7:8d:8e:c4:d6:31:16:01:
16:3c:66:6c:ae:c2:7f:fd:b0:30:33:6e:d2:97:ab:e8:5b:df:
2e:1c:66:78:07:23:ae:c1:99:d5:96:2d:30:a7:4a:90:82:96:
38:18:5e:ba:eb:66:f3:b3:9a:88:8f:ce:67:e8:85:27:04:97:
ed:9e:c8:c2:ac:6f:c1:e0:fc:cf:49:1a:2c:be:a2:f4:16:81:
63:25:55:46:81:d6:97:c7:ff:c0:b5:76:0a:8a:aa:24:ec:95:
1d:44:f8:f7:fd:dd:a2:56:c7:11:ac:60:9b:86:9b:0c:b0:05:
f6:80:9b:37:4e:38:39:ba:f1:d7:8d:1f:73:30:43:ba:22:54:
b3:de:48:e7:a4:a4:84:33:eb:3c:6b:81:81:a6:ea:b6:a3:5c:
e7:74:32:58:f4:4f:2c:8c:0d:f2:9e:ff:3a:c5:27:5a:cd:65:
ce:9b:2b:8b:29:af:27:c3:26:cd:c2:c0:ad:7f:64:64:23:a2:
92:f6:64:ab:5a:d1:91:7a:21:24:28:f2:96:f3:cd:8a:47:4c:
31:db:99:e2:80:b2:7b:09:68:d1:84:d0:28:85:2c:fb:0a:5d:
35:61:a6:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:19 2024 by rpki-client on console-ams.rpki-client.org