Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/b69633-c031-4d25-9e0e-65640f1c179a/1/nb-9Wq9PoKO7JzHNocgX9G-eYNI.roa
File: nb-9Wq9PoKO7JzHNocgX9G-eYNI.roa (raw, json)
Hash identifier: toKbV8xN+cOjZ9HsoG5HJiVUHzSGfqFz0u7tuAdY9qY=
Subject key identifier: 9D:BF:BD:5A:AF:4F:A0:A3:BB:27:31:CD:A1:C8:17:F4:6F:9E:60:D2
Certificate issuer: /CN=0d4b74d489c49278a3003994ac97fd407d7236e5
Certificate serial: 06CC44EB
Authority key identifier: 0D:4B:74:D4:89:C4:92:78:A3:00:39:94:AC:97:FD:40:7D:72:36:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUt01InEknijADmUrJf9QH1yNuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/b69633-c031-4d25-9e0e-65640f1c179a/1/nb-9Wq9PoKO7JzHNocgX9G-eYNI.roa
Signing time: Sat 01 Jan 2022 05:52:48 +0000
ROA not before: Sat 01 Jan 2022 05:52:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212751
IP address blocks: 45.66.145.0/24 maxlen: 24
45.66.144.0/24 maxlen: 24
45.66.146.0/24 maxlen: 24
2a10:7c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114050283 (0x6cc44eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d4b74d489c49278a3003994ac97fd407d7236e5
Validity
Not Before: Jan 1 05:52:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9dbfbd5aaf4fa0a3bb2731cda1c817f46f9e60d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a8:4d:64:f0:92:19:e5:9f:a8:a7:d9:44:9c:
52:89:ad:da:16:58:6b:74:5c:6a:56:1b:d8:fd:48:
57:08:39:6f:cc:25:c7:e0:03:bd:2c:41:92:7b:8e:
6e:5f:9c:7e:15:31:72:38:d4:2a:56:b7:dd:d5:23:
40:63:4c:14:9d:ca:a4:dc:d1:22:8e:8f:b5:ea:33:
5c:26:ee:f4:70:6c:ac:fa:c0:4a:6e:9e:61:36:08:
50:b6:bc:91:f7:1e:6e:6d:60:c1:dd:05:79:59:a4:
b6:a3:05:b4:be:a6:49:7a:42:50:09:16:ba:a7:48:
cd:9b:cc:59:94:33:45:ba:7e:51:9f:0d:fc:7e:93:
dd:9c:af:24:6a:38:92:05:f5:e7:8f:e3:6b:a6:3b:
6b:3e:be:38:0a:ff:ef:f4:2b:03:44:d5:af:95:c7:
ab:f6:63:92:b6:d9:86:70:bb:1b:4f:7d:e6:eb:23:
14:a7:de:26:81:06:dc:35:1d:09:82:6f:c3:7e:95:
4c:bc:6b:2e:d0:ae:43:e4:8d:4d:be:a6:d3:b0:8b:
ef:8b:9b:6c:6f:29:91:85:68:84:78:cd:cd:da:11:
b7:12:2f:26:09:e2:25:ee:a1:85:94:d8:7c:49:b9:
f8:2e:64:8d:a6:fd:e2:c0:13:16:bb:2f:10:ed:ad:
ce:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:BF:BD:5A:AF:4F:A0:A3:BB:27:31:CD:A1:C8:17:F4:6F:9E:60:D2
X509v3 Authority Key Identifier:
keyid:0D:4B:74:D4:89:C4:92:78:A3:00:39:94:AC:97:FD:40:7D:72:36:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUt01InEknijADmUrJf9QH1yNuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/b69633-c031-4d25-9e0e-65640f1c179a/1/nb-9Wq9PoKO7JzHNocgX9G-eYNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/b69633-c031-4d25-9e0e-65640f1c179a/1/DUt01InEknijADmUrJf9QH1yNuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.144.0-45.66.146.255
IPv6:
2a10:7c40::/29
Signature Algorithm: sha256WithRSAEncryption
a2:6a:0f:81:2c:b8:04:99:5c:bf:45:cc:0d:ab:32:ca:2a:f4:
8b:8d:7f:6a:70:3c:95:5b:c9:ba:b3:f8:b9:37:b0:b4:cb:6d:
c1:2e:cf:58:e6:cc:7c:81:26:83:09:05:36:9c:9b:d1:ed:4a:
98:4a:44:02:52:6e:95:f4:22:85:98:53:57:83:27:b0:25:b5:
c6:af:29:73:d4:b6:27:37:39:92:5d:d7:26:3c:c0:67:e0:6f:
db:65:c6:74:c1:c6:ae:23:f0:c3:a0:f0:86:85:41:d6:b9:8b:
23:26:40:58:92:c0:31:f3:ed:f6:2d:61:ba:4f:3e:d3:2d:f0:
84:a5:1c:a5:0b:b6:5b:af:86:9b:9a:ca:bc:e9:82:bd:9d:fd:
91:1d:eb:45:7e:f0:f8:c0:d5:cc:ef:3e:27:37:3e:14:c4:d2:
0d:a3:c1:24:62:b6:c7:fd:34:37:ca:8c:48:fc:ed:7a:03:1a:
d1:6a:d5:f6:88:fe:51:6d:25:26:fd:43:5b:14:b6:de:ca:5a:
52:df:c9:0e:e8:f6:56:78:73:61:a2:8f:23:57:d0:06:c7:ae:
f0:97:35:11:b4:07:3a:1f:ef:fe:6e:5b:e2:66:77:0a:58:80:
71:49:63:0a:a9:f7:8a:da:82:39:d7:b1:e7:d1:8e:a5:c4:8d:
24:f6:88:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:39 2024 by rpki-client on console-ams.rpki-client.org