Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/nsWciPRvMTeIwQBQvIzg6xfP0Tg.roa
File: nsWciPRvMTeIwQBQvIzg6xfP0Tg.roa (raw, json)
Hash identifier: JwKc8mTmJOUSJi7mYx3RfpsEkIO6mlQLGD4TR28Zj68=
Subject key identifier: 9E:C5:9C:88:F4:6F:31:37:88:C1:00:50:BC:8C:E0:EB:17:CF:D1:38
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 01837A0DCEED5E1E33528C7D4D0E41FE4F43
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/nsWciPRvMTeIwQBQvIzg6xfP0Tg.roa
Signing time: Mon 26 Sep 2022 13:47:48 +0000
ROA not before: Mon 26 Sep 2022 13:47:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203950
IP address blocks: 45.128.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7a:0d:ce:ed:5e:1e:33:52:8c:7d:4d:0e:41:fe:4f:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Sep 26 13:47:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ec59c88f46f313788c10050bc8ce0eb17cfd138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b3:6e:04:71:91:a0:82:f6:db:02:ba:b8:05:
74:4a:e8:9e:3c:9d:70:8d:e6:2b:87:be:e1:df:cd:
3d:dd:3f:4a:bf:16:d2:c6:4b:4e:fc:5e:43:06:9e:
6c:8d:db:14:3e:fe:b2:55:e6:cb:f4:b0:83:90:0f:
8f:22:c3:14:dd:89:55:62:d8:e5:50:ca:29:5c:0d:
1d:d6:f7:5e:14:c1:9b:e3:cb:20:4a:c4:0f:bb:2f:
df:c2:3a:2b:07:18:8a:83:2d:15:6b:a8:4f:ed:3b:
b0:13:8c:57:f2:1d:58:e0:b6:9a:c3:3d:e3:7f:b4:
7f:e5:6a:8a:d6:99:bd:2f:5d:26:12:04:bf:81:da:
b7:27:2f:26:4c:b4:a8:12:78:e5:4e:66:d7:37:33:
3c:d9:69:72:e3:30:67:fd:bc:64:3d:bf:f0:47:1a:
57:4b:a7:2a:bf:c6:73:27:43:d2:42:cd:63:e6:96:
cb:c9:15:4e:a0:a9:de:ba:3a:5b:a2:ae:55:3a:f0:
60:e3:1c:48:8b:5b:d7:7c:cf:f3:2c:36:87:85:66:
fd:00:20:52:81:bd:c1:7b:f6:83:a0:94:85:ce:45:
07:89:2c:34:ae:90:91:54:20:2e:62:b5:02:e6:ef:
39:62:4c:25:22:09:92:cb:e4:1c:93:2c:f1:4d:05:
a5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:C5:9C:88:F4:6F:31:37:88:C1:00:50:BC:8C:E0:EB:17:CF:D1:38
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/nsWciPRvMTeIwQBQvIzg6xfP0Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.20.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:c6:eb:0f:2f:87:18:e2:61:5b:f5:95:78:36:3b:10:68:97:
b3:cf:e3:28:7f:1d:48:fc:69:c7:21:3c:fe:a5:36:5f:ee:e9:
99:66:cb:c3:ff:91:ed:d3:09:3a:23:0e:66:10:5b:28:a9:96:
fe:54:9c:52:c0:2b:43:b2:25:b9:12:67:2f:5d:60:17:a8:9b:
43:a8:36:37:7e:ea:4e:15:67:c0:77:0b:21:fa:a6:65:c7:ca:
fb:f1:a2:af:0c:38:49:66:42:ca:ed:fe:38:82:46:75:e4:1c:
57:a9:2b:6b:4f:1a:11:b8:9b:56:97:a7:a1:ca:71:41:de:ad:
30:86:fb:cf:b9:47:4a:0a:b1:eb:08:d6:41:b6:5d:27:a5:f9:
0e:78:63:37:a8:9f:d9:05:a1:55:61:08:87:99:8e:8e:1f:64:
d2:a7:1c:b0:70:98:7a:5d:7f:c6:1d:47:47:f1:fc:40:13:24:
b4:d7:5d:2a:a6:58:1e:e6:e3:18:ec:f2:ec:73:ca:a5:56:e5:
dd:1d:a0:1d:a6:c1:ab:d2:9e:56:cc:82:af:4d:b9:f5:f0:21:
63:a6:9d:f4:08:aa:d2:56:5f:10:b5:ab:df:c0:1b:c7:36:5b:
2f:33:99:54:3e:22:3a:4a:fb:cc:bc:fe:1d:4f:c1:58:ff:61:
be:77:e1:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org