Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/NQr0A3nvnI9TeT0by-bBYv8pHrQ.roa
File: NQr0A3nvnI9TeT0by-bBYv8pHrQ.roa (raw, json)
Hash identifier: l1DmtL8xNFsMOkFnFlUphLJ7cOug3ooAoJOkUyGmtMQ=
Subject key identifier: 35:0A:F4:03:79:EF:9C:8F:53:79:3D:1B:CB:E6:C1:62:FF:29:1E:B4
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 180813B6
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/NQr0A3nvnI9TeT0by-bBYv8pHrQ.roa
Signing time: Fri 10 Jun 2022 11:02:13 +0000
ROA not before: Fri 10 Jun 2022 11:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.84.240.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403182518 (0x180813b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Jun 10 11:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=350af40379ef9c8f53793d1bcbe6c162ff291eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:43:5e:53:ec:49:2e:4f:d9:89:06:b9:fb:66:
20:6e:15:5b:62:6d:27:56:3b:ef:0d:48:2d:b1:87:
ba:8d:99:a2:10:cb:86:9d:b1:46:25:0e:29:63:8e:
b7:b8:6f:a6:e7:3d:7a:ca:44:e0:ae:ca:77:8b:c6:
b9:fa:ef:52:d4:32:d6:4d:9d:f7:6f:be:48:48:d6:
9e:47:b7:2e:80:8b:67:a8:03:1d:24:d1:22:0e:3c:
57:50:14:4c:24:75:e1:f6:8f:83:39:ff:29:70:3a:
b2:bd:ef:8e:87:c4:e8:b9:46:bd:73:0f:cf:d8:c1:
f6:29:32:39:f7:ed:86:48:19:96:5a:25:f9:0b:12:
a9:65:d7:66:39:bd:54:65:a6:9b:7d:f1:45:4f:1c:
8c:45:f8:c5:19:fa:f1:ac:02:d9:dd:a0:11:90:34:
d9:ec:70:51:7d:33:2d:dd:f0:84:3a:02:69:06:2b:
9e:41:b1:c6:cd:5d:ac:2b:a5:eb:5d:b7:19:7c:0c:
65:b3:05:42:07:21:f7:17:fb:d7:0f:3f:97:2f:a2:
39:2d:ef:c0:83:74:9b:ea:25:c7:ce:fc:71:21:02:
26:75:f0:8d:fa:f7:47:d5:60:79:88:78:8b:aa:86:
68:e1:10:f7:44:19:4e:0b:0c:93:b1:ed:e7:c3:61:
bd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:0A:F4:03:79:EF:9C:8F:53:79:3D:1B:CB:E6:C1:62:FF:29:1E:B4
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/NQr0A3nvnI9TeT0by-bBYv8pHrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.240.0/23
Signature Algorithm: sha256WithRSAEncryption
67:75:fe:17:b8:f4:19:47:ad:92:5c:ce:6f:e3:c5:23:68:65:
39:c4:06:57:a7:99:81:6d:b5:5b:b0:ed:ea:f8:79:44:75:90:
f3:8d:ec:43:2e:21:67:a6:e3:1f:bb:e4:5c:45:fb:5b:d5:bd:
c0:b5:f8:9e:da:12:76:92:ec:e4:62:ae:e1:8d:61:69:12:2d:
fb:d5:89:95:e7:e6:da:09:af:03:7e:36:e5:a4:58:25:4c:24:
27:b8:61:9f:fc:a8:d6:2a:71:4e:ec:0f:1b:c4:97:98:6b:0e:
3e:4c:d4:04:f1:08:2d:bc:9e:6f:bb:05:3c:fa:69:91:25:d7:
aa:d0:27:aa:a3:8d:9b:19:b1:4d:c2:56:39:e8:02:6d:ea:48:
d3:0e:37:b3:fd:de:92:83:3c:8b:5c:04:20:4a:26:18:06:a5:
b9:91:e4:02:a8:06:bc:61:71:57:3a:87:3d:7a:1d:7a:02:cc:
b9:ef:7b:ed:aa:8e:8f:61:cd:27:d2:56:82:5e:4b:26:a9:98:
cf:f6:f3:fa:b8:aa:e2:0f:9d:d3:6c:d4:1a:25:7b:91:bd:16:
09:e5:f9:0d:b7:85:ae:63:3b:04:c9:08:2b:8b:4b:13:c5:41:
65:38:69:2a:6a:43:a4:72:47:b2:7e:cd:2b:d4:c6:0c:0f:6a:
08:ac:f8:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org