Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/nA2sfDxlk54s1m0VIx3TD2lzqG8.roa
File: nA2sfDxlk54s1m0VIx3TD2lzqG8.roa (raw, json)
Hash identifier: C7saLcMd86LwwAefPRb4yliIuwruh+IASyVkbOWJzCc=
Subject key identifier: 9C:0D:AC:7C:3C:65:93:9E:2C:D6:6D:15:23:1D:D3:0F:69:73:A8:6F
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 018390191D4D37CEF914C3234568E1E026DD
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/nA2sfDxlk54s1m0VIx3TD2lzqG8.roa
Signing time: Fri 30 Sep 2022 20:31:48 +0000
ROA not before: Fri 30 Sep 2022 20:31:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 132335
IP address blocks: 45.84.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:90:19:1d:4d:37:ce:f9:14:c3:23:45:68:e1:e0:26:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Sep 30 20:31:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c0dac7c3c65939e2cd66d15231dd30f6973a86f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:4c:bb:4a:83:7b:9c:94:b3:20:9b:95:bf:e8:
bc:29:37:73:84:50:1a:cd:33:27:16:a7:c3:2a:c8:
36:c8:58:d4:32:f0:06:d7:32:64:ad:91:69:54:23:
e1:fa:5e:52:45:15:88:d9:90:6c:c2:b9:da:e2:d5:
a1:79:42:23:1b:6f:e0:98:27:a0:da:50:c4:27:6b:
b3:31:35:1a:59:1c:54:ab:65:12:e9:c2:49:b9:de:
5f:27:02:09:18:27:52:1d:50:86:f3:2b:e8:b5:03:
17:c4:0b:9c:87:42:81:ac:fe:7d:33:86:92:f1:9d:
17:7f:cc:ff:04:74:34:27:93:8f:14:a8:cc:80:cb:
e2:b1:bd:d4:68:61:87:84:74:ae:e6:a7:cd:be:f4:
bf:44:b5:4c:72:af:6a:cd:2f:a4:16:4d:bb:e6:42:
06:20:1b:b9:95:36:33:d8:1c:9d:c8:94:fe:da:43:
b8:5d:5b:10:45:b1:a9:99:fa:70:3c:8e:c9:75:11:
f1:b7:51:4c:24:72:01:b1:b3:47:b0:db:ff:f5:8c:
5d:d9:e7:ff:2f:f5:53:a4:83:38:27:e2:1b:f1:80:
96:fe:1d:55:3f:a4:32:93:73:98:84:54:a2:e3:98:
dc:20:62:7c:28:95:53:2c:af:11:99:3d:96:22:73:
06:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:0D:AC:7C:3C:65:93:9E:2C:D6:6D:15:23:1D:D3:0F:69:73:A8:6F
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/nA2sfDxlk54s1m0VIx3TD2lzqG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.240.0/24
Signature Algorithm: sha256WithRSAEncryption
00:75:87:c0:5b:75:a1:9f:05:13:78:e0:c5:63:46:6a:72:d9:
12:d7:5b:05:6d:dd:29:75:3c:f7:50:04:e6:69:b4:2e:df:b5:
a9:91:d9:b3:ad:6f:7a:3a:bd:33:31:3b:7f:84:45:01:7c:04:
59:44:65:dc:73:27:0a:be:23:f0:bd:e3:81:76:cc:2c:78:66:
58:9a:1c:0d:27:b2:02:57:dd:d4:5d:09:40:e5:95:d8:9b:00:
ed:54:44:e0:d9:da:68:b6:55:4a:80:85:92:d8:39:71:9d:eb:
23:62:ae:a7:fa:05:6b:17:9d:cf:e2:83:53:2a:e8:0f:f3:29:
0a:88:37:c1:c8:26:91:af:4f:d9:bf:68:01:15:a3:4e:0b:f4:
49:46:3d:43:4b:f0:66:2a:65:64:80:a7:3d:7f:ea:2a:bd:fd:
c8:26:86:59:fe:42:71:3a:1f:d5:3a:b5:b0:64:f1:33:c8:75:
bd:4c:33:ea:22:9a:d0:ac:88:80:79:f9:d3:fd:e4:a1:32:7b:
9a:82:a4:d5:95:8d:04:2a:c3:c8:ad:8d:f8:17:76:2e:43:9e:
70:46:b7:11:e3:5a:d1:f1:a5:f8:cb:ea:98:c4:b9:e3:00:a0:
92:6e:31:a7:bd:c5:ec:37:5f:60:38:eb:b0:07:1f:da:22:51:
1f:4d:04:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:23 2024 by rpki-client on console-ams.rpki-client.org