Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/NvaDt1eJ7qy6SpEA2pXZntGU7OE.roa
File: NvaDt1eJ7qy6SpEA2pXZntGU7OE.roa (raw, json)
Hash identifier: pnKtujHsD8a828hW5yvBFP5kQ4hym83wb3CoxkhMhpA=
Subject key identifier: 36:F6:83:B7:57:89:EE:AC:BA:4A:91:00:DA:95:D9:9E:D1:94:EC:E1
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 01824A0785DAC788D81264B85E862EC354D5
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/NvaDt1eJ7qy6SpEA2pXZntGU7OE.roa
Signing time: Fri 29 Jul 2022 12:56:23 +0000
ROA not before: Fri 29 Jul 2022 12:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 45.159.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4a:07:85:da:c7:88:d8:12:64:b8:5e:86:2e:c3:54:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jul 29 12:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36f683b75789eeacba4a9100da95d99ed194ece1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:77:33:ac:db:41:2c:bb:3a:58:e2:fb:d6:6b:
ed:27:29:0c:97:77:e0:e9:03:ed:07:91:13:bf:2f:
b3:57:4f:17:17:8d:0c:7b:a6:c4:fe:45:ca:63:97:
ef:92:ff:c1:65:83:1b:76:19:12:de:5a:67:e7:6d:
3f:72:da:ee:64:67:da:f1:8d:d9:91:61:ee:1f:83:
5c:a6:5c:e4:d4:65:24:24:a9:5a:29:b4:ac:70:5a:
bc:9f:47:7b:a4:2e:81:a8:aa:17:12:2a:4a:2f:de:
bf:ec:46:5e:d9:17:49:39:66:ae:92:7a:5a:77:ae:
bc:8d:0e:b2:8e:aa:86:ce:60:65:96:91:b6:42:ba:
58:a2:66:ea:d5:5a:da:1d:e7:56:8c:a0:7a:a1:25:
c9:ba:b0:80:f6:72:9a:b7:46:13:5d:4e:19:df:e0:
51:66:d8:2f:8d:e0:75:ad:97:d7:6b:be:84:30:0a:
4e:0f:d6:27:e0:b8:4a:0f:76:93:00:ef:d9:dd:ad:
47:07:82:83:0c:0b:c8:c0:11:b2:8f:b8:ec:44:55:
e1:95:95:e0:0d:82:83:6c:70:b0:b0:d7:7c:fb:1d:
f5:37:cb:70:e7:a7:70:54:44:fe:42:36:e9:f4:fe:
19:61:f0:dc:eb:b8:a0:80:5f:49:c3:b4:01:28:ae:
47:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F6:83:B7:57:89:EE:AC:BA:4A:91:00:DA:95:D9:9E:D1:94:EC:E1
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/NvaDt1eJ7qy6SpEA2pXZntGU7OE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.248.0/24
Signature Algorithm: sha256WithRSAEncryption
34:ae:ab:de:37:fb:1b:16:7c:2d:89:d4:0d:f5:d0:80:54:70:
38:64:ff:63:4f:dc:55:1a:4e:6b:6d:4b:84:2b:dc:20:24:2e:
e8:97:13:20:f5:e3:5e:ca:bd:64:b4:33:d2:ab:e4:c0:b1:4d:
51:63:70:bb:e7:8c:96:64:30:1a:ba:bf:e6:aa:21:c7:6b:70:
91:6a:ba:2d:a6:ba:6b:2f:56:45:33:e3:82:b9:00:80:d5:42:
9b:1d:e8:0c:96:e8:82:29:fc:33:d1:4e:59:21:16:e4:2e:db:
4a:a5:f9:81:9a:70:0a:da:75:b8:e0:69:4f:12:f6:5f:4f:2b:
45:ea:03:d8:d4:84:5d:e2:38:1b:4b:0d:ce:74:0f:fe:fd:7a:
a3:5b:db:9c:5e:f0:b0:78:71:b1:a9:04:f7:c4:75:16:73:08:
ae:e3:ea:39:83:ae:fb:36:75:16:69:bc:9e:52:b7:f1:01:be:
4d:3e:74:2d:7c:3e:17:be:2b:df:c5:09:99:35:c3:73:1a:7b:
2b:ef:d0:14:6d:a6:8b:42:09:dc:83:9e:01:0a:f3:a6:27:2d:
a5:e7:9f:56:96:0f:a6:ae:26:ba:e4:5c:34:dc:18:56:32:fb:
8e:7d:48:e8:c5:8f:b0:39:42:ba:12:f8:af:2f:0a:b9:f3:45:
36:08:6d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org