Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/NXMD9kmiXNFb0SI6tr2j0itXtpI.roa
File: NXMD9kmiXNFb0SI6tr2j0itXtpI.roa (raw, json)
Hash identifier: nptBuvEDN6rI7Jxo0u9LQssb35HJ35WprqL/OoECOC4=
Subject key identifier: 35:73:03:F6:49:A2:5C:D1:5B:D1:22:3A:B6:BD:A3:D2:2B:57:B6:92
Certificate issuer: /CN=40d55b78836a93fb6f9ec9fa7a79ed9b8bea2ba1
Certificate serial: 075F6409
Authority key identifier: 40:D5:5B:78:83:6A:93:FB:6F:9E:C9:FA:7A:79:ED:9B:8B:EA:2B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNVbeINqk_tvnsn6enntm4vqK6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/NXMD9kmiXNFb0SI6tr2j0itXtpI.roa
Signing time: Sat 01 Jan 2022 07:59:15 +0000
ROA not before: Sat 01 Jan 2022 07:59:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 45.129.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123692041 (0x75f6409)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40d55b78836a93fb6f9ec9fa7a79ed9b8bea2ba1
Validity
Not Before: Jan 1 07:59:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=357303f649a25cd15bd1223ab6bda3d22b57b692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c8:06:bf:66:2d:3e:79:6f:4f:b9:63:7b:54:
46:f3:77:32:1a:71:84:79:c1:89:c1:13:c2:bd:29:
0e:df:42:e8:e1:af:91:c8:42:22:05:de:21:ba:43:
d1:05:2d:6d:4a:83:15:27:4e:64:62:4c:05:b2:d5:
0c:d7:4c:24:ae:3c:52:6a:86:6b:4d:dc:ea:c5:88:
69:81:3e:aa:f1:cf:43:0f:ce:2a:cc:e7:b9:c9:39:
23:fc:db:87:8b:39:ac:b3:68:0e:d0:d8:72:27:27:
74:25:34:3d:ec:19:b6:71:90:f8:d2:26:8a:f4:d0:
8c:20:30:a3:f3:04:b6:a9:5f:34:8c:e4:cc:58:2f:
c2:10:e6:d1:f8:6e:b5:a8:e4:92:f1:d4:f7:6e:fe:
b8:27:9b:9d:73:6a:a2:19:e8:4b:3f:d6:b7:a2:3d:
b0:fe:aa:c7:86:ab:9b:85:f5:51:2f:6d:f2:58:52:
14:ec:a5:8c:37:93:a6:b3:51:92:f8:84:f6:3f:43:
78:23:b1:65:68:aa:b1:4e:68:4b:a6:30:a7:87:4e:
9b:71:72:6c:8a:c1:5a:21:df:3c:63:64:11:e1:2d:
0d:0b:1e:06:80:5e:80:08:47:6e:55:56:53:ba:6a:
3d:1e:60:01:c5:44:78:3f:ac:f9:0f:1e:ac:af:63:
47:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:73:03:F6:49:A2:5C:D1:5B:D1:22:3A:B6:BD:A3:D2:2B:57:B6:92
X509v3 Authority Key Identifier:
keyid:40:D5:5B:78:83:6A:93:FB:6F:9E:C9:FA:7A:79:ED:9B:8B:EA:2B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNVbeINqk_tvnsn6enntm4vqK6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/NXMD9kmiXNFb0SI6tr2j0itXtpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/QNVbeINqk_tvnsn6enntm4vqK6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.192.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:0a:c3:94:d0:9a:51:41:47:84:b3:ea:9e:fe:72:10:5c:13:
64:13:dc:b3:c9:fa:ed:8a:0a:a6:4d:54:70:7f:0e:70:60:59:
6d:3f:e1:24:b5:9d:21:53:24:dd:d6:6b:47:08:6a:9f:db:67:
c6:65:0a:cf:19:e6:3f:f5:da:3e:55:41:ce:b9:ad:b6:21:4f:
5a:b2:0a:5d:28:ed:ee:12:f3:78:c2:d5:cc:a3:d5:fd:b3:09:
b1:c7:56:a7:43:5b:b4:46:86:fb:1e:c3:5d:4c:41:af:0c:34:
fe:ef:86:c1:9b:ce:32:72:7a:b5:98:39:c7:ad:f3:85:92:86:
60:13:cc:cc:dd:5e:5d:59:aa:26:1a:4e:b1:84:e0:88:2e:e5:
aa:b2:59:8b:c5:28:85:ce:4b:f5:4e:5b:87:c8:d4:a1:de:93:
c6:f9:b3:c8:e2:86:e2:0c:0a:1a:3d:5c:1c:11:d2:1d:cb:49:
b2:f0:30:82:e3:45:ef:aa:8c:81:19:be:ba:29:b3:f2:53:68:
ae:b2:ee:15:82:b4:d1:f6:09:6b:39:80:c6:69:41:b5:60:f0:
57:23:44:a5:99:ce:33:66:4a:83:97:1a:99:5b:bf:d1:46:46:
80:2b:9b:19:0a:5f:5b:f3:49:48:4e:2e:39:d5:d8:cd:e3:75:
97:2f:61:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:18 2024 by rpki-client on console-ams.rpki-client.org