Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/nGRZs4h3XknH_ATWH_t6St_v85w.roa
File: nGRZs4h3XknH_ATWH_t6St_v85w.roa (raw, json)
Hash identifier: CYv0lM38LucQoMzEDXpD8WcjRUuIr7E6vKnY90yz07Q=
Subject key identifier: 9C:64:59:B3:88:77:5E:49:C7:FC:04:D6:1F:FB:7A:4A:DF:EF:F3:9C
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: 012962C1
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/nGRZs4h3XknH_ATWH_t6St_v85w.roa
Signing time: Tue 31 May 2022 20:20:13 +0000
ROA not before: Tue 31 May 2022 20:20:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 45.143.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19489473 (0x12962c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: May 31 20:20:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c6459b388775e49c7fc04d61ffb7a4adfeff39c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4b:ae:a6:57:85:d4:c8:48:58:5f:89:5a:3d:
e3:dc:c3:d5:85:8f:e9:73:ac:ff:9e:7c:23:a3:c4:
0b:a3:20:54:b8:37:db:e6:e0:a8:42:fc:42:f7:1e:
33:96:8f:86:0d:ea:d9:a3:e2:69:0e:43:fa:b5:57:
2c:58:6f:53:c6:09:69:a1:05:7c:d9:8d:6d:2c:0d:
7d:0f:8e:24:4c:5c:26:e9:d1:9e:4d:10:01:b5:81:
cd:24:69:ee:ac:3f:a1:37:84:98:f8:1e:75:3e:80:
08:ac:28:bc:25:e6:0c:9f:78:b3:90:5f:93:26:f1:
ec:73:bb:a3:11:ff:83:c5:61:b9:7b:a4:a3:62:73:
92:9e:e7:3e:4b:85:65:95:7f:c9:7c:32:11:3c:66:
86:29:64:54:cf:fb:46:11:4b:c7:b0:14:cb:a1:fd:
1b:12:3d:2e:a8:a4:21:ac:89:78:36:d5:7a:e0:53:
1a:ab:27:d0:94:a2:61:d2:3b:98:99:3a:69:7c:3c:
ca:8e:3d:0b:28:a1:a7:a3:49:70:bb:d7:8e:3c:97:
29:a8:8d:c0:a9:2c:4c:e0:13:0a:e2:b9:da:7c:0f:
4f:2c:2f:31:f6:a1:4b:b7:bd:43:a1:2d:fe:14:2c:
f1:8f:f9:17:ae:4b:dd:1a:11:9a:96:82:15:3e:a8:
34:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:64:59:B3:88:77:5E:49:C7:FC:04:D6:1F:FB:7A:4A:DF:EF:F3:9C
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/nGRZs4h3XknH_ATWH_t6St_v85w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.9.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:14:8f:6a:b5:fe:c1:88:a4:9d:79:5c:c4:6a:1b:bb:22:06:
d7:33:e1:14:91:67:bb:27:65:ec:da:48:2f:35:ea:23:4e:fe:
f0:11:0f:34:5f:b7:28:61:a6:dc:0b:a0:cf:10:da:ba:76:79:
0b:ae:d6:0b:d3:03:76:71:e3:a3:e3:e9:45:df:63:e1:32:2e:
d2:a0:ae:06:e5:44:32:0f:19:20:52:61:9e:41:4f:85:4a:53:
a1:06:9f:32:29:67:5f:68:1e:b0:7a:37:be:dd:0c:bb:28:5a:
93:4b:57:0e:db:25:28:5d:4c:10:16:12:54:b4:87:d9:26:fa:
1c:78:e8:51:bf:c8:0a:85:69:5e:f2:94:41:38:84:17:87:eb:
9c:b5:f8:5a:28:4f:9a:b8:d6:89:b6:3e:9f:41:71:60:7f:1a:
56:01:1a:46:3f:1f:09:d7:60:70:2f:2a:7f:57:57:fb:bf:ff:
f7:78:02:65:92:0b:43:50:f3:14:8e:16:a0:bf:5c:50:f6:5e:
aa:6e:55:91:69:4e:19:82:f9:87:cf:e4:7c:e3:0a:21:51:f1:
6a:50:9f:6a:e5:3f:bd:06:bc:31:bd:73:08:52:b7:a2:1b:50:
f6:68:41:3d:cd:29:e1:3f:f1:17:e8:9b:5e:ed:16:3e:47:36:
b4:91:65:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:02 2023 by rpki-client on console-fra.rpki-client.org