Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/NPq8NHZeJaL5MX_hmcM3oMJRDyY.roa
File: NPq8NHZeJaL5MX_hmcM3oMJRDyY.roa (raw, json)
Hash identifier: 6jJEOukpxhL+qryoyX7ngOwjAjRCATJcLERuwUhoCqE=
Subject key identifier: 34:FA:BC:34:76:5E:25:A2:F9:31:7F:E1:99:C3:37:A0:C2:51:0F:26
Certificate issuer: /CN=304e59a223f4bcb823492fb1096c3a82310c03da
Certificate serial: 08BC7A40
Authority key identifier: 30:4E:59:A2:23:F4:BC:B8:23:49:2F:B1:09:6C:3A:82:31:0C:03:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/NPq8NHZeJaL5MX_hmcM3oMJRDyY.roa
Signing time: Sat 01 Jan 2022 01:02:09 +0000
ROA not before: Sat 01 Jan 2022 01:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42032
IP address blocks: 45.14.60.0/22 maxlen: 22
2a0e:b581::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146569792 (0x8bc7a40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=304e59a223f4bcb823492fb1096c3a82310c03da
Validity
Not Before: Jan 1 01:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34fabc34765e25a2f9317fe199c337a0c2510f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d1:4c:e8:39:7f:7c:ba:45:e2:a8:26:45:ea:
30:77:23:29:d5:61:b7:31:7d:e1:07:91:46:bd:85:
10:88:0c:55:3a:b2:6f:c7:4b:ed:d9:05:a2:7e:59:
1e:7a:92:2c:2a:82:87:f4:38:84:b5:da:62:34:b1:
bc:26:9f:ba:59:bd:8a:b5:83:55:30:e5:e4:cc:47:
5e:43:11:29:13:ee:76:2e:0b:60:8b:32:3f:34:a9:
1c:bd:c5:9f:49:92:27:18:52:28:82:fb:91:0d:97:
6e:ec:7b:54:22:ae:bb:6d:32:e1:a1:18:ee:55:33:
e1:54:65:6f:b1:6d:df:39:43:60:72:a4:6c:f4:cf:
f9:f4:22:17:47:de:0c:61:34:e4:3a:af:99:df:f0:
ed:34:df:a3:fe:9b:e0:0c:60:4f:5d:38:7d:f6:1b:
ce:d2:a1:5d:54:6f:8f:86:3e:46:f8:9b:21:4e:9c:
8e:86:c1:9f:b5:9a:97:02:0f:b8:1a:cb:0e:f0:16:
78:15:fa:f8:e3:d1:11:55:17:91:7c:c4:44:90:bf:
03:2b:90:2d:d4:f7:20:c8:62:7d:ac:5c:ca:15:92:
30:35:48:95:1b:a2:99:30:5d:e4:b1:8f:dc:ba:cb:
85:c4:3b:ed:19:a0:a4:2c:dd:43:f7:aa:ac:ec:13:
28:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:FA:BC:34:76:5E:25:A2:F9:31:7F:E1:99:C3:37:A0:C2:51:0F:26
X509v3 Authority Key Identifier:
keyid:30:4E:59:A2:23:F4:BC:B8:23:49:2F:B1:09:6C:3A:82:31:0C:03:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/NPq8NHZeJaL5MX_hmcM3oMJRDyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.60.0/22
IPv6:
2a0e:b581::/32
Signature Algorithm: sha256WithRSAEncryption
b1:6e:eb:02:1d:2b:57:d4:04:9f:13:36:c7:58:59:2e:9b:63:
87:ba:79:79:76:b2:ad:c2:40:c3:7a:a0:f8:49:e5:5e:34:91:
ab:a4:80:3c:92:8d:fb:ca:65:40:5e:3a:f9:a9:fd:42:20:a6:
5e:61:e4:70:c3:38:6c:0c:63:9a:2d:d9:97:ed:ca:e5:2a:fb:
01:54:ee:c3:b3:fd:b6:1b:e4:38:db:a8:ff:06:b4:82:4c:c5:
27:00:86:96:4d:21:1b:03:f6:da:8a:9e:e0:2c:40:16:3d:cb:
70:8b:64:e1:9c:c6:fc:54:29:9f:5c:20:05:f8:95:55:03:2a:
4a:78:96:4b:c1:7a:ce:12:88:84:e8:f5:40:b2:ff:0a:63:53:
f0:c5:5b:78:54:7b:26:2c:17:6e:1e:fc:f3:e8:b5:d5:6f:73:
2c:50:83:3b:45:c3:0b:b5:97:1d:35:09:e9:e4:74:3a:3e:d3:
7e:79:c2:b9:3a:fc:cc:3e:dd:21:ed:b5:a5:cc:55:f6:bf:41:
79:3e:94:6a:0f:e6:fd:cc:73:3c:5e:70:e7:b3:10:32:cc:33:
cc:c7:16:9f:90:8f:93:af:70:be:96:08:b9:3d:69:a6:d9:7e:
6e:10:cd:ac:dd:c3:0c:b9:5d:56:4a:3a:98:1d:ad:2f:38:51:
da:6c:0f:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:54 2024 by rpki-client on console-ams.rpki-client.org