Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/N4g3pXuYS5WV_14VOiWiGJ0ud50.roa
File: N4g3pXuYS5WV_14VOiWiGJ0ud50.roa (raw, json)
Hash identifier: vSQfH6MK2YU+XA0EAw0J+pjCDmEG0N7GYB3dmPm6bLw=
Subject key identifier: 37:88:37:A5:7B:98:4B:95:95:FF:5E:15:3A:25:A2:18:9D:2E:77:9D
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: FADD0C
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/N4g3pXuYS5WV_14VOiWiGJ0ud50.roa
Signing time: Sat 01 Jan 2022 13:00:58 +0000
ROA not before: Sat 01 Jan 2022 13:00:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7922
IP address blocks: 45.94.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16440588 (0xfadd0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: Jan 1 13:00:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=378837a57b984b9595ff5e153a25a2189d2e779d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1f:2b:b5:0b:39:ac:e9:ff:45:ea:72:ef:d5:
24:5b:2b:3e:0f:c2:fe:f3:60:a7:c0:96:28:19:bf:
45:07:ed:50:32:4b:09:cf:e6:43:c3:4e:c4:13:8c:
43:30:d3:2d:6f:1a:1c:15:2c:a9:c5:ab:5b:92:fc:
28:74:8e:43:ee:25:1d:d8:b1:63:a4:a3:d1:5d:74:
e1:63:b3:25:7f:94:1d:aa:53:b0:c6:3b:9a:37:1d:
66:52:a1:ea:a2:5b:35:53:1d:f9:80:5f:21:18:85:
40:1d:fd:91:fe:ae:fc:1c:16:c1:dd:ad:32:c7:84:
0f:00:f1:23:3b:bd:0a:01:5f:f4:4e:dc:70:9b:b5:
98:23:34:1e:0e:9c:74:ae:09:23:1d:af:82:5e:a5:
be:92:3b:ca:a4:8a:88:e6:19:8d:28:5a:8b:66:2e:
ad:cf:bd:aa:3a:e9:2b:e3:59:36:33:d7:22:fd:fe:
ee:ab:2b:e0:64:7f:76:32:82:4b:c3:c7:c4:aa:c4:
74:da:fe:eb:56:c4:44:1e:0a:02:7b:29:08:c9:8b:
0f:01:64:f7:c8:bd:2b:d3:5a:eb:03:f6:6d:28:73:
98:5b:88:40:ca:08:f5:ca:02:2d:59:0c:f8:04:a1:
eb:8e:b1:85:0c:5c:be:28:3e:6e:02:81:9a:64:cf:
af:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:88:37:A5:7B:98:4B:95:95:FF:5E:15:3A:25:A2:18:9D:2E:77:9D
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/N4g3pXuYS5WV_14VOiWiGJ0ud50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.220.0/22
Signature Algorithm: sha256WithRSAEncryption
08:54:d8:c1:07:7d:71:ef:89:7c:fe:44:81:b0:17:0d:cd:ca:
04:a5:10:99:a2:5e:a3:f9:5c:28:47:b4:8c:72:88:80:9a:e0:
a8:a3:70:da:ca:cf:89:04:19:37:9f:8b:2e:22:9e:87:7b:58:
b3:80:ea:5b:8e:d6:75:7b:65:11:62:00:a8:8d:e6:07:a7:d8:
db:0d:3e:f8:45:a5:d1:63:08:75:7f:19:8e:4a:f6:0c:d2:34:
1d:74:b7:f8:3f:e2:0e:97:01:f3:5b:ca:3e:c4:88:41:3b:6f:
6b:68:d1:a2:4b:f2:4f:09:d3:18:b9:86:04:de:e3:1d:5a:3a:
f1:0f:12:84:55:8d:63:87:99:bd:64:97:74:20:bf:b3:6b:ad:
e0:82:48:fb:a7:7e:72:a5:4a:4d:8c:42:77:16:df:3a:c7:27:
b5:f8:ce:74:ce:c3:c0:80:60:47:2e:5d:db:28:8d:59:a9:d1:
67:d6:30:d6:1b:6b:3c:fc:b2:6b:25:0d:a9:be:42:a0:37:03:
ce:c8:1e:f6:20:65:95:2f:ff:84:5c:f7:cf:fa:22:33:3f:11:
ab:e8:80:0a:0a:35:98:18:a8:1b:36:0b:2b:d7:88:7f:8e:d1:
0e:9c:b8:90:66:a3:a0:40:88:67:13:8a:18:c8:ec:ea:4e:27:
f2:9a:93:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:01 2023 by rpki-client on console-ams.rpki-client.org