Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/740589-85cd-497a-90c1-a2f9a8a51bb0/1/CwVUIfa6xH4tjzPY7MvA8dF_nus.roa
File: CwVUIfa6xH4tjzPY7MvA8dF_nus.roa (raw, json)
Hash identifier: nXLvYX1oxmRZmz6qoBgo1/3D5o5PUig0IToikkjcPXU=
Subject key identifier: 0B:05:54:21:F6:BA:C4:7E:2D:8F:33:D8:EC:CB:C0:F1:D1:7F:9E:EB
Certificate issuer: /CN=06079c429a7146f1f9aa049bdb42ca95144b74da
Certificate serial: 0EB2DAD4
Authority key identifier: 06:07:9C:42:9A:71:46:F1:F9:AA:04:9B:DB:42:CA:95:14:4B:74:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgecQppxRvH5qgSb20LKlRRLdNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/740589-85cd-497a-90c1-a2f9a8a51bb0/1/CwVUIfa6xH4tjzPY7MvA8dF_nus.roa
Signing time: Sat 01 Jan 2022 02:00:31 +0000
ROA not before: Sat 01 Jan 2022 02:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13020
IP address blocks: 94.45.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 246602452 (0xeb2dad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06079c429a7146f1f9aa049bdb42ca95144b74da
Validity
Not Before: Jan 1 02:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b055421f6bac47e2d8f33d8eccbc0f1d17f9eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:89:a0:5c:8d:72:48:12:3c:86:c7:59:a3:6c:
24:e6:8a:5a:f2:45:19:f2:db:8c:8d:0d:d1:c5:4b:
ca:be:5e:a9:70:a7:c2:bc:f0:55:17:de:3e:a2:a6:
3a:23:18:62:2a:b3:a2:3d:57:b0:83:12:8e:ee:44:
0e:2e:92:08:3f:07:1f:11:d2:d5:ee:af:36:89:3b:
3c:11:53:7b:b6:8c:f3:fc:c4:c4:d0:24:b5:0c:19:
17:16:15:61:df:99:d8:65:c7:a7:2b:cf:c4:c9:08:
bd:b9:1d:f2:b6:75:2a:c3:53:e9:80:2c:0c:b8:1a:
60:1f:4f:88:09:98:1b:4d:46:11:66:9c:7b:7f:ce:
fe:0f:72:12:ed:8c:28:e5:1b:47:73:43:2a:8c:57:
a5:e4:bf:51:52:fe:52:e4:93:dd:6d:29:8f:ca:20:
02:0d:bb:43:a9:23:80:a2:99:4c:11:6b:b0:ba:d5:
86:81:8f:65:28:15:6e:75:e9:47:64:c6:a3:1d:b4:
05:68:3d:cd:95:f0:74:49:70:7b:00:8f:ec:32:61:
7a:fc:53:27:c3:c7:cd:a7:92:c3:e6:31:fd:ea:6e:
07:71:ec:5e:a9:57:2d:50:18:dc:a8:99:da:42:04:
01:ed:4f:05:b6:4f:1a:bc:63:27:e9:01:ab:34:86:
6f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:05:54:21:F6:BA:C4:7E:2D:8F:33:D8:EC:CB:C0:F1:D1:7F:9E:EB
X509v3 Authority Key Identifier:
keyid:06:07:9C:42:9A:71:46:F1:F9:AA:04:9B:DB:42:CA:95:14:4B:74:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgecQppxRvH5qgSb20LKlRRLdNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/740589-85cd-497a-90c1-a2f9a8a51bb0/1/CwVUIfa6xH4tjzPY7MvA8dF_nus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/740589-85cd-497a-90c1-a2f9a8a51bb0/1/BgecQppxRvH5qgSb20LKlRRLdNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.45.224.0/19
Signature Algorithm: sha256WithRSAEncryption
91:f8:39:46:52:26:b1:f1:1d:ca:9c:b7:9d:94:ee:6b:ee:4b:
cf:3d:2d:11:2b:e4:62:49:0e:a1:97:5a:db:8a:0a:ea:82:25:
cb:20:da:ca:7c:51:de:9a:1b:69:48:38:92:1a:d0:1c:a4:e9:
09:96:43:87:81:1e:5a:7a:26:e3:b5:9c:61:1e:a9:d3:aa:a3:
e2:29:d3:ea:c8:f3:3f:14:24:10:56:1d:07:da:13:86:b1:a6:
71:4d:96:24:f4:38:97:b1:5c:62:98:8e:4d:7e:0c:59:c6:18:
f7:66:16:50:28:45:29:fb:7f:23:b2:4a:28:7d:f7:a1:82:26:
45:b2:b8:b3:0a:b7:a1:9f:b0:c5:50:b3:ff:c7:a5:09:2b:92:
04:3d:04:9a:1a:2d:25:c4:c7:30:93:b0:5f:52:34:de:72:81:
67:85:54:80:7f:fc:d6:0d:0b:52:8a:ee:d7:fd:16:40:bd:cb:
8c:31:f9:d8:1f:d8:1a:06:16:b5:84:6a:95:81:54:a1:83:d9:
a0:55:9e:33:35:b9:b6:21:dd:a9:e8:6e:8e:ec:70:2f:6d:6e:
34:04:07:23:3d:f1:63:3e:67:f6:33:60:02:9a:fb:07:4c:66:
fc:5f:f2:72:29:fb:65:7f:db:0e:9f:8c:47:20:2e:d3:0d:f0:
22:3d:01:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:18 2023 by rpki-client on console-ams.rpki-client.org