Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/NZ_w97iB3EaLbtTu71eJg0XnC5o.roa
File: NZ_w97iB3EaLbtTu71eJg0XnC5o.roa (raw, json)
Hash identifier: FZV/gtkJTHJwKVgq/XkqHAF3js+Of3sP7TfPBbkkQTY=
Subject key identifier: 35:9F:F0:F7:B8:81:DC:46:8B:6E:D4:EE:EF:57:89:83:45:E7:0B:9A
Certificate issuer: /CN=54404da602dab0625be7223d09320b1cd7aafced
Certificate serial: 0859C594
Authority key identifier: 54:40:4D:A6:02:DA:B0:62:5B:E7:22:3D:09:32:0B:1C:D7:AA:FC:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VEBNpgLasGJb5yI9CTILHNeq_O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/NZ_w97iB3EaLbtTu71eJg0XnC5o.roa
Signing time: Mon 18 Apr 2022 13:42:39 +0000
ROA not before: Mon 18 Apr 2022 13:42:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207117
IP address blocks: 45.152.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140101012 (0x859c594)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54404da602dab0625be7223d09320b1cd7aafced
Validity
Not Before: Apr 18 13:42:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=359ff0f7b881dc468b6ed4eeef57898345e70b9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f5:b3:cd:9f:c6:eb:b2:31:27:0d:57:52:83:
3e:b2:7f:bd:78:1c:69:b8:10:ac:6e:62:31:f8:a9:
e8:8a:17:3f:d7:ef:d6:39:4a:65:62:01:62:32:9b:
6c:6e:e9:27:61:ed:14:13:56:13:42:7d:91:de:54:
79:cd:43:f1:a5:6f:7b:c6:aa:d8:9f:22:e2:ae:da:
23:1c:2f:9d:41:4e:a8:88:cd:34:c4:8d:70:8a:60:
78:4c:34:9b:72:bf:64:34:f0:ae:a3:82:c0:29:4e:
01:05:c2:2d:bc:07:56:e1:e9:3f:65:5c:f5:f3:7e:
db:38:5e:9c:9c:3e:5f:27:3c:f8:e6:5b:10:a7:5b:
a0:cd:9c:dc:b4:27:6b:5a:d8:70:86:27:1c:32:ef:
00:5b:77:57:10:1a:08:ba:c6:13:3b:89:93:f3:0a:
aa:b7:0e:23:79:d2:52:90:cf:d2:a3:47:a7:48:ef:
72:4a:90:3a:dc:bb:c9:80:35:8e:0d:aa:42:00:5c:
13:e0:3d:8b:ed:a7:1b:e6:19:2b:45:dd:85:5a:4e:
19:4a:4d:0f:7a:14:e6:0c:34:70:f4:d8:d8:24:7a:
dd:43:37:a6:48:e6:db:10:f5:76:1d:b2:37:74:27:
85:98:16:28:64:ae:19:35:78:a9:c4:84:7b:e9:31:
cb:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:9F:F0:F7:B8:81:DC:46:8B:6E:D4:EE:EF:57:89:83:45:E7:0B:9A
X509v3 Authority Key Identifier:
keyid:54:40:4D:A6:02:DA:B0:62:5B:E7:22:3D:09:32:0B:1C:D7:AA:FC:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VEBNpgLasGJb5yI9CTILHNeq_O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/NZ_w97iB3EaLbtTu71eJg0XnC5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/VEBNpgLasGJb5yI9CTILHNeq_O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.78.0/24
Signature Algorithm: sha256WithRSAEncryption
60:5e:e0:dc:56:a9:55:60:d2:b2:cf:f3:8a:fd:1c:50:2a:92:
e2:81:87:23:29:14:7c:a0:f5:46:03:7d:8b:ee:38:39:ca:87:
cf:ac:6d:30:b1:60:06:c7:68:74:a0:9b:65:04:66:b6:70:d0:
2b:1e:31:c2:53:64:44:8b:09:01:06:66:bb:f6:cd:f8:b9:fa:
e6:d4:21:9a:34:30:48:97:c0:d3:37:4f:a4:0f:06:5d:4b:60:
6e:61:47:ee:56:44:9e:40:50:f0:16:56:8b:00:b2:e7:ad:90:
af:fc:73:70:f7:92:87:5d:c4:fc:64:72:16:b6:94:76:9e:a2:
ff:2e:3c:02:eb:56:0e:e5:61:4a:02:8f:9b:e9:73:3e:63:ff:
3d:d1:23:80:90:0b:9c:44:73:df:1d:9d:cd:0c:46:c8:10:18:
37:70:9e:70:0a:96:dd:76:71:6a:94:f1:22:9c:a7:24:a5:0e:
0f:8e:23:32:2a:75:64:4f:fe:4f:02:d1:0a:fd:e0:5b:dd:81:
37:46:56:f2:c8:c0:b0:89:d6:73:c4:79:72:b6:f1:cb:64:42:
e3:63:43:e8:f3:58:e0:5c:b9:f0:bb:66:b8:37:20:84:db:e3:
31:91:ae:34:6e:b2:b3:82:cd:1e:aa:be:10:67:e9:79:cb:27:
c2:f5:51:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:54 2024 by rpki-client on console-ams.rpki-client.org