Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/0iQCWbLWLR1cbKA3xzwUHZfx1CQ.roa
File: 0iQCWbLWLR1cbKA3xzwUHZfx1CQ.roa (raw, json)
Hash identifier: g1Hbdpxi1bbwUDc9nUblRQOnsELR3Ji2T5SJi6sdcec=
Subject key identifier: D2:24:02:59:B2:D6:2D:1D:5C:6C:A0:37:C7:3C:14:1D:97:F1:D4:24
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 0183E4587DEFD496B4AA53723BA07CC3FDA8
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/0iQCWbLWLR1cbKA3xzwUHZfx1CQ.roa
Signing time: Mon 17 Oct 2022 05:09:08 +0000
ROA not before: Mon 17 Oct 2022 05:09:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49752
IP address blocks: 45.129.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e4:58:7d:ef:d4:96:b4:aa:53:72:3b:a0:7c:c3:fd:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Oct 17 05:09:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2240259b2d62d1d5c6ca037c73c141d97f1d424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c1:1b:c5:ec:76:59:b6:d5:37:7a:9c:04:9d:
fe:3a:2c:6d:0a:ee:22:78:15:d5:67:c2:de:0b:73:
f9:c6:5d:aa:55:2b:c2:3b:a0:bf:e3:af:90:c5:e3:
c6:dc:38:9c:1a:5b:92:d6:89:25:67:83:c2:25:7d:
21:34:f7:86:d7:70:7b:2d:51:8d:d2:e2:bb:99:42:
c5:6d:e5:4a:0c:06:15:81:4a:1a:96:27:25:23:27:
52:e4:ef:a3:a0:e5:09:d4:45:54:1d:27:a3:70:7a:
21:53:41:d3:20:84:f5:df:da:d0:16:e9:04:a8:ea:
7c:ed:d3:67:92:55:66:71:38:1b:7d:18:2e:23:5b:
a1:92:c4:a0:e6:81:48:59:52:22:1f:89:1d:46:af:
0f:95:8b:31:ad:d2:c5:11:d2:75:a6:c2:25:7a:1b:
d7:73:b3:bd:ac:37:eb:58:e7:e0:65:19:7e:99:74:
8f:ff:c3:d8:2b:02:02:8f:39:91:5b:1d:20:80:d5:
8c:48:c9:41:74:16:08:ba:08:6b:07:64:0d:62:6b:
a0:e2:f2:2d:7c:f8:0b:b8:f4:7c:e5:e3:49:a9:ae:
f7:a6:8a:61:21:1e:ba:57:86:47:b5:cb:5f:9e:07:
24:08:cd:bc:c9:da:1d:ff:ca:49:45:f6:7e:23:37:
1a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:24:02:59:B2:D6:2D:1D:5C:6C:A0:37:C7:3C:14:1D:97:F1:D4:24
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/0iQCWbLWLR1cbKA3xzwUHZfx1CQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.94.0/24
Signature Algorithm: sha256WithRSAEncryption
53:63:7b:76:ab:6d:6e:a7:f1:00:c4:de:12:04:88:51:1e:4b:
e8:66:0a:9a:9b:7e:cf:ca:89:84:af:d5:1e:af:72:79:0a:0b:
dd:f2:6f:99:00:81:4c:4c:ae:32:aa:0d:06:bf:97:51:fc:63:
9d:ff:de:ba:71:4b:78:35:6c:e5:0e:2c:78:f0:08:0d:26:be:
24:35:80:a2:60:b4:bf:54:4f:4c:20:49:8e:ba:e9:7c:1e:1d:
4e:5d:98:e5:68:48:95:a8:55:a5:90:0b:27:94:34:8d:92:51:
db:54:df:6a:9c:b6:0e:4f:44:86:86:05:df:ff:af:c8:45:63:
02:ad:dc:5d:a0:d5:18:cd:91:27:ed:a9:f7:82:78:cc:53:91:
85:a7:6d:b9:0d:ce:4a:fd:66:0f:52:e2:96:c1:6d:98:0e:56:
91:cf:fa:f5:97:04:0d:bb:92:8c:b5:7e:c5:21:85:15:32:c4:
a1:24:f2:fc:e6:86:b5:e9:0c:db:5d:ec:f7:34:e5:ff:24:b8:
04:ab:94:32:0b:7b:c5:76:7a:ca:ff:bd:5c:6b:5b:3b:74:23:
0c:c4:9a:4c:ea:4a:47:d2:6f:06:65:f4:1b:8e:27:6c:1e:a2:
39:53:a5:32:ff:a2:34:6c:9f:ee:21:53:cd:5a:16:cb:cd:4b:
6b:a9:bf:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:40 2024 by rpki-client on console-ams.rpki-client.org