Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/4R9aNIGoKQr7RlxgtDp7n-qysvo.roa
File: 4R9aNIGoKQr7RlxgtDp7n-qysvo.roa (raw, json)
Hash identifier: 3LLM/LK/Shz+QnIqfKxw7QNH/LFWJifkrYfP9K+WIuI=
Subject key identifier: E1:1F:5A:34:81:A8:29:0A:FB:46:5C:60:B4:3A:7B:9F:EA:B2:B2:FA
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 033E50F8
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/4R9aNIGoKQr7RlxgtDp7n-qysvo.roa
Signing time: Sat 29 Jan 2022 06:07:35 +0000
ROA not before: Sat 29 Jan 2022 06:07:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212123
IP address blocks: 45.129.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54415608 (0x33e50f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 29 06:07:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e11f5a3481a8290afb465c60b43a7b9feab2b2fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:29:8a:d2:40:7f:fc:7a:b9:cb:09:56:2d:c6:
0f:a4:b0:49:f5:e0:6c:4f:dd:40:02:28:13:10:89:
fd:3d:18:c5:5f:59:2e:4f:d8:a2:ef:dc:cd:c7:5c:
52:25:5e:bf:f0:76:97:ef:d1:c0:7a:57:10:1b:b2:
c3:b6:5e:2a:b4:c8:e3:50:09:50:39:9c:78:d9:fe:
ff:55:84:54:88:ea:67:4e:95:d7:2e:27:6a:b9:33:
e1:2e:53:b3:21:48:90:68:5c:86:b5:f9:69:df:fd:
3d:60:0c:e6:9f:92:0a:a4:a7:8d:1c:bd:b6:49:5b:
b2:3e:f0:0b:d4:9a:a1:ad:bf:10:ba:ac:f1:ca:0e:
02:e3:10:ce:08:70:48:98:5e:0f:fa:c8:e8:e0:52:
58:d3:a1:fb:d3:96:fb:7e:84:d3:48:8e:ab:c5:13:
89:36:d7:65:68:9b:3d:cf:52:ae:86:76:84:8e:13:
4d:ba:d4:7e:2f:18:8c:1c:47:d6:d2:fc:1c:55:63:
e6:e3:6e:80:90:09:f4:5d:5e:c5:9a:c4:eb:ea:7d:
1b:8f:92:03:0c:53:75:da:10:16:ff:71:9b:b2:d1:
0d:9e:64:85:d2:ba:88:74:09:f6:63:dd:61:e4:8d:
70:6d:96:5b:8a:83:b9:a2:d2:fe:24:ae:35:da:e7:
36:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:1F:5A:34:81:A8:29:0A:FB:46:5C:60:B4:3A:7B:9F:EA:B2:B2:FA
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/4R9aNIGoKQr7RlxgtDp7n-qysvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.94.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:24:b3:6f:a6:fc:ae:50:ed:9c:94:ce:32:9a:5c:d4:3f:12:
19:f2:fc:53:ec:07:68:2f:88:f6:9d:f0:2b:ef:5b:45:e1:35:
6a:67:c3:4e:71:73:41:54:07:e0:ea:e2:4a:c5:dd:ea:0d:60:
e4:6f:c3:d7:32:3a:94:8e:de:fe:50:a2:90:92:f0:87:1a:2c:
47:a3:0b:6f:c8:e9:e5:02:11:fa:00:ec:de:a8:db:3b:a6:39:
ce:75:9a:3d:58:ba:54:bb:a0:48:63:9c:29:d9:45:01:e2:e5:
bb:bd:2d:74:cd:6b:ce:5f:4e:d9:59:5e:1f:b9:bc:eb:bf:ce:
95:47:d0:3e:21:9e:62:ec:31:36:89:71:f8:0b:71:9e:53:3b:
34:2c:16:4a:4c:e1:7e:fa:4b:72:6d:9d:9d:94:f8:43:a9:a9:
1c:61:b2:b6:8c:fe:37:72:98:b6:a8:23:a3:ed:19:ec:91:a6:
48:aa:8e:74:ef:bd:ed:7c:33:f4:ad:8b:3b:13:dd:19:10:02:
bd:b6:0d:fb:e1:1f:60:ac:c6:c0:92:11:07:e6:d4:43:6a:dd:
54:4c:e8:35:f3:e1:62:5b:07:d3:83:f0:d5:ed:86:8a:b5:ad:
93:b1:f9:38:43:02:e4:7b:a8:ae:a9:c8:32:b8:66:8c:29:93:
5f:60:54:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:09 2023 by rpki-client on console-fra.rpki-client.org