Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/VCX4sZJfdUmGSipg4Hlc1Dd7UaQ.roa
File: VCX4sZJfdUmGSipg4Hlc1Dd7UaQ.roa (raw, json)
Hash identifier: Uw81zlD9rxFnXEO4653BlxUbPfys65Cz3H9jrNuKvF4=
Subject key identifier: 54:25:F8:B1:92:5F:75:49:86:4A:2A:60:E0:79:5C:D4:37:7B:51:A4
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 02F3528B
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/VCX4sZJfdUmGSipg4Hlc1Dd7UaQ.roa
Signing time: Sat 01 Jan 2022 16:03:35 +0000
ROA not before: Sat 01 Jan 2022 16:03:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49752
IP address blocks: 45.129.94.0/24 maxlen: 24
2a0e:46c5::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49500811 (0x2f3528b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 16:03:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5425f8b1925f7549864a2a60e0795cd4377b51a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1e:a4:86:27:1c:7a:61:d0:7d:3a:7b:04:44:
0b:46:9a:11:04:67:1f:fe:46:67:50:6a:b2:4a:36:
40:da:15:69:c9:0e:66:5e:b6:8e:67:c4:a9:d6:b3:
d1:57:2a:cd:f1:bd:a4:67:b1:fb:24:01:98:7a:09:
9f:50:19:2b:44:53:1a:6d:a9:77:12:47:e5:b2:54:
f3:71:00:a9:73:ff:e9:39:5e:cd:de:8c:0f:72:e7:
bd:1e:ac:d4:ff:4c:66:c5:c3:fc:80:5f:ab:13:5c:
0c:28:5d:cf:44:4b:93:d3:2d:bb:a4:76:40:58:be:
cd:ed:cb:16:e1:e2:9f:83:4b:1a:97:0f:23:cf:2a:
cc:a5:52:1e:2e:c6:c6:25:59:cb:a9:4f:26:8f:83:
2d:c9:8b:fa:17:28:d5:a1:13:0f:5e:76:5a:0d:12:
98:cf:58:81:a8:61:c2:f1:c5:4e:7d:e1:c4:4a:bb:
e7:23:32:90:fe:aa:76:9a:e8:fd:2a:35:fb:fb:e1:
f8:a8:ef:0c:a8:23:c1:77:80:ba:91:9a:81:9f:57:
44:6b:6f:54:e5:65:6b:6e:af:2b:2e:6b:aa:f9:f7:
8d:c0:5f:46:3b:7c:ae:7c:58:67:70:ec:03:37:7b:
5d:89:5c:71:3f:78:a6:b2:16:05:79:0a:36:df:7f:
ef:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:25:F8:B1:92:5F:75:49:86:4A:2A:60:E0:79:5C:D4:37:7B:51:A4
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/VCX4sZJfdUmGSipg4Hlc1Dd7UaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.94.0/24
IPv6:
2a0e:46c5::/32
Signature Algorithm: sha256WithRSAEncryption
17:77:ba:a6:3c:40:85:30:16:e9:4f:c3:03:e5:90:be:39:bf:
74:34:2e:58:1c:3d:28:b3:4a:c3:9d:9c:f0:78:20:97:c2:a2:
14:96:6c:9f:4d:52:7f:27:50:aa:84:ae:3e:9d:82:9a:b1:e9:
77:37:db:cc:db:f3:be:6d:9c:de:bf:8d:83:88:59:f6:67:cf:
70:2b:17:ff:57:7c:57:2b:36:f7:64:5a:92:2e:d8:5c:ce:c9:
39:16:8f:a5:ed:a0:14:9b:b1:a3:e8:4e:ea:d8:73:04:3d:09:
51:88:c7:39:a3:6b:b4:2d:4c:55:55:8d:fe:23:ed:b8:66:95:
99:3e:32:f6:5f:de:e7:90:12:cd:b3:d4:61:eb:a7:f0:26:6d:
d0:55:1e:ab:2c:51:df:b6:ca:df:86:1c:12:41:22:c3:b2:81:
6c:ea:63:35:34:30:a0:72:c3:58:a5:50:3f:84:9b:be:33:ec:
a0:5b:bc:67:28:dd:91:f3:b2:4c:cd:32:3d:c1:79:c1:de:99:
40:22:52:d1:ce:67:47:8d:67:f1:25:cc:86:f4:74:6c:a5:85:
5f:1f:22:89:87:7c:a5:a7:4d:d5:47:b5:53:b6:77:3d:83:08:
37:fd:5a:6e:23:69:8a:56:4b:ee:1a:c1:d7:95:f1:cc:70:12:
2b:f1:ac:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:56 2023 by rpki-client on console-ams.rpki-client.org