Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/ctPyiyRgszaTEyITcmrDgyo6zaI.roa
File: ctPyiyRgszaTEyITcmrDgyo6zaI.roa (raw, json)
Hash identifier: YnXjgd/Cd2XAdygkbONmMZc7BNGB7X4vQY+tA0XNwcw=
Subject key identifier: 72:D3:F2:8B:24:60:B3:36:93:13:22:13:72:6A:C3:83:2A:3A:CD:A2
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 03E62909
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/ctPyiyRgszaTEyITcmrDgyo6zaI.roa
Signing time: Fri 08 Apr 2022 22:19:48 +0000
ROA not before: Fri 08 Apr 2022 22:19:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207960
IP address blocks: 45.129.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65415433 (0x3e62909)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Apr 8 22:19:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72d3f28b2460b33693132213726ac3832a3acda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:35:1a:d8:f4:1b:aa:62:6a:de:6f:92:44:6c:
a6:a8:5e:e8:94:d0:7a:d3:08:ed:4d:2e:a6:d0:09:
60:2f:e5:9a:bd:a6:3b:ab:ca:03:92:7e:67:b7:6c:
8d:b9:6f:9b:15:42:4f:77:92:3d:3d:04:02:c4:b5:
ba:38:25:fc:4c:16:f0:bd:67:b6:d5:60:ae:ab:64:
27:1f:79:5c:41:fb:9b:5d:25:95:25:6f:91:41:74:
1c:24:c5:a1:cf:fd:2c:ed:0a:83:99:79:43:83:7b:
d7:3a:22:a4:e5:8a:14:f0:5b:33:93:6e:87:93:ea:
95:2d:6b:6b:1e:90:90:f8:9b:1b:55:78:d7:4b:9e:
86:58:7f:e4:df:f6:bb:9f:3f:16:b2:d7:2e:34:d5:
fa:29:bb:46:40:16:b2:27:54:93:75:dd:97:2e:c8:
8b:06:90:2b:3b:30:0a:bf:8a:95:91:d4:2a:41:c0:
26:86:19:7d:95:11:a3:84:cd:15:a5:83:6d:f5:b8:
25:43:39:d9:9c:30:c9:f9:35:42:fd:16:5a:9c:3f:
70:65:68:cf:fb:75:fa:30:3e:8d:38:4c:73:ec:eb:
05:a6:35:c3:0b:e5:b6:c3:d5:3a:80:8e:30:60:df:
86:0f:85:f1:a7:3c:5b:29:52:88:d8:2c:dd:d8:b2:
48:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D3:F2:8B:24:60:B3:36:93:13:22:13:72:6A:C3:83:2A:3A:CD:A2
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/ctPyiyRgszaTEyITcmrDgyo6zaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.95.0/24
Signature Algorithm: sha256WithRSAEncryption
93:a9:69:4c:f5:af:af:79:ae:3d:99:9a:d0:50:68:b0:0c:ec:
a9:c6:e0:f1:ef:ab:f3:fd:7c:94:53:bf:da:49:ca:1c:14:8c:
7b:9b:81:e0:08:ef:7c:75:9d:fe:aa:ab:6e:dd:3a:32:3c:81:
e6:02:5b:a5:e5:f3:63:79:28:91:c4:74:5a:dd:49:97:64:9b:
9e:b3:12:c6:1e:44:fb:af:85:0d:23:48:e4:35:bc:32:51:4b:
a1:8a:78:08:d2:06:3a:16:b6:dc:b3:ed:ec:ce:5e:4b:8a:98:
f4:27:13:e0:af:7a:52:90:9a:2b:b1:8a:85:90:08:0d:bd:78:
0c:e3:86:c0:f0:2f:2d:b6:62:e6:0e:c1:b5:af:82:d6:1b:8b:
df:c6:2b:e7:00:38:91:9d:bc:c5:42:0e:8b:4a:22:6d:53:36:
85:92:f4:ea:8c:7d:d2:68:1e:3c:58:0b:65:aa:cd:26:75:84:
c8:81:14:09:c2:a4:61:9b:c3:33:7e:91:44:3f:70:2a:22:0d:
b3:32:f5:2b:d3:fc:49:63:55:97:03:8d:fa:39:40:e4:63:00:
7f:87:1f:33:71:5f:7f:37:00:4d:b6:ee:44:a5:f7:eb:76:07:
ae:ee:04:2d:dc:7e:f4:3b:a7:a8:dd:ef:ca:06:13:b1:71:b8:
df:f8:d2:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:40 2024 by rpki-client on console-ams.rpki-client.org