Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/nnfizCiIwSC0RAqh4H4sWaoce6Y.roa
File: nnfizCiIwSC0RAqh4H4sWaoce6Y.roa (raw, json)
Hash identifier: f2IqtomColvMrnNYewHg/fEPsM+Yxit5AyEZ7HkT5Ew=
Subject key identifier: 9E:77:E2:CC:28:88:C1:20:B4:44:0A:A1:E0:7E:2C:59:AA:1C:7B:A6
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 063F63A8
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/nnfizCiIwSC0RAqh4H4sWaoce6Y.roa
Signing time: Wed 22 Jun 2022 04:17:45 +0000
ROA not before: Wed 22 Jun 2022 04:17:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.143.162.0/23 maxlen: 24
45.143.160.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104817576 (0x63f63a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Jun 22 04:17:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e77e2cc2888c120b4440aa1e07e2c59aa1c7ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:56:65:b8:9c:a2:a8:6a:20:ab:98:15:05:c6:
63:f9:5f:f5:0f:35:ef:ec:64:a0:ef:5d:84:b9:ce:
3e:a1:b6:bb:d1:8b:bf:d5:99:4f:56:b6:75:d2:3f:
b7:d3:82:8d:87:6c:97:53:3d:28:9a:ac:32:06:73:
86:27:91:98:21:11:76:a7:ad:c3:04:f7:5d:a5:16:
20:25:95:f6:15:b1:bb:54:26:6f:f3:c1:20:6e:44:
50:03:62:87:bc:b2:c0:58:57:6d:10:2c:c9:a0:ac:
f9:7b:39:1e:ce:b8:dd:16:4b:6c:f7:30:22:e0:4f:
e6:d2:3c:81:ea:26:8a:ab:dd:34:95:e8:a3:8a:aa:
6b:20:75:3d:5a:e2:1c:17:d3:ba:da:e3:a3:30:ec:
86:df:83:3e:e8:31:ad:fe:45:00:a6:12:fd:da:81:
2a:54:39:38:19:e9:c3:61:fd:71:63:9f:9e:8c:b2:
b1:3d:e6:c6:f6:1b:31:ea:3f:cb:a9:11:30:43:f2:
9b:f0:74:63:e0:c0:3f:6c:6a:9a:ac:9c:d3:fd:06:
26:16:ae:02:f8:97:84:02:df:fe:6e:31:e3:68:10:
08:e9:7d:73:8d:1e:80:24:c7:9a:9c:91:0f:54:56:
e9:78:fe:e6:4f:ff:62:52:d0:10:d5:f2:a9:1b:7d:
04:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:77:E2:CC:28:88:C1:20:B4:44:0A:A1:E0:7E:2C:59:AA:1C:7B:A6
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/nnfizCiIwSC0RAqh4H4sWaoce6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.160.0/22
Signature Algorithm: sha256WithRSAEncryption
35:1a:95:20:18:e1:68:42:a5:e7:f2:f7:70:2a:fc:83:c3:66:
f0:65:37:a5:d7:50:8b:1d:fe:e4:82:b5:63:99:5b:9e:73:6f:
84:29:59:33:a1:86:4a:1d:d2:fb:36:fa:d9:e6:3e:02:96:63:
3b:21:69:92:ab:20:5a:04:90:32:1c:7c:b1:87:71:92:e8:ca:
4e:f6:48:c0:9e:9f:38:5f:7e:b0:d8:ac:08:70:2a:8c:83:f7:
9e:4f:85:1f:4d:fb:e5:1d:76:7a:21:43:4c:d6:de:28:34:13:
95:af:8a:1a:2c:81:cd:6e:4f:b3:34:09:47:e3:f1:1b:9f:11:
8e:96:22:6b:dc:71:25:00:d0:c6:3e:14:86:6c:9d:59:cb:4f:
e7:ce:a1:fa:b0:32:2f:f5:a3:c0:1b:a7:c9:c7:54:e9:fe:22:
a9:77:fb:1d:13:19:39:b3:44:13:0c:d8:60:f4:6f:77:0d:c6:
f4:6c:af:6d:1f:5c:11:0b:de:8d:c5:fb:5e:04:00:cb:93:e6:
1a:19:0a:50:a2:60:62:e1:af:b2:52:2c:01:1b:cf:70:4e:00:
3f:63:26:4f:c8:6d:ed:f3:e4:d8:92:47:39:52:6f:3c:a4:dd:
5e:02:5b:e9:8a:57:b4:00:52:9b:cc:67:dd:b4:f5:78:42:6d:
53:09:e3:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:51 2024 by rpki-client on console-fra.rpki-client.org