Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/20ZFPtgglsrq00zBiy9DNdaFxOo.roa
File: 20ZFPtgglsrq00zBiy9DNdaFxOo.roa (raw, json)
Hash identifier: bSRdoTiE7SmrSDQisK9jAJjmDi8oQN61yuYfu3aHKtI=
Subject key identifier: DB:46:45:3E:D8:20:96:CA:EA:D3:4C:C1:8B:2F:43:35:D6:85:C4:EA
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 08BD64F0
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/20ZFPtgglsrq00zBiy9DNdaFxOo.roa
Signing time: Thu 19 May 2022 12:54:29 +0000
ROA not before: Thu 19 May 2022 12:54:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 45.137.16.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146629872 (0x8bd64f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: May 19 12:54:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db46453ed82096caead34cc18b2f4335d685c4ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6a:c9:79:6b:69:f4:6d:96:1f:d3:8c:0d:43:
56:77:01:18:90:78:c8:71:b5:0b:3a:46:20:0a:95:
2a:45:ab:ed:3a:a4:f8:8d:93:8f:f1:79:17:13:9a:
e0:46:07:8a:93:0a:a1:9a:fc:d7:1f:53:d1:f0:d5:
e0:e9:34:94:72:89:0f:4f:96:33:b6:32:a3:38:59:
48:cb:16:6a:fe:96:b3:76:e0:bd:d8:9d:5c:d6:17:
da:4f:96:27:09:18:7a:be:5b:ed:1e:b9:12:9a:1d:
c2:c7:da:e2:f6:e7:9d:b3:f3:e4:69:d1:a7:c7:02:
44:cb:0f:19:2a:ff:45:59:57:d1:52:a0:97:1c:8f:
0e:e3:77:d8:f1:b0:a4:1f:61:4c:8f:cb:bf:f4:2a:
78:35:73:f8:b2:57:03:71:b6:be:02:fd:a1:58:63:
5f:9d:f9:89:df:f6:a8:37:d8:83:57:83:0e:f9:a4:
70:80:55:77:2a:fc:56:49:a5:0d:06:04:79:00:1e:
88:ee:b7:8f:82:82:0b:86:2d:91:40:f8:6a:37:a6:
95:c1:de:1a:93:a9:c9:44:e4:ae:d3:31:9a:53:7f:
d4:49:fd:47:d9:c1:64:67:4c:41:8e:f0:bd:94:5a:
af:ee:7a:da:6f:5d:3c:94:08:73:94:e8:f9:d3:ba:
ba:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:46:45:3E:D8:20:96:CA:EA:D3:4C:C1:8B:2F:43:35:D6:85:C4:EA
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/20ZFPtgglsrq00zBiy9DNdaFxOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.16.0/23
Signature Algorithm: sha256WithRSAEncryption
50:90:77:0a:b8:28:0b:d5:e5:3b:ac:8a:82:c3:37:ea:69:95:
11:3d:b4:58:3e:48:dd:4c:12:a6:c6:cd:2f:dd:f0:e2:fc:70:
52:4a:e3:e4:99:1c:0f:6b:87:67:9d:b7:6e:f2:ed:46:06:a7:
f7:15:65:d0:5b:3c:75:32:54:c7:8b:72:51:52:39:1a:0f:a0:
0d:75:e8:09:af:3c:09:e2:39:00:b5:b3:06:31:c5:0e:62:aa:
6c:df:d7:09:63:9c:0f:aa:e6:db:43:68:37:77:41:76:f1:c9:
a3:d8:70:ec:60:ec:33:c7:f5:39:a3:99:29:d1:d8:06:d2:40:
e1:94:73:a2:c9:6f:0f:2f:ef:14:8f:bb:10:88:c1:8d:bb:34:
63:0b:a7:1c:1d:45:c1:49:be:dd:39:a9:7d:01:b0:42:ac:7f:
88:c7:80:c5:de:c7:42:37:2b:17:cb:b3:be:2a:51:9d:10:b7:
ea:bc:bd:61:6f:f5:02:fa:f2:30:a9:57:f3:b4:8a:65:a4:c2:
80:1d:fe:19:79:31:f9:3b:e8:b6:69:4e:c9:a2:ab:59:89:25:
14:1a:60:ba:f0:03:f8:44:ad:3e:43:22:44:6c:87:56:9e:6a:
fb:31:94:fa:7a:bd:c8:d1:ca:39:f5:f2:c5:bd:a2:5e:7e:ff:
ea:8d:66:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:00 2024 by rpki-client on console-fra.rpki-client.org