Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/N5q09R66h-3m7k22Brb_SwKXkwQ.roa
File: N5q09R66h-3m7k22Brb_SwKXkwQ.roa (raw, json)
Hash identifier: YG1G7IbN6w1XvSrboDp2yX0DIsZ6Cv7YOIkfeeW/0oI=
Subject key identifier: 37:9A:B4:F5:1E:BA:87:ED:E6:EE:4D:B6:06:B6:FF:4B:02:97:93:04
Certificate issuer: /CN=a24e523f304e22eae8cff880d8388493c5a01178
Certificate serial: 0467E0A9
Authority key identifier: A2:4E:52:3F:30:4E:22:EA:E8:CF:F8:80:D8:38:84:93:C5:A0:11:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ok5SPzBOIuroz_iA2DiEk8WgEXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/N5q09R66h-3m7k22Brb_SwKXkwQ.roa
Signing time: Sat 01 Jan 2022 14:08:17 +0000
ROA not before: Sat 01 Jan 2022 14:08:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48662
IP address blocks: 45.89.0.0/22 maxlen: 24
2a0a:4a00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73916585 (0x467e0a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24e523f304e22eae8cff880d8388493c5a01178
Validity
Not Before: Jan 1 14:08:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=379ab4f51eba87ede6ee4db606b6ff4b02979304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:30:1a:3b:c3:1b:b3:24:28:ce:06:c9:dc:74:
7c:c6:ad:26:16:c8:6a:68:4c:83:a1:7b:fb:a2:79:
2c:ed:cb:91:91:7a:52:9d:05:ff:7f:37:6f:0b:5f:
d9:99:42:5b:68:20:ad:f2:93:da:55:fa:3a:3e:58:
7f:93:eb:26:81:6c:5b:59:64:d9:b8:e4:98:b5:23:
4f:af:ef:c5:51:d4:34:d4:9f:1c:d2:c2:c1:a2:5b:
be:b2:6b:b8:ea:f5:61:16:35:68:84:0e:7f:fb:01:
04:a6:ca:33:3f:ca:86:40:bf:23:5a:e8:22:03:36:
c9:20:33:83:d1:23:87:85:7c:7c:e3:1a:0d:22:62:
55:e5:1f:15:c7:f3:77:3a:fe:6e:d5:1d:ad:8f:09:
dd:6e:31:94:9a:27:ba:48:e8:c5:73:38:b0:05:d0:
28:39:cc:7f:eb:46:f2:fa:fc:5c:03:7a:cc:63:1f:
7d:b7:7e:61:04:0e:d0:57:dc:3a:3a:e1:ae:74:85:
d4:3f:fc:fc:dc:a4:40:28:39:de:46:58:2e:84:4a:
af:7b:d9:a0:92:1a:a9:4f:7b:75:fc:34:0e:c6:bc:
ef:53:20:22:05:e4:05:60:a3:cf:d9:08:fb:ef:93:
84:9f:5e:1e:bc:10:56:0e:eb:d1:7e:2d:29:64:dd:
b6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:9A:B4:F5:1E:BA:87:ED:E6:EE:4D:B6:06:B6:FF:4B:02:97:93:04
X509v3 Authority Key Identifier:
keyid:A2:4E:52:3F:30:4E:22:EA:E8:CF:F8:80:D8:38:84:93:C5:A0:11:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ok5SPzBOIuroz_iA2DiEk8WgEXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/N5q09R66h-3m7k22Brb_SwKXkwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/ok5SPzBOIuroz_iA2DiEk8WgEXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.0.0/22
IPv6:
2a0a:4a00::/29
Signature Algorithm: sha256WithRSAEncryption
85:85:89:a5:c9:96:91:21:66:63:ae:be:12:3d:91:69:b5:03:
09:a9:ec:48:5f:11:c0:20:16:d1:37:a5:4c:04:1c:db:cf:79:
9e:ee:ca:0d:89:10:0c:9d:9e:ac:70:4e:18:ef:b2:12:22:a0:
96:43:fd:b9:aa:1f:aa:50:e6:ea:2e:01:fc:dc:6b:2c:29:20:
36:e8:62:de:6f:b5:7a:b3:27:c6:02:9b:c3:63:13:91:71:96:
b2:b7:82:85:1c:40:5e:7b:f5:8b:90:66:67:6d:9b:59:4d:3b:
14:0f:e0:1b:93:82:21:15:ac:8a:ed:13:6f:14:be:3f:9d:9a:
c0:ab:16:bd:4f:c5:bd:de:78:31:16:1b:90:7e:95:d9:8a:8a:
18:f7:9d:c8:a4:38:64:65:1c:ee:c4:c1:a7:28:c9:8b:17:db:
75:30:39:6d:e5:ab:09:6d:42:47:bd:4c:cf:70:82:b7:cf:bc:
ac:f7:38:a4:22:40:73:b9:72:e5:22:45:76:ac:2c:fa:89:bc:
c4:4c:9b:af:18:3b:d6:ab:c3:f4:18:f8:e3:97:4e:bf:f0:f2:
d4:6a:33:0a:86:4a:68:1d:a3:fe:3b:f9:0f:bd:38:d1:d8:63:
1f:56:9d:63:ce:e9:13:b5:eb:28:c8:2e:25:56:75:2f:bb:49:
34:70:41:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:21 2024 by rpki-client on console-fra.rpki-client.org