Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/537ayiXHnwQKC-XApKTAQJ1KOkI.roa
File: 537ayiXHnwQKC-XApKTAQJ1KOkI.roa (raw, json)
Hash identifier: 3UOwn3GVoH+xq2haUds4n9HfdaNBavkfd3DCl5vjf8c=
Subject key identifier: E7:7E:DA:CA:25:C7:9F:04:0A:0B:E5:C0:A4:A4:C0:40:9D:4A:3A:42
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01823AEDC52CD326EFC7C3F8439041DF490E
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/537ayiXHnwQKC-XApKTAQJ1KOkI.roa
Signing time: Tue 26 Jul 2022 14:33:57 +0000
ROA not before: Tue 26 Jul 2022 14:33:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204355
IP address blocks: 45.92.2.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3a:ed:c5:2c:d3:26:ef:c7:c3:f8:43:90:41:df:49:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jul 26 14:33:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e77edaca25c79f040a0be5c0a4a4c0409d4a3a42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fd:28:ed:d1:80:65:1f:48:04:b0:85:02:08:
95:57:2c:cc:71:28:01:cb:74:ec:83:44:6f:d6:cb:
bc:25:33:4b:d8:12:a3:a3:cd:09:e6:dd:b6:bf:40:
a7:7d:78:5a:e7:65:7f:3c:c9:b1:f5:1a:13:eb:b4:
98:cd:f0:6d:b6:10:2e:78:76:42:c5:ef:c6:63:33:
fc:65:f2:fc:6c:d1:0d:06:09:31:69:40:83:94:09:
37:2e:d7:0b:b6:1a:a8:2e:01:81:ed:e4:df:80:e9:
c2:3a:54:20:11:6a:ee:1a:3e:9e:ce:ec:fd:9e:74:
25:8f:52:b4:1f:55:6f:c2:7f:97:c2:ca:4d:cc:f9:
55:33:01:1c:e6:ed:3d:56:2d:df:06:50:59:c9:9b:
f5:ea:a4:00:e3:a2:11:d2:9c:09:44:e9:8d:b1:6c:
f5:d3:36:34:b9:49:dc:ee:5b:f0:da:8e:cc:72:6c:
13:dc:53:8e:93:cd:ef:ed:3f:86:ae:20:41:f6:e8:
f6:70:55:53:7b:b3:4a:41:44:bc:0b:61:ee:16:e3:
d9:26:37:48:0f:25:5f:29:1e:59:e3:8a:f2:bc:54:
56:5d:94:c7:58:49:1c:a3:e8:1e:f2:f7:15:55:a0:
de:e6:fb:14:6d:87:4f:4c:d1:87:af:13:5b:cd:f9:
c5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:7E:DA:CA:25:C7:9F:04:0A:0B:E5:C0:A4:A4:C0:40:9D:4A:3A:42
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/537ayiXHnwQKC-XApKTAQJ1KOkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.2.0/23
Signature Algorithm: sha256WithRSAEncryption
73:54:ff:93:3d:05:87:e4:e3:ae:df:4a:74:05:91:4b:6a:67:
86:0f:bf:a2:26:b4:a4:7b:9c:cb:aa:6f:a1:d1:da:2e:a7:3b:
7a:cb:a8:fe:fb:37:03:80:1e:8f:28:6a:09:28:5a:f9:19:aa:
98:38:07:cb:19:de:72:09:32:d8:5f:a2:34:6b:1b:81:bd:b0:
6c:68:59:12:9c:fc:75:e0:eb:9b:79:4b:8f:29:3a:69:7b:f3:
c4:9d:7d:9c:08:8c:3c:d5:9f:47:3c:5c:42:9a:29:64:7c:a0:
80:02:50:39:cc:32:c2:61:ff:f7:48:ff:b8:fa:80:be:0f:14:
77:4e:8e:13:21:8e:57:28:ce:84:2c:f4:0c:16:71:0b:50:84:
15:eb:d6:0a:b0:a1:2b:76:3b:14:ca:f0:ed:2e:47:16:47:ea:
e4:d3:0d:4e:59:42:8d:7b:0c:4e:50:69:38:e0:1b:15:5a:74:
ed:c5:8f:66:d3:9a:1b:e3:1c:34:23:23:26:7f:66:b1:e8:38:
4a:35:47:5b:2c:36:1f:6e:57:89:c7:29:e8:e4:d6:69:6c:e1:
c0:4f:6c:e4:0d:3d:c7:b6:ca:e6:e6:39:85:8f:c0:62:ce:76:
b6:2b:a4:a4:cc:ff:b0:fb:93:d6:59:58:cb:34:c2:f3:ba:61:
e1:ad:0c:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:53 2023 by rpki-client on console-ams.rpki-client.org