Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NrZ1EZ3b6DI1eq7V_1Dcs3Kw2jc.roa
File: NrZ1EZ3b6DI1eq7V_1Dcs3Kw2jc.roa (raw, json)
Hash identifier: 3xKDadPKwqj71AZw0eg/Rfx+FEFsTC9xKpdFv729xCA=
Subject key identifier: 36:B6:75:11:9D:DB:E8:32:35:7A:AE:D5:FF:50:DC:B3:72:B0:DA:37
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0183F9164E9882124986EE9FBF0B465D29DC
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NrZ1EZ3b6DI1eq7V_1Dcs3Kw2jc.roa
Signing time: Fri 21 Oct 2022 05:48:52 +0000
ROA not before: Fri 21 Oct 2022 05:48:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 45.89.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f9:16:4e:98:82:12:49:86:ee:9f:bf:0b:46:5d:29:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Oct 21 05:48:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36b675119ddbe832357aaed5ff50dcb372b0da37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:bb:cf:6a:87:d6:84:85:3b:42:ef:5b:71:33:
f3:9f:6b:19:68:c9:3e:a5:fd:1f:ea:54:a6:39:2b:
a5:ff:d6:1e:fc:63:b1:2d:da:f7:6c:6e:c6:24:eb:
b3:73:0e:41:1c:43:32:ac:4a:69:91:7c:d3:1a:d8:
8d:2b:0c:73:2f:77:eb:10:e5:5f:3f:cd:2a:c5:59:
50:7d:af:6e:54:12:98:e4:a4:a9:ed:88:5b:6c:ca:
c2:c3:b9:bd:ad:a8:e9:87:9e:12:35:40:a0:c9:b5:
fd:45:99:ca:43:8f:c9:7c:44:b8:cf:6a:5e:e4:a2:
0d:bf:e4:01:70:54:2b:27:df:9e:be:74:6e:ff:c1:
ac:d2:9d:2d:c9:76:42:4c:de:c9:51:af:dd:58:6c:
2f:93:56:ff:14:39:ee:b5:a5:52:fe:82:5e:ef:3e:
15:fe:f5:23:43:fd:be:50:d0:2c:79:4e:d9:aa:c3:
cd:e9:9e:2b:19:40:35:0b:e8:92:d1:93:bb:9b:d5:
22:58:56:aa:39:d9:81:bd:cf:db:ea:21:74:f4:5a:
14:96:7b:a3:21:a4:04:20:71:d2:70:30:49:f8:52:
8b:dd:b4:93:0e:f6:35:61:d5:25:36:1f:72:89:ec:
8b:f4:43:19:b6:96:91:f0:3a:aa:1a:c1:7e:fa:c4:
1c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:B6:75:11:9D:DB:E8:32:35:7A:AE:D5:FF:50:DC:B3:72:B0:DA:37
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NrZ1EZ3b6DI1eq7V_1Dcs3Kw2jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.32.0/22
Signature Algorithm: sha256WithRSAEncryption
47:10:bf:ff:65:b1:55:36:74:97:3a:6d:40:1d:a0:56:13:5c:
09:98:c2:5d:2b:38:46:af:8b:60:fe:91:f9:98:08:4b:60:7c:
1b:f2:4f:e2:56:08:65:56:f8:2a:58:20:50:8c:62:e1:4c:61:
5f:c4:f6:da:5f:80:b5:3b:68:c5:99:9e:da:56:2c:fd:b3:38:
43:58:cf:7e:f4:a5:ce:21:fb:73:f4:b9:d1:aa:5e:7f:23:89:
56:e4:fb:ff:5e:a3:8c:c3:80:3b:d7:fe:6a:5a:28:98:da:37:
e9:42:42:cc:dc:45:4a:53:3b:18:1c:b6:34:c6:75:be:94:fe:
6d:a7:49:09:5f:61:1d:57:21:8e:2d:d8:ff:d0:d8:9f:41:41:
e4:26:c7:0a:9d:dc:a4:01:6a:ce:6f:89:44:05:14:b6:b1:88:
31:43:4d:0b:fe:bc:0b:8b:1b:7f:5a:49:62:ae:34:6d:d5:0a:
ec:c8:94:41:be:ab:00:67:ca:82:2b:d6:f9:b4:c4:06:29:fb:
27:f9:47:5e:f8:97:e1:2b:2c:b4:33:ef:00:4c:bf:69:31:18:
c5:6d:17:66:69:b2:d2:dd:1c:b6:a4:b1:da:b9:55:5d:bf:9e:
f2:3e:cc:26:e3:30:b8:94:b4:c6:95:f0:2f:8d:ae:43:48:ee:
b7:3e:48:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:01 2023 by rpki-client on console-fra.rpki-client.org