Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/Nngq-fH_CQOKm7B394Z7n9tKvZQ.roa
File: Nngq-fH_CQOKm7B394Z7n9tKvZQ.roa (raw, json)
Hash identifier: yDvBMg29iK33su8SmJhyVE6PIICRLNNONrAfFSnYpZ4=
Subject key identifier: 36:78:2A:F9:F1:FF:09:03:8A:9B:B0:77:F7:86:7B:9F:DB:4A:BD:94
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 0431B956
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/Nngq-fH_CQOKm7B394Z7n9tKvZQ.roa
Signing time: Mon 23 May 2022 12:52:17 +0000
ROA not before: Mon 23 May 2022 12:52:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210950
IP address blocks: 45.143.201.0/24 maxlen: 24
185.193.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70367574 (0x431b956)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: May 23 12:52:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36782af9f1ff09038a9bb077f7867b9fdb4abd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b3:a3:49:2d:fa:97:b1:41:bc:bd:12:ee:97:
b6:49:8c:6d:e1:f4:35:83:be:4e:8f:01:ef:18:a9:
e2:df:9e:e9:d5:f0:cf:e5:6b:30:b9:77:4d:08:e4:
21:8e:c9:d6:82:0d:9f:07:51:9b:e3:d4:63:56:3c:
fa:01:49:a3:29:81:30:00:c4:9c:cb:d5:d6:a6:b7:
ef:96:fe:b0:7f:4a:40:fd:df:3b:a1:be:bf:49:18:
e6:1a:d8:77:c6:c9:ad:51:30:94:72:2f:72:73:51:
f3:68:64:c7:2b:39:4c:07:31:00:9d:af:35:57:e0:
c9:95:5d:d3:da:9b:cc:1d:d6:1b:8c:8f:bb:a1:49:
61:da:88:ea:12:ca:0a:8b:20:40:86:49:c7:fc:9b:
61:0c:3e:03:1a:3c:c8:b6:cc:6a:16:f8:fc:0d:90:
98:70:74:c7:83:14:f1:0a:9e:a2:1f:d8:e8:26:7d:
7c:d5:52:0b:aa:d9:a9:9e:5b:29:75:af:f8:86:5f:
5d:ca:83:f5:48:57:04:be:8f:98:a3:9a:94:88:ed:
38:70:03:24:41:0b:90:2f:11:7e:ac:cd:03:4d:11:
c5:f6:93:85:dc:bc:a0:ff:6e:4d:63:0e:ab:a8:6d:
32:f1:6b:db:bd:39:eb:ad:20:5e:b0:c7:43:25:76:
fa:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:78:2A:F9:F1:FF:09:03:8A:9B:B0:77:F7:86:7B:9F:DB:4A:BD:94
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/Nngq-fH_CQOKm7B394Z7n9tKvZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.201.0/24
185.193.89.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:2c:27:ac:e5:74:02:36:b4:ae:53:b8:6e:c6:85:61:2c:59:
f6:19:9f:e6:9f:e9:bd:8d:6d:db:54:34:f6:e5:8a:dc:0c:c8:
be:8b:bb:96:ed:68:4c:f7:15:31:24:e4:88:66:ca:cf:94:10:
08:c6:b3:69:cd:b9:ca:62:b4:d2:25:b9:0d:72:66:f8:ee:81:
1d:56:14:85:ac:ba:39:35:25:40:5d:a4:65:fd:3c:b8:0a:00:
da:a5:6e:b8:11:69:5e:87:1f:e0:dd:50:47:a4:60:d9:bc:54:
f3:47:d9:01:10:ef:e2:20:fa:04:82:8c:f7:5b:54:06:25:f6:
d0:73:e6:53:78:8d:54:d0:b3:ea:ab:cf:28:97:ea:f0:1f:0e:
29:64:e1:00:fd:24:d6:7b:8b:1d:77:54:da:d2:d8:cd:2e:a0:
69:dd:eb:bf:94:44:61:38:b8:a0:10:8f:74:32:cb:ef:5b:05:
3c:f7:f7:75:84:df:87:49:6c:56:40:b9:89:3b:34:ea:89:bf:
97:27:fa:54:af:55:93:b8:f7:8b:cc:78:68:c0:b7:4b:45:64:
07:82:fb:d2:33:84:1c:26:5e:31:42:4c:b0:bf:07:e7:3d:84:
f3:2f:9c:38:ab:02:ab:5e:ef:ab:8b:43:8d:f9:fd:24:37:93:
b8:7f:bb:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:58 2024 by rpki-client on console-fra.rpki-client.org