Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/natg_Wf8n_vV-t876AsXsZlcvWo.roa
File: natg_Wf8n_vV-t876AsXsZlcvWo.roa (raw, json)
Hash identifier: CP4ObyJmZnJEswt+hSsxWaOikMvDMwZDku38KaN4wRE=
Subject key identifier: 9D:AB:60:FD:67:FC:9F:FB:D5:FA:DF:3B:E8:0B:17:B1:99:5C:BD:6A
Certificate issuer: /CN=fbf2a5a5df4d95ac0115caedad194b62688f2bba
Certificate serial: 01CCE928
Authority key identifier: FB:F2:A5:A5:DF:4D:95:AC:01:15:CA:ED:AD:19:4B:62:68:8F:2B:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_Klpd9NlawBFcrtrRlLYmiPK7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/natg_Wf8n_vV-t876AsXsZlcvWo.roa
Signing time: Sat 01 Jan 2022 04:53:34 +0000
ROA not before: Sat 01 Jan 2022 04:53:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208603
IP address blocks: 45.90.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30206248 (0x1cce928)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbf2a5a5df4d95ac0115caedad194b62688f2bba
Validity
Not Before: Jan 1 04:53:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9dab60fd67fc9ffbd5fadf3be80b17b1995cbd6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:41:95:c5:64:7c:76:50:3a:2e:6a:40:e7:79:
ed:9b:d2:65:12:93:cd:b0:46:4d:cb:9d:84:32:34:
87:93:90:a5:65:67:6c:7c:8a:e6:5e:89:d4:79:73:
8e:2a:8d:7a:f6:de:24:25:ac:a8:30:e0:52:b8:92:
c2:a3:6a:b6:43:0d:dc:91:35:44:58:a5:85:2b:e3:
dd:85:78:5c:83:62:fb:3f:94:3e:6f:ae:fe:dd:9a:
d7:a1:52:27:a9:b7:c6:1a:e8:c5:83:46:83:1e:4c:
ba:35:5c:65:4c:d3:ca:06:43:dd:e3:22:a1:62:49:
41:97:45:f2:65:2a:58:f1:0a:c4:2f:df:da:36:26:
f9:69:10:0c:c5:f9:47:25:3f:51:14:6f:47:c0:5c:
68:a7:47:d7:57:cf:97:d7:98:ea:38:74:b4:c4:47:
00:12:de:38:67:eb:7b:9c:2e:bc:47:0a:59:32:5a:
04:36:f9:00:ba:75:22:96:c7:2b:0e:77:54:c0:cd:
c9:9d:c9:6d:7a:86:85:15:04:e1:6d:ff:10:06:48:
b5:c0:bf:2b:dd:81:44:38:15:c4:92:9b:71:e2:e6:
ef:44:e7:a6:22:68:45:64:7d:63:94:7e:3f:12:33:
35:91:7a:ee:a7:fc:37:51:61:b3:a5:87:7f:75:d9:
ab:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:AB:60:FD:67:FC:9F:FB:D5:FA:DF:3B:E8:0B:17:B1:99:5C:BD:6A
X509v3 Authority Key Identifier:
keyid:FB:F2:A5:A5:DF:4D:95:AC:01:15:CA:ED:AD:19:4B:62:68:8F:2B:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_Klpd9NlawBFcrtrRlLYmiPK7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/natg_Wf8n_vV-t876AsXsZlcvWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/1-_Klpd9NlawBFcrtrRlLYmiPK7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.252.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:ec:39:80:7c:47:1d:f5:fe:d6:46:30:ee:0a:45:01:b7:69:
ce:66:57:6d:c6:ac:fd:39:76:0b:50:3d:03:43:33:f9:e9:cc:
e5:20:8d:d9:08:33:42:fa:b2:6f:0a:e1:7f:42:36:82:50:5e:
60:3b:dd:8a:9f:5b:87:6c:0e:05:4f:0d:3c:19:ee:f3:6a:51:
0c:5c:69:12:a3:cf:87:dd:f9:f3:27:62:3b:43:c7:71:25:13:
98:42:c3:35:09:48:74:66:6a:05:71:cf:43:f1:6a:58:4c:38:
38:85:c0:9f:d2:b8:e1:28:0e:e4:d1:5a:3e:5b:78:e8:c7:25:
a8:27:9d:19:1b:1e:2a:8b:c8:f0:1f:3b:6f:5d:e7:d7:cb:75:
2b:1c:68:94:f4:4d:fe:92:ef:3e:85:03:bb:be:09:67:91:5a:
3a:87:41:fe:26:6d:f1:fd:42:2d:18:bd:03:63:00:4a:8a:3a:
95:2b:97:b8:77:25:ca:b4:05:8e:dc:80:c8:b3:1b:9e:d9:1a:
8e:30:96:27:47:c8:5a:f5:e4:87:34:41:77:18:a3:9c:64:32:
8a:f9:b1:59:49:73:16:27:25:0f:9a:65:aa:d4:b1:2e:2f:51:
c8:49:2c:28:7b:cb:6c:ff:8f:87:dc:bc:d3:0e:ee:7c:b5:a4:
5f:86:23:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:48 2023 by rpki-client on console-ams.rpki-client.org