Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/nncj6TWpFFIwPb5ywTtq5ygQ8WA.roa
File: nncj6TWpFFIwPb5ywTtq5ygQ8WA.roa (raw, json)
Hash identifier: EE2Dg+Gjjh2TM2SybjF7gZM/omEIHTu1LuIIHAGXYB0=
Subject key identifier: 9E:77:23:E9:35:A9:14:52:30:3D:BE:72:C1:3B:6A:E7:28:10:F1:60
Certificate issuer: /CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Certificate serial: 0184ECD51D4EC4E2FEF16DD063DC37E2D589
Authority key identifier: 1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/nncj6TWpFFIwPb5ywTtq5ygQ8WA.roa
Signing time: Wed 07 Dec 2022 13:45:00 +0000
ROA not before: Wed 07 Dec 2022 13:45:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212609
IP address blocks: 45.146.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:d5:1d:4e:c4:e2:fe:f1:6d:d0:63:dc:37:e2:d5:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Validity
Not Before: Dec 7 13:45:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e7723e935a91452303dbe72c13b6ae72810f160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b3:7c:c5:78:a9:b2:a5:25:9b:59:1c:44:82:
50:e9:e4:e3:f4:49:e8:ac:4b:eb:99:3b:88:11:cd:
69:52:79:8a:8a:b3:8b:17:f0:d2:59:cf:03:e8:eb:
29:7e:c9:57:6b:c1:fc:15:53:fe:87:2d:ee:cd:15:
35:91:42:35:69:f5:ab:71:88:1d:63:a1:6e:ed:4a:
12:54:62:02:17:3f:32:d5:f2:e9:fd:53:a9:02:77:
06:3a:fd:e0:46:3d:5d:91:24:04:bd:45:42:19:32:
79:98:cc:9b:65:e8:1d:97:ab:08:ec:8d:4a:85:f2:
a4:fa:ab:f7:eb:e7:e9:41:bd:5c:bb:29:b9:44:08:
58:38:f0:d1:86:f1:4f:03:e0:c4:39:85:39:0a:7f:
61:aa:06:8c:cd:cb:9b:59:57:81:5c:ab:fa:72:ae:
f2:6a:96:70:14:29:5d:6e:34:80:03:71:c2:b2:9c:
fc:0f:da:48:b4:4a:b6:06:ab:89:d3:ab:dc:f6:9f:
dd:df:45:89:c8:6c:e1:1f:94:59:68:55:9b:c2:47:
0a:35:46:6b:aa:23:d7:04:67:5e:61:dd:4d:44:c4:
e9:9b:83:85:cc:3e:52:41:f4:ec:94:84:ac:d3:25:
15:de:c0:b8:da:e8:c5:a8:90:8f:c1:d0:9c:93:73:
80:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:77:23:E9:35:A9:14:52:30:3D:BE:72:C1:3B:6A:E7:28:10:F1:60
X509v3 Authority Key Identifier:
keyid:1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/nncj6TWpFFIwPb5ywTtq5ygQ8WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/HVrzriH5fsTsddUahaPhYu16ntc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.160.0/24
Signature Algorithm: sha256WithRSAEncryption
65:9d:74:7f:fe:1f:db:0f:7e:dd:04:56:a7:77:ca:9d:87:58:
d3:07:d0:7c:04:cb:31:30:78:70:16:45:d5:60:64:d2:b6:7c:
71:05:b1:c5:79:64:b4:44:b1:9b:85:0f:9c:c5:3e:a2:cc:15:
9a:f2:cb:fe:62:f4:ef:eb:52:ee:96:0d:dc:a2:18:f6:05:48:
44:0a:5a:0d:7f:2a:70:36:16:47:34:f3:c4:5f:e7:0d:a1:f3:
72:7b:15:4a:51:68:7a:aa:5e:3a:c8:82:28:ac:13:2e:d4:1d:
00:58:89:00:60:54:9f:37:8e:c3:f9:b7:10:e8:9a:24:ad:42:
ce:f8:d6:ec:a3:a3:36:ee:6b:0f:64:6a:5d:a0:02:d8:a0:fd:
56:7e:ab:ba:fc:00:b3:15:d6:ae:ff:bc:18:04:89:28:8d:2e:
c0:d7:0c:4e:65:81:4a:25:9e:53:70:62:ea:e6:4e:7d:79:0d:
73:90:c6:f4:8a:45:63:44:d1:31:42:8e:b2:51:6f:d1:d3:45:
18:0a:93:ca:48:9e:ae:19:3e:e2:da:d6:ad:47:4e:ad:31:24:
9a:a7:d1:b3:2f:bd:e4:c1:cc:92:3e:49:ae:be:10:77:67:f3:
a1:1e:e7:15:86:9f:51:75:c2:f8:75:9d:65:da:ae:ce:ba:05:
63:b8:5a:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:02 2023 by rpki-client on console-fra.rpki-client.org