Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/nNa-RR_tmc9AA14VPOR1ub1W5N4.roa
File: nNa-RR_tmc9AA14VPOR1ub1W5N4.roa (raw, json)
Hash identifier: Vth76ok5fFfJibqSgxaAJGmcgfYzTL6T4v5KyQo23WM=
Subject key identifier: 9C:D6:BE:45:1F:ED:99:CF:40:03:5E:15:3C:E4:75:B9:BD:56:E4:DE
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 0554976D
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/nNa-RR_tmc9AA14VPOR1ub1W5N4.roa
Signing time: Sat 01 Jan 2022 06:56:04 +0000
ROA not before: Sat 01 Jan 2022 06:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134835
IP address blocks: 45.155.220.0/24 maxlen: 24
45.155.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89429869 (0x554976d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Jan 1 06:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9cd6be451fed99cf40035e153ce475b9bd56e4de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2a:83:01:a6:1c:f4:7d:93:df:6b:cf:fe:69:
f8:f7:09:47:f0:d5:44:25:5a:d6:9e:c5:6c:1f:ab:
28:1b:08:21:56:02:e3:95:21:5b:fd:07:7b:af:5f:
c0:0e:7a:b5:84:9d:88:22:4c:fa:2d:6f:82:3c:05:
a6:0f:9c:2f:37:12:5d:94:53:44:e6:ff:70:03:37:
a1:37:0a:e6:3b:90:d9:df:9b:d9:e7:63:6b:44:e3:
c1:e1:22:c2:24:27:87:4d:3a:a5:66:b5:ba:f9:98:
dd:1f:d4:d5:f8:d8:66:c0:d6:d2:9a:74:17:2b:8f:
3b:20:bf:3f:6f:5d:40:55:c8:d2:3c:4a:ed:ae:d2:
d9:f8:31:b6:0b:51:fc:a7:01:22:c3:20:7a:da:12:
a9:a3:e9:a0:31:53:0c:70:43:92:2d:1f:5b:70:91:
98:a9:1d:bc:a9:cd:53:42:98:d9:99:af:a3:b9:d8:
92:47:9d:e8:1c:6f:33:e7:3f:03:61:28:b3:9b:6b:
36:2a:1b:97:d8:4d:b1:58:2c:70:b3:53:a1:22:a5:
2e:88:73:6e:e1:fa:e2:7d:c2:28:78:bc:c3:90:00:
5a:ef:10:20:b9:b3:7b:f1:2d:6a:90:13:9c:08:b2:
e0:37:ff:68:37:7e:01:26:84:c8:81:05:ba:a2:00:
8b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:D6:BE:45:1F:ED:99:CF:40:03:5E:15:3C:E4:75:B9:BD:56:E4:DE
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/nNa-RR_tmc9AA14VPOR1ub1W5N4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.220.0/23
Signature Algorithm: sha256WithRSAEncryption
66:01:7c:26:0d:de:b7:ba:53:9a:6c:20:8c:47:e8:0e:53:87:
5a:99:a1:85:e8:17:b3:78:a0:f8:0f:7d:07:b8:e5:b4:62:71:
ce:20:cc:2e:79:7c:c8:2d:f6:7e:5e:96:13:32:f7:59:24:bb:
d4:6b:a9:d1:cd:a5:d7:e8:b3:c7:b9:f2:37:c9:68:26:84:64:
69:f6:e7:0a:c6:7e:04:25:06:72:43:dd:db:03:fc:36:81:80:
37:f8:07:1d:7e:72:86:2e:53:4a:7d:2a:e0:0d:98:97:16:cb:
b0:b3:40:ba:29:05:ae:e4:0a:74:c8:10:8b:6b:8d:85:c2:7c:
ac:86:7d:8a:67:17:78:e7:ad:2a:22:e8:e5:30:30:f8:31:7d:
06:1b:aa:06:b0:83:d7:bf:aa:0e:cd:71:1c:e8:68:91:1c:66:
19:e4:59:79:c9:a8:5a:75:26:28:9b:0d:25:3e:23:ba:2c:f5:
4d:78:c1:bb:b1:0a:72:d6:71:7c:b2:ea:3c:54:90:05:02:7c:
5f:04:30:8e:94:58:62:86:a3:af:e1:51:89:a9:e7:03:cd:fd:
99:f9:12:36:bc:30:e7:83:dd:a0:4e:1f:19:b5:f1:db:7e:1c:
ac:7a:64:c7:d3:71:15:de:5f:d6:e9:c4:e2:25:76:c5:eb:64:
00:56:54:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:14 2024 by rpki-client on console-ams.rpki-client.org