Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/nzC1OAqD4DgrJGdJbPEYa4AaZD4.roa
File: nzC1OAqD4DgrJGdJbPEYa4AaZD4.roa (raw, json)
Hash identifier: 9gLHjvEWgtlwRTNfUwsbb7vOLbZMLxrR9Izs3Sq7ifM=
Subject key identifier: 9F:30:B5:38:0A:83:E0:38:2B:24:67:49:6C:F1:18:6B:80:1A:64:3E
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0408C94E
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/nzC1OAqD4DgrJGdJbPEYa4AaZD4.roa
Signing time: Thu 17 Mar 2022 03:58:29 +0000
ROA not before: Thu 17 Mar 2022 03:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6762
IP address blocks: 45.140.194.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67684686 (0x408c94e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Mar 17 03:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f30b5380a83e0382b2467496cf1186b801a643e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b0:b9:51:ca:eb:93:4f:7c:cb:5a:00:ea:fa:
2f:37:0c:de:e0:f4:3c:b5:50:db:29:c4:83:0b:ff:
ed:93:d3:e5:6d:ad:41:46:ae:5e:1f:02:27:82:ff:
6f:cd:74:ca:6f:66:f8:e9:61:21:34:8a:89:ad:f5:
1f:da:d3:cd:67:cd:71:46:df:cb:7f:87:ae:41:ed:
e2:0f:34:0e:b9:e3:1c:41:2c:09:85:d4:56:46:3f:
ad:60:28:bc:c8:c9:d8:ca:4a:59:cd:56:15:d4:f2:
50:4f:69:d2:c4:41:15:ba:bd:bc:5b:04:95:1f:59:
25:77:3d:a4:24:c4:67:1d:48:e1:ba:3d:ff:50:34:
59:ae:cb:b5:61:c0:a5:0b:30:a7:3f:b0:f4:6d:47:
08:37:75:2b:ed:48:43:da:00:58:cd:2c:d4:5a:69:
41:89:fc:c0:a2:f0:12:1c:a9:dc:a7:e3:e8:94:1d:
2e:3c:bf:52:74:d0:e5:63:f1:ed:74:b1:11:99:47:
ba:7c:4d:30:84:47:b1:08:40:c7:b5:56:44:a5:ec:
7f:11:a6:89:6a:e4:dc:91:9d:1a:f3:15:0f:25:54:
72:c3:50:37:35:1e:2a:72:cf:d8:3c:92:da:0e:55:
7c:29:ef:30:92:81:03:80:42:8b:9d:e4:d9:a1:e6:
9d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:30:B5:38:0A:83:E0:38:2B:24:67:49:6C:F1:18:6B:80:1A:64:3E
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/nzC1OAqD4DgrJGdJbPEYa4AaZD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.194.0/23
Signature Algorithm: sha256WithRSAEncryption
96:2a:13:7a:47:33:c5:b4:6a:97:f7:d2:0a:88:5b:89:79:0c:
da:1e:42:cd:84:d1:91:4c:f4:f3:d5:c1:9c:50:f5:08:b3:4f:
59:03:5a:b8:cb:aa:a5:8e:4b:3c:e5:2a:3c:4d:6f:e7:75:64:
e1:c1:a5:77:da:dd:19:ee:a5:bd:b4:97:6d:c2:26:28:15:76:
04:bb:69:be:e6:fe:2c:0c:dd:9e:4f:ef:d5:a4:6c:74:b5:1b:
bc:7d:b2:b8:56:fd:8e:fb:b4:61:ae:19:6b:a2:ef:22:cf:d1:
d4:bc:21:47:f3:fd:dc:40:e5:d6:1e:c1:65:34:a0:c8:3b:0d:
3e:05:2b:77:5d:21:28:82:b8:79:7f:22:f0:4b:72:71:c0:15:
83:b2:f0:9d:db:a1:4e:7d:55:1c:cf:b2:d2:9f:d0:68:84:23:
19:6e:90:18:7e:1c:58:c4:7b:00:8e:19:a4:c4:b7:42:3d:9e:
73:bc:f4:ae:33:7a:1f:8b:03:1b:b3:35:e5:73:ef:61:9f:29:
7c:b6:2c:52:c4:15:41:86:24:13:1f:02:40:6d:e8:ef:ca:e5:
40:65:58:61:f1:ea:6f:2f:db:a7:66:4e:7f:a8:3a:76:0e:94:
68:66:52:25:dd:e0:68:9e:75:e0:1c:a4:79:ae:e2:22:1e:55:
9f:53:81:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org