Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/f17722-e58b-4452-8135-eaa5acf35fd1/1/m93Nd_HqV1qcYaG-jdVc_OmlDOM.roa
File: m93Nd_HqV1qcYaG-jdVc_OmlDOM.roa (raw, json)
Hash identifier: PI3W/TR9MwQ464Sl/Dmnnt+r69hUz1WI6nPY3S9w2ew=
Subject key identifier: 9B:DD:CD:77:F1:EA:57:5A:9C:61:A1:BE:8D:D5:5C:FC:E9:A5:0C:E3
Certificate issuer: /CN=9cd67d1033ca472b5bb80fd596bb836d12e22261
Certificate serial: 018215D9C712C63C835A95991AC8D9D33329
Authority key identifier: 9C:D6:7D:10:33:CA:47:2B:5B:B8:0F:D5:96:BB:83:6D:12:E2:22:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nNZ9EDPKRytbuA_VlruDbRLiImE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/f17722-e58b-4452-8135-eaa5acf35fd1/1/m93Nd_HqV1qcYaG-jdVc_OmlDOM.roa
Signing time: Tue 19 Jul 2022 09:46:09 +0000
ROA not before: Tue 19 Jul 2022 09:46:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208710
IP address blocks: 45.66.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:15:d9:c7:12:c6:3c:83:5a:95:99:1a:c8:d9:d3:33:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cd67d1033ca472b5bb80fd596bb836d12e22261
Validity
Not Before: Jul 19 09:46:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bddcd77f1ea575a9c61a1be8dd55cfce9a50ce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3e:12:49:ce:1c:7d:72:df:52:32:be:27:92:
5a:38:08:3a:74:e0:ab:d0:52:77:bd:8f:3e:0d:8e:
1f:51:5f:15:f7:80:6d:5e:36:04:cf:70:c0:07:99:
c7:7b:da:ec:aa:59:45:da:be:06:e7:c4:41:7d:69:
30:a8:0f:af:66:be:d1:e5:f1:b1:3f:dc:20:c9:ba:
60:83:bd:ab:7d:0f:45:b9:88:8b:38:e8:7c:a2:6c:
77:06:85:d7:93:38:73:32:05:a3:d4:ee:a2:10:24:
ae:ea:d6:74:9c:c7:79:b8:00:ca:72:66:c6:f5:16:
27:05:a2:d2:d7:a1:b2:27:59:8f:e5:f2:ef:60:b6:
a9:df:19:33:0c:51:70:77:a8:ec:64:52:1a:70:ea:
70:88:ae:1f:64:de:9c:ed:48:a8:41:7a:18:d3:ed:
00:9e:9f:7d:76:5e:3a:7a:55:83:11:69:8b:d6:aa:
c8:8c:58:98:5e:44:0c:7f:72:03:b2:cf:3a:6d:85:
3d:25:26:44:af:1a:25:a6:18:bf:1e:d8:38:24:d9:
35:8f:61:7d:57:4d:d6:d3:55:21:43:64:7b:aa:ed:
26:98:7d:2f:b3:4d:2d:f9:5a:1f:1d:c5:72:bb:09:
89:10:cd:a3:f9:5a:47:4d:0b:e8:f1:31:86:75:de:
5a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:DD:CD:77:F1:EA:57:5A:9C:61:A1:BE:8D:D5:5C:FC:E9:A5:0C:E3
X509v3 Authority Key Identifier:
keyid:9C:D6:7D:10:33:CA:47:2B:5B:B8:0F:D5:96:BB:83:6D:12:E2:22:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nNZ9EDPKRytbuA_VlruDbRLiImE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/f17722-e58b-4452-8135-eaa5acf35fd1/1/m93Nd_HqV1qcYaG-jdVc_OmlDOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/f17722-e58b-4452-8135-eaa5acf35fd1/1/nNZ9EDPKRytbuA_VlruDbRLiImE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.0.0/22
Signature Algorithm: sha256WithRSAEncryption
32:b2:3d:fe:f8:eb:1a:c9:a6:35:80:8b:dc:ec:39:70:f8:63:
b6:72:da:d3:9d:89:93:70:36:c9:15:f9:4c:5e:82:5c:e7:18:
c5:30:bf:ce:14:a2:45:72:0b:8e:c5:ef:3e:e8:91:41:f2:07:
40:a1:28:9b:49:e4:12:fa:3b:ce:e4:bf:83:e3:63:27:d5:56:
83:30:0c:76:7b:d3:23:8c:af:9e:c9:3f:23:a1:8c:14:8c:94:
fa:ce:f5:19:74:a1:a1:3a:56:fd:7f:69:37:83:f3:70:c8:70:
9e:78:d3:d5:cb:e1:45:0a:fe:5b:f2:28:8a:6a:b1:88:52:33:
0c:e8:28:c9:df:12:45:de:7d:34:ad:66:ea:d0:24:45:5d:d8:
87:c6:88:a6:06:af:54:ac:58:dd:43:63:dd:1f:9c:9b:be:a3:
78:9d:e9:33:7e:f7:13:96:d3:29:18:49:01:66:b6:8d:4a:45:
2f:d4:c7:ab:f7:be:4e:e0:15:34:7c:07:98:06:43:35:81:8a:
02:fc:70:3e:e7:a6:6f:94:a5:5a:d0:e2:1d:07:4c:a2:98:05:
a6:2b:49:76:4c:6e:9e:c2:da:1d:3d:4b:e4:1c:8b:02:f9:c3:
c9:31:02:70:96:46:a0:02:97:1d:f2:eb:fd:a4:18:1b:ae:14:
95:f2:53:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:44 2025 by rpki-client