Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/6e2ae2-9b3e-4eb8-83d4-c781324b7979/1/nb86bzWDLY8pTXBZ4zvGhCgK03E.roa
File: nb86bzWDLY8pTXBZ4zvGhCgK03E.roa (raw, json)
Hash identifier: bTT39GXqcyRuzsAdjrN6bjmCePIQLBfm4Lawry9WFxI=
Subject key identifier: 9D:BF:3A:6F:35:83:2D:8F:29:4D:70:59:E3:3B:C6:84:28:0A:D3:71
Certificate issuer: /CN=50055ebc3d1c52f17ae65ac292ebe09931009cf6
Certificate serial: 07127551
Authority key identifier: 50:05:5E:BC:3D:1C:52:F1:7A:E6:5A:C2:92:EB:E0:99:31:00:9C:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAVevD0cUvF65lrCkuvgmTEAnPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/6e2ae2-9b3e-4eb8-83d4-c781324b7979/1/nb86bzWDLY8pTXBZ4zvGhCgK03E.roa
Signing time: Sat 01 Jan 2022 10:58:41 +0000
ROA not before: Sat 01 Jan 2022 10:58:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44270
IP address blocks: 45.158.232.0/22 maxlen: 22
2a0f:6c80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118650193 (0x7127551)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50055ebc3d1c52f17ae65ac292ebe09931009cf6
Validity
Not Before: Jan 1 10:58:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9dbf3a6f35832d8f294d7059e33bc684280ad371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e5:46:45:97:cb:f3:42:f6:f3:d1:25:65:7d:
32:df:73:a3:d2:b2:c5:ee:e2:87:f3:d4:4a:d3:cb:
7e:06:b2:15:bb:cb:a8:42:a6:b3:f9:d9:73:16:81:
af:9d:32:49:7e:cc:e2:8d:cd:aa:70:1f:f1:ff:6a:
64:08:20:05:f6:0e:60:19:4f:bf:d6:ca:3a:58:2d:
c3:ab:bd:7e:02:7a:00:3c:28:2a:c3:2f:f3:5d:b8:
6b:a0:10:ed:7b:fc:72:08:1e:19:38:f1:66:b6:6c:
67:bc:1c:45:82:c0:38:7d:5d:83:f4:7a:4a:9d:9c:
30:19:9f:5b:d7:23:95:10:9c:b2:45:1f:c3:38:8c:
04:ee:d1:19:47:ff:09:ae:d6:67:f1:e0:e3:8a:c6:
ee:0b:24:58:27:62:49:3f:ad:e3:9e:8f:04:02:bb:
a5:95:32:76:36:26:73:28:04:ac:68:7d:ee:64:7d:
ad:d2:5a:61:eb:c0:09:67:88:d7:0a:95:0d:72:88:
ef:fa:0b:9a:bd:00:c0:b2:73:cd:39:3f:9c:b4:a0:
be:8c:c5:93:0c:e4:e3:e8:b7:31:72:15:55:a6:29:
54:a5:18:84:9a:ad:f3:47:70:ad:e3:aa:a6:58:34:
04:36:fd:70:a1:11:79:98:e0:f0:5e:fa:0a:2d:89:
01:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:BF:3A:6F:35:83:2D:8F:29:4D:70:59:E3:3B:C6:84:28:0A:D3:71
X509v3 Authority Key Identifier:
keyid:50:05:5E:BC:3D:1C:52:F1:7A:E6:5A:C2:92:EB:E0:99:31:00:9C:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAVevD0cUvF65lrCkuvgmTEAnPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/6e2ae2-9b3e-4eb8-83d4-c781324b7979/1/nb86bzWDLY8pTXBZ4zvGhCgK03E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/6e2ae2-9b3e-4eb8-83d4-c781324b7979/1/UAVevD0cUvF65lrCkuvgmTEAnPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.232.0/22
IPv6:
2a0f:6c80::/29
Signature Algorithm: sha256WithRSAEncryption
86:af:50:d0:e6:85:7c:18:e0:6a:b5:33:89:e7:4d:6c:a5:95:
08:cd:fe:3a:cf:43:49:47:bc:84:d3:d0:9c:45:70:62:fe:fd:
39:ee:d0:09:a1:10:b9:f9:8e:b8:55:af:32:3c:0b:42:ad:92:
08:93:b2:ee:99:6a:54:81:e1:28:c2:40:3c:09:ce:8f:1a:85:
ae:f3:db:3a:ce:d8:e9:83:92:44:79:a4:53:2f:3a:a0:e0:50:
41:87:7e:0c:f2:b0:08:a6:5c:25:cd:cb:ee:00:e4:f1:60:df:
b0:97:71:81:4a:6e:35:b7:9f:ed:47:51:7d:36:29:14:06:29:
a1:5a:d6:76:bc:2e:79:d7:31:ec:9f:70:35:36:dc:cd:0f:e4:
ae:bb:8c:40:ba:5a:8b:42:2b:39:4d:d9:f2:4d:f5:74:2e:88:
52:56:13:2d:34:88:f3:42:87:0f:2e:86:1c:82:e4:04:13:ae:
bf:88:3f:3c:81:37:f6:b5:28:00:d4:61:2b:33:00:8c:a0:3a:
78:b9:6c:39:4d:6a:ee:29:c0:a3:f5:00:b0:94:8b:c1:79:98:
98:18:55:23:b9:2f:4d:4a:ea:76:ed:ad:4b:3c:0c:48:7d:8a:
71:53:a2:c0:f1:66:6b:23:91:fb:8c:eb:77:bc:8d:31:7d:2d:
60:28:42:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:12 2023 by rpki-client on console.sobornost.net