Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/8deMQYTxYCt90I_Atqz2v3Pi0Ys.roa
File: 8deMQYTxYCt90I_Atqz2v3Pi0Ys.roa (raw, json)
Hash identifier: 0a/PJYfQLYHjqElziciKZhZoV9/hX542H6Cb2eNrUEg=
Subject key identifier: F1:D7:8C:41:84:F1:60:2B:7D:D0:8F:C0:B6:AC:F6:BF:73:E2:D1:8B
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: DFD04D
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/8deMQYTxYCt90I_Atqz2v3Pi0Ys.roa
Signing time: Sat 01 Jan 2022 07:00:33 +0000
ROA not before: Sat 01 Jan 2022 07:00:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206119
IP address blocks: 45.156.30.0/24 maxlen: 24
45.94.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14667853 (0xdfd04d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Jan 1 07:00:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1d78c4184f1602b7dd08fc0b6acf6bf73e2d18b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f1:59:2c:ec:61:c1:d9:e2:20:82:9f:89:cc:
88:dd:cf:46:f8:a6:15:e8:7c:10:69:ff:21:ca:aa:
f5:dd:9e:cc:7a:2e:6a:a4:73:cf:59:7b:cc:07:ac:
5f:e9:a1:73:81:38:2d:e3:8c:4a:f2:ea:2e:9e:73:
d0:f2:3a:3b:8c:c6:6f:2a:ef:4e:f5:67:62:f5:18:
7f:1d:2f:83:5c:e5:0c:c0:8d:d8:3b:4b:f0:26:97:
ec:3d:55:7b:e8:6c:cf:15:6a:c8:27:f7:d2:df:bd:
ad:21:53:86:48:ef:73:08:14:11:24:0f:0a:5e:ae:
98:2d:cf:21:2b:e0:9e:17:4d:fe:cc:c2:26:e8:a3:
7a:0e:9b:ad:ff:e3:d9:c7:ac:e2:fb:c9:88:77:5d:
de:b1:58:f5:3f:da:fc:f7:24:b8:57:ec:5d:23:72:
92:b8:7a:a4:f1:3b:c0:d8:86:31:a8:77:c7:fb:3a:
39:9c:d0:e9:86:27:38:00:23:0e:3e:44:3a:32:17:
e2:21:78:1c:14:cf:10:f3:63:73:44:37:24:f3:c7:
b1:33:88:fb:68:0e:d9:77:26:40:5b:80:07:fa:0b:
b7:64:f7:63:88:b3:22:ee:33:14:dc:52:86:0e:80:
27:48:05:fc:bf:ce:a9:4c:f5:11:62:4c:37:2e:44:
1e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D7:8C:41:84:F1:60:2B:7D:D0:8F:C0:B6:AC:F6:BF:73:E2:D1:8B
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/8deMQYTxYCt90I_Atqz2v3Pi0Ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.7.0/24
45.156.30.0/24
Signature Algorithm: sha256WithRSAEncryption
96:4f:15:0a:33:3f:7d:83:e1:f2:67:da:31:ab:fe:7c:88:e6:
0e:67:dc:ba:9c:48:6d:3f:b6:d0:0e:40:0f:3d:98:1a:4a:55:
08:61:cf:9f:94:d5:e4:e6:41:ed:6c:a3:f8:5e:29:6d:f6:8e:
04:14:15:b4:f8:76:4a:53:fb:5f:eb:d5:50:b5:15:bd:33:82:
eb:7b:5f:7c:5c:07:ee:d8:b1:09:45:09:5b:ed:29:13:8c:74:
e0:c0:1d:f2:97:9c:97:02:20:d1:aa:b1:4b:1b:25:0f:1a:fe:
a4:33:10:27:c8:7f:ec:62:70:ee:d5:80:99:f4:e7:4b:65:1f:
35:3c:f9:93:63:7c:42:d2:3f:5e:96:e2:3d:18:6f:7d:d4:8e:
fc:db:e9:48:92:c2:96:60:1f:73:e4:16:53:36:55:8b:05:27:
f2:a7:32:5d:6a:17:7e:03:b6:3b:67:37:a9:06:8e:34:06:c9:
15:a6:d4:80:5c:1d:80:ba:8a:28:b8:cd:6e:3f:ce:17:92:00:
9c:15:21:30:88:ce:39:a8:d8:75:75:e9:e4:36:e6:99:06:29:
b2:1d:95:b4:fc:93:19:fb:db:a0:0d:d5:63:42:79:5e:9d:2c:
af:e9:f8:f4:91:99:eb:f7:8f:28:53:3e:72:d9:19:c9:ce:5e:
b0:28:35:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org