Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/DgTPWFs3Na56arembR_-DUN9nF0.roa
File: DgTPWFs3Na56arembR_-DUN9nF0.roa (raw, json)
Hash identifier: DIqLx+ou/Lflje5YcGNWuC9Y/yhXD5bi2e/UJkLKQqE=
Subject key identifier: 0E:04:CF:58:5B:37:35:AE:7A:6A:B7:A6:6D:1F:FE:0D:43:7D:9C:5D
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 0268BD85
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/DgTPWFs3Na56arembR_-DUN9nF0.roa
Signing time: Tue 14 Jun 2022 07:52:44 +0000
ROA not before: Tue 14 Jun 2022 07:52:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 45.156.30.0/24 maxlen: 24
45.94.4.0/24 maxlen: 24
45.94.6.0/24 maxlen: 24
45.94.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40418693 (0x268bd85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Jun 14 07:52:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e04cf585b3735ae7a6ab7a66d1ffe0d437d9c5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9a:db:e8:6d:c0:f5:af:f9:e0:36:5a:9b:e9:
3a:28:38:99:f1:37:2a:f6:ae:2a:04:06:88:86:0a:
17:19:8d:84:8e:53:94:0c:57:01:88:b2:0b:e7:27:
6d:39:d1:04:62:a2:60:29:b6:9d:70:5f:94:c4:b2:
2a:c3:29:84:5c:8d:f8:f5:72:d9:51:43:b7:52:e2:
f4:75:68:01:41:57:af:3d:ce:bc:e9:5b:3a:29:9d:
54:0e:b4:d2:6a:03:ad:a0:40:1b:ba:b1:3a:cc:f3:
ca:d8:3b:49:09:a5:81:71:5b:75:20:10:ee:67:a1:
de:85:ce:81:f6:e6:37:e1:0e:05:13:d7:65:53:f6:
a4:ee:5d:ee:6e:6d:ee:52:fd:ed:e3:86:48:3f:42:
c6:f9:d0:73:3c:c4:4d:f1:c7:8c:2a:f2:df:31:68:
b0:d4:52:83:39:3d:74:8c:1e:85:6d:d5:58:b7:96:
9d:47:07:f1:ac:a8:0b:9a:28:78:b0:a3:84:9b:9c:
ae:4d:f1:69:31:4d:fd:6c:a4:c3:a3:b5:0d:90:a5:
43:e6:06:8a:33:c2:78:c3:60:51:a6:d1:84:42:a3:
df:10:56:39:9c:bc:7a:c2:df:43:13:1f:c3:5c:99:
37:4d:a7:2e:a6:8a:1a:36:90:2a:69:56:16:b8:1e:
33:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:04:CF:58:5B:37:35:AE:7A:6A:B7:A6:6D:1F:FE:0D:43:7D:9C:5D
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/DgTPWFs3Na56arembR_-DUN9nF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.4.0/24
45.94.6.0/23
45.156.30.0/24
Signature Algorithm: sha256WithRSAEncryption
71:91:e4:d4:3b:d6:cc:c7:88:37:ec:03:71:44:0c:1d:a9:cf:
7c:6f:64:be:ed:f5:c0:67:97:17:62:c8:0e:a1:05:5c:18:1f:
f5:d5:2c:9d:0d:e1:30:2e:91:d1:50:e3:11:5f:10:64:c9:1b:
8e:58:dc:78:1b:59:1b:4d:98:62:36:7d:e6:bc:60:3a:b6:39:
cd:30:41:d6:f8:c5:d4:2f:9b:ba:75:c7:b9:7b:46:50:f1:dd:
e0:29:26:14:86:e0:79:41:05:bc:ae:1a:7c:b1:d5:a7:d9:f6:
1f:e0:c9:44:5c:2e:b1:a6:c5:ee:59:4f:8b:1f:77:10:a3:23:
bc:1b:af:7c:29:d0:7b:08:48:3e:1b:9f:0e:bd:cf:ee:08:46:
a4:03:4b:7b:70:48:fc:74:6a:ac:ed:37:21:fe:7d:7b:a8:98:
67:e4:df:da:22:de:31:71:b6:2b:31:ac:64:7c:47:47:31:f5:
25:16:37:bf:26:54:61:5c:60:27:d6:83:63:61:36:e1:f8:5f:
70:0c:95:62:07:b2:58:19:60:71:41:60:fa:b1:2d:bf:35:f0:
10:da:da:a9:47:84:33:6e:bc:fc:68:60:6b:b9:b6:f2:2f:3c:
7b:5a:22:02:03:91:1d:33:24:e6:a6:e7:44:9e:35:b2:b1:52:
e3:66:57:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org