Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/XfWnogRMhOy_EUBT2wn8HCYB1lw.roa
File: XfWnogRMhOy_EUBT2wn8HCYB1lw.roa (raw, json)
Hash identifier: I0QKTVxuf8eA25r6Ov3cgXlKXVEZKFBQFXmk1TQ1KTE=
Subject key identifier: 5D:F5:A7:A2:04:4C:84:EC:BF:11:40:53:DB:09:FC:1C:26:01:D6:5C
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 011B823F
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/XfWnogRMhOy_EUBT2wn8HCYB1lw.roa
Signing time: Tue 25 Jan 2022 15:20:28 +0000
ROA not before: Tue 25 Jan 2022 15:20:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212193
IP address blocks: 45.94.4.0/24 maxlen: 24
45.94.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18580031 (0x11b823f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Jan 25 15:20:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5df5a7a2044c84ecbf114053db09fc1c2601d65c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e4:d7:c6:cd:42:0a:96:51:29:0a:28:aa:d1:
20:e7:92:db:38:8f:a5:85:c7:be:75:f3:08:40:97:
99:8c:3f:15:16:fd:24:d7:df:46:d9:8c:f4:5b:1d:
56:31:79:45:dc:d3:16:ed:64:85:fd:a2:0f:a0:fa:
93:b5:88:b5:13:b5:2b:f0:9f:b6:84:70:12:cb:ee:
8a:fe:10:d6:ad:17:e4:dd:cd:25:10:ed:ff:92:71:
9e:60:e6:58:a7:93:d1:1f:2f:b3:90:e7:bd:fc:10:
a2:68:a3:4b:45:b4:17:1f:01:a7:5f:53:b2:77:b6:
ca:e6:d0:d3:a4:4c:7e:a9:f5:ad:1b:d7:cb:e0:c5:
70:1a:95:b2:b3:e7:07:86:4f:a1:3c:90:89:9e:64:
2f:bd:76:f8:d9:0d:f4:bf:69:38:a7:d5:bc:9a:43:
07:f6:56:cd:61:a7:36:f5:b6:84:bf:80:88:91:a0:
c7:21:7c:04:71:2a:cb:b9:85:69:cf:f0:b8:ce:a5:
f4:c4:8f:4e:5e:33:b6:39:62:2f:7b:d0:6c:aa:3c:
fa:40:97:19:ad:b0:ba:a5:b7:f7:9e:fa:bb:51:ae:
9f:f5:7f:73:8c:67:5d:2b:56:de:36:1b:d4:14:5c:
ac:e1:67:49:6a:71:60:bd:fc:5d:18:79:b8:0e:6b:
a2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F5:A7:A2:04:4C:84:EC:BF:11:40:53:DB:09:FC:1C:26:01:D6:5C
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/XfWnogRMhOy_EUBT2wn8HCYB1lw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.4.0/24
45.94.6.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:7a:5e:11:a7:3b:64:5d:d1:b1:f2:b0:6d:36:11:e3:a7:f0:
c5:40:53:f8:63:99:8e:72:2f:78:97:0a:c4:40:42:d6:75:8f:
ad:64:07:58:14:ba:f1:d7:c3:ca:73:0b:f1:21:3d:a1:92:ac:
e1:f2:f1:22:e8:f7:ab:77:5f:5c:f8:d9:79:5a:43:2f:d3:05:
a6:59:6b:ba:40:d9:d0:a6:ab:72:cc:e1:e4:e8:ae:fd:aa:dd:
e7:0f:91:8c:7f:fe:fd:87:7b:27:36:39:2d:af:0b:d8:d3:7d:
08:27:16:38:be:c9:c8:44:7a:5b:b2:3d:7c:0c:ff:d8:0e:88:
5d:c2:1f:84:13:1f:18:b3:15:07:8d:6c:89:01:de:54:84:66:
51:bb:98:5a:f6:0a:06:e9:48:88:17:53:5c:41:e8:e2:0d:d9:
22:a0:54:76:d8:93:8b:ee:c9:92:85:59:0b:bd:11:53:cc:4d:
ff:90:20:25:c3:c1:4f:82:e6:f7:9e:37:9b:a7:ee:d3:9a:c1:
ed:73:83:5f:1c:81:4b:f0:b8:be:ee:60:f3:37:92:15:7b:6b:
cb:ff:26:bf:47:5e:a8:34:2d:71:c5:80:db:a5:62:a6:c3:24:
9b:b0:bc:9b:e2:e3:30:b4:45:38:db:bf:27:7e:82:0f:db:f5:
42:1e:9d:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org