Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/afb7f2-55d2-49e5-8659-4a82cdd4b1a0/1/gRC5cVbnjIgyV7ICX-6w0udiWPM.roa
File: gRC5cVbnjIgyV7ICX-6w0udiWPM.roa (raw, json)
Hash identifier: ce/+mY6E3MepcJNfYKUpB50Ep3N05662YKZYHUrFKdY=
Subject key identifier: 81:10:B9:71:56:E7:8C:88:32:57:B2:02:5F:EE:B0:D2:E7:62:58:F3
Certificate issuer: /CN=530841e82aa46d9959fc7811b25795c56cd50608
Certificate serial: 05B3FA72
Authority key identifier: 53:08:41:E8:2A:A4:6D:99:59:FC:78:11:B2:57:95:C5:6C:D5:06:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UwhB6CqkbZlZ_HgRsleVxWzVBgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/afb7f2-55d2-49e5-8659-4a82cdd4b1a0/1/gRC5cVbnjIgyV7ICX-6w0udiWPM.roa
Signing time: Sat 01 Jan 2022 00:57:52 +0000
ROA not before: Sat 01 Jan 2022 00:57:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59780
IP address blocks: 45.12.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95681138 (0x5b3fa72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=530841e82aa46d9959fc7811b25795c56cd50608
Validity
Not Before: Jan 1 00:57:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8110b97156e78c883257b2025feeb0d2e76258f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4c:9c:08:76:e0:b5:a5:55:30:9b:c6:e1:14:
41:d7:ef:f1:0b:fa:2e:0a:f9:65:d1:2a:a5:89:8a:
9a:8d:f9:c8:0d:0a:68:df:d2:01:c4:04:29:7c:10:
06:67:75:a6:95:32:56:0d:3c:8f:a3:ff:d1:bb:6f:
f0:06:95:7f:a1:cc:31:de:f7:d5:17:b1:7b:ee:e0:
bd:4a:96:46:a1:04:1c:c1:63:06:3e:18:1d:30:e9:
bd:73:88:f0:dc:10:32:a1:c7:e1:ca:0b:fa:38:e1:
02:cb:78:5f:73:c4:c3:a8:27:ec:a2:ef:d1:11:0a:
25:f8:4c:b3:cc:b8:46:e1:60:1d:22:c0:0c:74:65:
85:f4:8a:91:02:43:3f:69:af:9e:31:58:65:11:a3:
b2:b2:0d:02:f7:06:b7:6e:17:19:f2:d8:7e:fe:1f:
d6:39:38:48:3a:8d:5a:a7:9a:a3:da:13:f3:ee:b4:
fd:31:f2:5d:17:a8:de:cb:45:7f:41:ea:6a:09:45:
39:30:fc:cc:f0:2a:0e:f6:07:a1:c3:11:fc:b3:43:
fe:76:4a:4d:08:93:5f:20:92:2a:e7:8a:d6:18:e1:
86:ed:78:31:08:b7:0b:59:f0:25:2c:10:60:17:97:
98:7a:d7:5f:f7:6e:6b:43:c2:5f:4b:4c:13:01:dc:
10:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:10:B9:71:56:E7:8C:88:32:57:B2:02:5F:EE:B0:D2:E7:62:58:F3
X509v3 Authority Key Identifier:
keyid:53:08:41:E8:2A:A4:6D:99:59:FC:78:11:B2:57:95:C5:6C:D5:06:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UwhB6CqkbZlZ_HgRsleVxWzVBgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/afb7f2-55d2-49e5-8659-4a82cdd4b1a0/1/gRC5cVbnjIgyV7ICX-6w0udiWPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/afb7f2-55d2-49e5-8659-4a82cdd4b1a0/1/UwhB6CqkbZlZ_HgRsleVxWzVBgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.116.0/22
Signature Algorithm: sha256WithRSAEncryption
86:d6:65:61:a6:66:b2:ac:13:83:81:66:48:25:e6:c1:ae:ad:
e3:3d:14:88:d5:24:94:24:ee:9f:a4:b9:14:3e:69:8e:4c:e2:
9f:c0:3e:42:8a:83:70:dd:80:b0:62:e1:6e:03:bd:92:4b:77:
a0:8a:42:00:91:6c:87:bc:59:f9:93:22:1e:77:f3:4b:c3:88:
86:f6:55:ee:21:be:74:fa:d5:ad:8b:73:63:c1:75:b3:b6:33:
29:92:62:00:96:93:b3:31:80:8a:04:24:07:ae:eb:15:33:10:
4b:62:1d:1f:84:a6:43:04:8b:11:fe:94:b3:ae:87:60:1c:d3:
82:3d:07:00:ba:d5:a7:8e:ae:8c:16:90:3e:64:6c:29:92:02:
86:10:49:f4:dd:ca:17:4e:55:7a:c8:96:77:69:75:eb:4e:04:
d2:2f:a8:00:b0:7a:1a:24:14:59:1c:84:b0:ca:b3:25:ea:d8:
24:7c:ad:fa:68:e3:8d:3b:7d:3e:c1:19:f1:f7:6c:98:bb:10:
84:12:6d:0a:a7:0d:2a:51:89:98:b9:75:fa:f4:64:a9:f5:d3:
53:1c:56:24:f5:83:b3:a4:b4:01:70:be:e3:29:61:d9:a3:85:
bd:2d:8e:cf:c6:80:fc:cd:aa:c6:d8:0d:93:b3:69:57:88:2b:
ff:e1:61:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:16 2024 by rpki-client on console-fra.rpki-client.org