Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/DDZQa1fZbTpbVL8mi9aSQk87JUA.roa
File: DDZQa1fZbTpbVL8mi9aSQk87JUA.roa (raw, json)
Hash identifier: brPRqUJlkrh6tIU2+QxZmd1Md1aHi8fgxiunNqikZWM=
Subject key identifier: 0C:36:50:6B:57:D9:6D:3A:5B:54:BF:26:8B:D6:92:42:4F:3B:25:40
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 06FB5C33
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/DDZQa1fZbTpbVL8mi9aSQk87JUA.roa
Signing time: Sat 01 Jan 2022 03:54:08 +0000
ROA not before: Sat 01 Jan 2022 03:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34549
IP address blocks: 45.81.112.0/22 maxlen: 22
45.138.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117136435 (0x6fb5c33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 1 03:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c36506b57d96d3a5b54bf268bd692424f3b2540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e8:59:af:2c:08:2c:50:46:6c:5e:44:26:7c:
5c:7d:bd:9f:78:6d:5b:b1:c3:2a:f1:7b:50:94:06:
fc:91:34:0b:17:09:13:df:cc:80:46:11:5e:07:6a:
9c:c4:39:91:c1:03:5f:31:82:a6:55:83:eb:1a:62:
61:27:71:84:92:3e:d6:3f:5d:4b:80:b2:95:73:b4:
be:e3:62:48:fd:b4:f9:6d:e3:ef:7a:bf:d8:8f:05:
cf:66:98:da:43:6b:64:09:bc:4c:ac:92:44:67:6b:
82:93:04:bc:97:8d:c6:a0:37:0c:da:d4:bf:d0:11:
0b:52:2b:0f:3c:e4:a6:68:ee:b7:68:77:3c:ec:f2:
5e:e0:a0:39:b6:50:0a:51:22:a5:9d:e2:85:21:b1:
b7:49:7c:60:e4:9b:e4:df:6a:54:41:1a:8e:47:63:
9a:1c:b5:90:3a:f0:35:95:29:91:ed:dd:5a:30:bc:
cc:9f:6a:a0:5d:62:f4:c2:15:79:61:cc:cb:6e:c5:
90:04:d5:ed:19:a5:18:ae:c8:21:97:86:aa:e5:6c:
3a:18:be:db:4c:06:d0:18:1f:6b:3a:22:e0:07:8e:
37:2e:c0:e0:d5:57:4c:56:26:a0:8e:f5:4c:e0:08:
e1:5d:f0:d9:9e:79:1c:ac:ee:ce:e9:cc:e0:cd:09:
ba:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:36:50:6B:57:D9:6D:3A:5B:54:BF:26:8B:D6:92:42:4F:3B:25:40
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/DDZQa1fZbTpbVL8mi9aSQk87JUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.112.0/22
45.138.180.0/22
Signature Algorithm: sha256WithRSAEncryption
70:1e:02:35:22:25:08:51:76:ca:60:25:b8:d7:e6:13:56:20:
60:f3:dd:66:f2:bf:ff:81:1b:36:14:bc:c0:ce:0a:c7:d8:66:
ae:2e:31:f8:60:19:09:d4:7e:a7:cb:28:7a:91:6c:40:55:dc:
80:53:03:ee:73:e7:b8:33:d1:95:f3:b3:f0:14:b9:d9:c0:52:
bf:81:6c:43:34:d9:71:01:6f:44:1b:0b:4b:ed:d7:4c:a2:14:
24:cf:1d:dd:c1:01:fd:f9:7c:3c:df:ef:e0:66:74:75:91:42:
9c:08:c9:d9:c1:e5:1d:68:8a:8d:1e:77:8a:11:fb:5b:d3:b1:
b2:da:58:23:e0:18:eb:97:2b:cc:9b:f6:bf:db:94:bc:71:d3:
7c:86:e3:69:05:b8:78:19:22:13:0a:a7:e9:79:93:7c:15:f2:
64:59:bc:3c:ad:58:d8:53:96:15:5d:fa:85:35:9f:79:ca:ad:
87:43:57:27:73:55:e9:44:c3:12:b7:e2:6c:f9:65:00:6e:ef:
b8:48:83:1b:6e:77:46:83:5f:66:9c:c9:db:27:94:10:42:12:
36:50:ee:d2:39:29:b4:58:4c:6c:39:8b:8e:bc:7d:a1:76:80:
aa:1d:d4:42:06:54:66:c0:08:e5:b5:f6:5c:53:33:f8:97:f7:
61:f7:4a:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org