Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/j6tS6iZZLvcaJ2r_Zoh4Vq-z2ag.roa
File: j6tS6iZZLvcaJ2r_Zoh4Vq-z2ag.roa (raw, json)
Hash identifier: 8guC+x+TcCJxzqBGzYPe+/NrsLSFicOqCj18zwR7M0Y=
Subject key identifier: 8F:AB:52:EA:26:59:2E:F7:1A:27:6A:FF:66:88:78:56:AF:B3:D9:A8
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 0182A6EE5D8EE2201B47A5CBA3561FE9A97A
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/j6tS6iZZLvcaJ2r_Zoh4Vq-z2ag.roa
Signing time: Tue 16 Aug 2022 13:53:35 +0000
ROA not before: Tue 16 Aug 2022 13:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 45.10.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a6:ee:5d:8e:e2:20:1b:47:a5:cb:a3:56:1f:e9:a9:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Aug 16 13:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fab52ea26592ef71a276aff66887856afb3d9a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:75:17:00:b0:5a:bd:5d:ee:20:6c:9d:e7:f5:
65:34:b9:ff:bb:90:b5:8a:0f:fa:78:ce:f5:7a:3e:
a8:75:a3:c7:93:85:48:e4:2e:3e:68:39:b8:47:3b:
5a:74:7b:3b:4b:f6:07:be:98:5d:d0:8d:af:1d:30:
93:29:b6:21:73:cb:c7:79:80:66:29:db:a6:82:30:
eb:47:97:8c:7d:a0:b4:0e:c5:7e:a4:f2:94:56:b0:
02:73:ff:e7:06:e9:b9:48:02:93:18:75:f4:c0:ef:
7c:4f:52:9c:c4:d5:1f:44:af:d5:a4:93:9d:d1:ae:
32:94:2f:11:5c:8b:57:a5:58:31:ce:bf:d5:d8:84:
01:ff:4c:ca:f1:1a:c7:46:a5:98:a0:0c:3f:6b:8d:
b7:5b:a2:c5:ef:36:aa:a4:df:30:fd:dd:ee:82:73:
c1:d3:f1:67:0b:83:a6:c9:b4:73:52:79:8c:20:1c:
ce:94:de:a3:2b:ce:53:fe:21:2c:c8:d7:7f:cb:a5:
fb:e8:98:32:af:bd:c1:71:e3:26:27:63:6b:1e:e5:
e9:a3:b3:8e:c0:7e:f6:1d:16:88:39:fd:bb:0f:0d:
35:23:56:d9:86:b6:9f:15:2e:61:5e:86:70:6a:1e:
45:e3:93:cc:8d:70:d2:8b:40:48:03:cd:ff:94:6d:
2e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:AB:52:EA:26:59:2E:F7:1A:27:6A:FF:66:88:78:56:AF:B3:D9:A8
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/j6tS6iZZLvcaJ2r_Zoh4Vq-z2ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.16.0/22
Signature Algorithm: sha256WithRSAEncryption
62:56:97:e2:c5:3b:23:b1:ff:67:c0:57:8e:01:16:60:29:d3:
b5:fe:3d:9f:88:04:90:d8:08:30:49:1f:7f:77:51:13:d3:34:
a9:a8:b9:5e:8f:a4:1c:cd:0e:9d:35:44:19:55:fb:73:85:7c:
d3:b8:d2:d5:53:31:91:29:88:04:5c:e2:b2:c2:81:2e:9a:f2:
9d:16:e9:2a:f6:6f:b4:88:86:1e:d3:d8:89:4a:e7:b0:05:b6:
46:b9:cf:6c:e9:6a:90:70:c7:cc:e4:fe:f5:0d:57:a1:6a:ad:
a7:56:7e:12:0a:11:87:71:3a:52:ea:a6:e9:cf:e5:89:2c:f8:
a9:7b:d7:51:75:8f:8e:37:04:82:44:b6:ab:44:ce:aa:b1:4a:
aa:73:62:3e:fa:f8:4b:d6:bc:eb:db:68:30:1c:05:0a:e0:0d:
7a:9d:a3:29:6e:5e:84:10:46:7a:32:f8:85:81:0c:5e:1d:47:
70:ec:76:54:3e:2b:2c:21:91:fe:5a:c9:55:db:33:af:b5:6f:
2c:48:83:df:74:f1:2d:69:14:f0:1d:53:d2:9f:fe:d6:f5:84:
5e:8b:76:c0:70:f0:f8:59:7c:ed:c7:61:12:ec:ab:9b:e9:b0:
ce:e0:c6:3f:d2:d4:be:50:87:6e:12:0e:df:f9:b7:90:b7:d5:
ea:6f:87:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:07 2024 by rpki-client on console-fra.rpki-client.org