Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/0-a_F65oRkA9IabApfbb9O9GJy0.roa
File: 0-a_F65oRkA9IabApfbb9O9GJy0.roa (raw, json)
Hash identifier: Ia4WLXzJ+0V6i1pB/4OAxu+yMR/jkpBcnkbaVhL0NDY=
Subject key identifier: D3:E6:BF:17:AE:68:46:40:3D:21:A6:C0:A5:F6:DB:F4:EF:46:27:2D
Certificate issuer: /CN=25cf9d8d552cdc7d8c0dc6f649b301f2351409ee
Certificate serial: 09A16207
Authority key identifier: 25:CF:9D:8D:55:2C:DC:7D:8C:0D:C6:F6:49:B3:01:F2:35:14:09:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jc-djVUs3H2MDcb2SbMB8jUUCe4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/0-a_F65oRkA9IabApfbb9O9GJy0.roa
Signing time: Fri 18 Feb 2022 15:30:38 +0000
ROA not before: Fri 18 Feb 2022 15:30:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61125
IP address blocks: 45.66.35.0/24 maxlen: 24
45.66.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161571335 (0x9a16207)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25cf9d8d552cdc7d8c0dc6f649b301f2351409ee
Validity
Not Before: Feb 18 15:30:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3e6bf17ae6846403d21a6c0a5f6dbf4ef46272d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d3:4d:5e:c8:a1:e2:d3:13:f5:9f:02:23:16:
4d:23:d5:4e:a8:84:cf:9c:3e:d6:ae:2b:82:7c:c8:
5d:a8:b9:fe:be:c7:d0:50:b9:3a:25:f1:a4:bb:c5:
96:b8:90:30:63:56:f4:b1:e1:dd:dc:31:e6:c5:26:
f8:ac:16:59:68:9a:4f:97:b4:f6:ea:57:60:61:a7:
b4:f6:18:93:ff:d0:b0:83:50:c3:59:de:0f:8a:ee:
a4:e4:43:26:60:1c:3e:46:3c:b4:b2:78:a1:93:40:
9d:0d:f4:50:a1:1e:6d:85:70:e2:c3:40:e9:18:4e:
82:b0:0f:d6:de:9b:d2:54:32:30:39:af:90:61:3c:
2e:4b:4f:7c:b8:ca:10:2c:31:f0:c0:cb:05:68:01:
ee:f3:7e:51:e9:72:9a:9b:99:26:ce:54:77:5b:0f:
37:26:02:63:2b:a9:df:26:cb:a1:d3:32:f5:ed:7c:
b7:60:6d:27:6a:22:73:f1:21:c1:ac:95:14:7e:8e:
16:e0:a8:9d:11:d5:f7:18:b7:2a:86:95:33:0b:55:
31:f1:9e:d2:c5:95:bd:13:f9:23:14:8a:c9:79:3a:
2c:91:02:fd:d0:cf:af:a9:9b:d3:65:6c:43:bc:f0:
85:67:bf:53:36:fc:48:8a:3a:2e:4c:51:de:fd:27:
c6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E6:BF:17:AE:68:46:40:3D:21:A6:C0:A5:F6:DB:F4:EF:46:27:2D
X509v3 Authority Key Identifier:
keyid:25:CF:9D:8D:55:2C:DC:7D:8C:0D:C6:F6:49:B3:01:F2:35:14:09:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jc-djVUs3H2MDcb2SbMB8jUUCe4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/0-a_F65oRkA9IabApfbb9O9GJy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/a0e08a-9ff0-44b4-bcc4-a10690a744e4/1/Jc-djVUs3H2MDcb2SbMB8jUUCe4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.34.0/23
Signature Algorithm: sha256WithRSAEncryption
74:8d:07:f8:03:a2:f5:53:58:b9:8c:b2:5d:fe:fc:e1:fe:35:
d3:68:59:11:1b:32:3d:8b:e3:44:d7:bf:a3:15:45:77:da:b7:
20:2c:05:f9:cb:04:0a:e1:ce:55:cd:a9:ef:6c:50:eb:70:47:
69:e4:be:e8:0c:c3:bd:64:ef:7a:c5:2b:26:d1:d6:15:4f:bd:
38:f9:34:b8:33:7b:8d:b0:cc:ef:3d:b5:2a:96:dc:3a:3c:ec:
e3:e7:f1:48:d6:1e:ce:c1:9e:95:e3:f4:41:ae:9a:ee:b3:ca:
3b:02:12:e6:22:c8:e7:80:3d:9f:9a:95:10:65:8a:77:15:16:
8b:14:08:e2:14:b8:d7:2c:cd:c3:ec:8c:1a:38:be:93:d9:35:
7d:a2:e4:ef:8c:98:92:8d:9d:8d:2f:e4:2c:e7:00:d8:95:bf:
48:e9:4b:0c:25:3b:14:97:93:9c:eb:1d:07:d2:b4:e7:70:c4:
d2:62:fc:65:76:e8:52:aa:a7:a7:b3:a1:4a:97:d3:76:82:04:
3e:c5:5f:20:b8:d1:bc:8e:17:55:74:c0:7f:20:e9:9e:0a:a8:
4e:63:2e:44:8d:7b:ce:da:f1:cb:aa:56:c9:a1:cd:63:9d:24:
9a:a9:62:f0:d5:ef:81:cb:22:6c:c1:f3:f6:65:7c:07:f3:07:
9b:41:26:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:54 2024 by rpki-client on console-ams.rpki-client.org