Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/daW3KKomn5IcwtF9pNqNBLSgA7M.roa
File: daW3KKomn5IcwtF9pNqNBLSgA7M.roa (raw, json)
Hash identifier: L7liaF4aw/8nxX2FQZK5xMRioSEy7xz7xHBlIkcSQg8=
Subject key identifier: 75:A5:B7:28:AA:26:9F:92:1C:C2:D1:7D:A4:DA:8D:04:B4:A0:03:B3
Certificate issuer: /CN=8e3f1663996be1707611fdce1ddea8920dd398a3
Certificate serial: 02C9E9BA
Authority key identifier: 8E:3F:16:63:99:6B:E1:70:76:11:FD:CE:1D:DE:A8:92:0D:D3:98:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jj8WY5lr4XB2Ef3OHd6okg3TmKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/daW3KKomn5IcwtF9pNqNBLSgA7M.roa
Signing time: Sat 01 Jan 2022 06:57:22 +0000
ROA not before: Sat 01 Jan 2022 06:57:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64286
IP address blocks: 45.139.210.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46787002 (0x2c9e9ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e3f1663996be1707611fdce1ddea8920dd398a3
Validity
Not Before: Jan 1 06:57:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75a5b728aa269f921cc2d17da4da8d04b4a003b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:dd:7e:6f:01:85:83:f0:39:72:03:08:90:25:
c4:ed:15:50:fe:89:70:d7:95:22:38:87:4d:f2:7d:
01:6d:95:9c:29:8c:48:72:cb:f7:d9:41:f5:36:5c:
49:95:9c:51:4a:9f:4f:b0:e1:6a:99:93:0f:ae:b2:
7f:b0:14:28:b6:67:fe:a0:06:5a:cb:5c:a8:63:ff:
78:46:90:83:5a:48:47:81:24:f9:03:b2:0f:ec:26:
40:af:65:96:2d:0a:c1:ad:57:18:74:61:36:47:3e:
6a:2a:7c:d3:11:47:ef:9a:07:92:23:26:56:92:64:
55:54:bd:13:a2:d8:e9:a1:ad:f1:16:a8:f0:09:6f:
b9:24:ae:78:a3:f5:e7:77:65:5d:49:a9:1a:d0:20:
22:1e:b8:f3:ae:5d:f2:ba:3c:55:7e:fe:b6:da:f1:
c6:26:96:2e:e4:90:93:78:8f:5c:6b:57:d3:3f:da:
f5:c2:88:f3:90:17:02:48:aa:06:4c:1f:5f:7f:ed:
b5:65:f7:d3:5c:cb:60:ec:8f:8f:5f:93:30:08:e8:
f2:01:ad:d9:61:3a:18:8b:91:16:4e:da:0a:f3:2d:
46:88:c1:ce:ac:4c:9a:02:75:3f:53:31:f5:05:7a:
de:83:6e:88:80:eb:70:dd:44:f7:0d:f8:27:cf:fb:
f5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A5:B7:28:AA:26:9F:92:1C:C2:D1:7D:A4:DA:8D:04:B4:A0:03:B3
X509v3 Authority Key Identifier:
keyid:8E:3F:16:63:99:6B:E1:70:76:11:FD:CE:1D:DE:A8:92:0D:D3:98:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jj8WY5lr4XB2Ef3OHd6okg3TmKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/daW3KKomn5IcwtF9pNqNBLSgA7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/jj8WY5lr4XB2Ef3OHd6okg3TmKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.210.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:1e:2d:c5:4f:1f:da:ef:6f:c8:b8:40:6d:c6:c0:d3:0b:76:
06:d8:f9:f3:11:fd:a8:00:73:38:14:1e:d8:f0:af:2a:98:98:
6e:6f:44:fc:e7:69:75:23:b9:94:d0:76:ff:a3:d4:03:bb:df:
51:2c:f6:4f:16:86:05:d1:e3:6e:4b:fb:c4:86:33:9b:a9:c7:
b2:d1:50:8a:96:40:2d:43:74:57:0b:cc:17:19:35:13:ce:b9:
5c:47:b5:6d:c2:5b:41:d9:12:ac:2b:da:2b:66:d0:38:30:09:
3d:c3:f6:d8:38:b9:0c:c3:9e:21:7d:35:81:39:06:a9:dc:12:
d3:67:ee:5e:1c:65:42:81:5b:20:f7:14:7f:c6:e5:53:ec:a5:
9f:f9:69:74:ba:47:35:bd:b0:49:21:9f:0b:c8:9c:4e:91:a5:
81:2c:0f:13:93:f2:e0:c2:86:e5:b4:d7:c5:41:98:95:f6:04:
52:5a:6a:fb:b9:5e:5a:d1:5b:6c:61:5a:49:88:1f:9a:5f:ff:
59:8e:bc:7f:c2:22:11:13:01:38:dd:0b:41:06:5c:f3:b1:73:
30:bb:af:6b:20:18:5a:cd:c0:11:a1:7a:af:84:ee:1b:07:a7:
58:ee:42:c6:00:dc:56:fc:93:32:13:7b:de:6a:8e:38:78:c4:
5d:78:33:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:15 2024 by rpki-client on console-fra.rpki-client.org