Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/a2ce7e-52e4-44ab-bba3-68d29f3af9a7/1/SgBcJwBaNW8iYqURXjNVpbNnZhY.roa
File: SgBcJwBaNW8iYqURXjNVpbNnZhY.roa (raw, json)
Hash identifier: /K+ZK+wpiNWxK5dGdbi7mWENh7zLYjI8jsMNHMO60f0=
Subject key identifier: 4A:00:5C:27:00:5A:35:6F:22:62:A5:11:5E:33:55:A5:B3:67:66:16
Certificate issuer: /CN=c309f99595e6f9251944e26b794b481bf57c7f95
Certificate serial: 0C0DC895
Authority key identifier: C3:09:F9:95:95:E6:F9:25:19:44:E2:6B:79:4B:48:1B:F5:7C:7F:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wwn5lZXm-SUZROJreUtIG_V8f5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/a2ce7e-52e4-44ab-bba3-68d29f3af9a7/1/SgBcJwBaNW8iYqURXjNVpbNnZhY.roa
Signing time: Fri 08 Apr 2022 13:46:58 +0000
ROA not before: Fri 08 Apr 2022 13:46:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201211
IP address blocks: 45.94.104.0/22 maxlen: 22
194.110.8.0/22 maxlen: 22
2a0d:3c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202229909 (0xc0dc895)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c309f99595e6f9251944e26b794b481bf57c7f95
Validity
Not Before: Apr 8 13:46:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a005c27005a356f2262a5115e3355a5b3676616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f0:9d:b0:72:6f:98:84:e5:be:b0:94:bc:02:
62:97:71:47:a1:f2:bf:9f:bc:01:26:54:79:51:57:
73:89:82:95:a2:9e:47:80:4e:a5:e7:85:7b:38:09:
e6:40:fb:d8:15:56:00:6c:95:31:4c:c6:75:77:9e:
33:86:b4:22:2d:ca:c2:c7:41:87:ca:34:d5:bf:56:
ac:c9:52:76:fe:4b:d5:d3:90:bd:b9:3e:10:c6:bc:
58:f4:03:cb:ba:24:b0:b1:7a:f4:c9:58:d4:bf:11:
03:54:d8:c2:ac:94:bb:8a:ff:11:e4:9d:18:5b:3d:
a8:c3:81:a1:60:b4:c9:9d:73:d8:cd:16:ad:78:0c:
f9:fa:dd:30:56:d4:39:2c:71:a1:00:aa:00:a1:c1:
1a:0b:aa:42:46:74:95:63:3d:1c:a9:bd:5a:dd:6c:
5f:88:c4:f8:57:fe:7e:a9:82:b0:d6:a7:f1:0f:0c:
09:0c:f5:e7:28:9d:a3:e2:87:a4:f8:df:8c:eb:5e:
b9:72:ed:93:8a:1a:c8:61:3a:30:24:6a:a6:a9:29:
5d:b5:1b:7e:f7:cc:80:9a:6a:3a:75:d9:a8:09:66:
13:32:94:9b:0a:88:de:13:3c:37:ee:d9:15:18:20:
dc:5b:45:01:b0:df:9e:4a:e7:2c:ed:03:19:24:a2:
27:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:00:5C:27:00:5A:35:6F:22:62:A5:11:5E:33:55:A5:B3:67:66:16
X509v3 Authority Key Identifier:
keyid:C3:09:F9:95:95:E6:F9:25:19:44:E2:6B:79:4B:48:1B:F5:7C:7F:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wwn5lZXm-SUZROJreUtIG_V8f5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a2ce7e-52e4-44ab-bba3-68d29f3af9a7/1/SgBcJwBaNW8iYqURXjNVpbNnZhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/a2ce7e-52e4-44ab-bba3-68d29f3af9a7/1/wwn5lZXm-SUZROJreUtIG_V8f5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.104.0/22
194.110.8.0/22
IPv6:
2a0d:3c0::/29
Signature Algorithm: sha256WithRSAEncryption
8c:79:f0:bf:36:00:63:c4:c5:3f:ba:97:1e:9d:3f:6e:cd:25:
1a:80:1d:31:d1:fb:a5:7f:e3:a6:3b:fd:21:2b:28:8c:a8:8f:
a2:f2:65:cc:eb:77:ce:c2:aa:62:44:56:63:15:6c:6e:dd:84:
56:51:04:f8:72:00:c4:09:01:c7:87:3f:c2:a2:df:13:95:68:
55:f4:7c:e9:c3:12:69:50:7d:d6:ae:98:4a:7d:8d:3d:a1:e5:
1e:24:af:25:b3:da:6c:26:c5:3e:30:95:e7:d9:87:e4:ff:34:
33:0c:e1:ef:32:c3:14:37:e6:b6:4e:fe:b5:4f:86:61:ff:63:
f5:52:b4:ff:c8:cb:78:4a:12:56:38:f5:25:60:c5:e2:ae:00:
18:0f:8c:bf:34:cf:a4:a0:db:0e:67:4c:44:88:01:54:3e:a7:
79:4d:e6:b7:f3:0c:52:67:6c:de:58:d0:a2:08:2c:96:99:93:
c4:d1:41:ac:0e:7d:a5:14:e5:17:6e:7f:f2:09:2b:51:20:28:
af:46:66:41:b5:0b:bd:2b:1d:de:dc:1d:6e:6f:99:69:f1:15:
cb:da:00:9e:24:57:79:4b:49:03:00:f4:64:c2:69:f6:8c:2f:
2c:1b:bd:19:a4:56:10:a9:98:ef:ca:3f:d3:31:3d:73:46:0a:
bf:d6:14:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:53 2024 by rpki-client on console-fra.rpki-client.org