Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/1Bh38MSkMR48pEkgd0IGobMO4ww.roa
File: 1Bh38MSkMR48pEkgd0IGobMO4ww.roa (raw, json)
Hash identifier: x/wb00E5OBoxlmfzbYF4BwLGH3ZwAM7Wv/4P6Ri7RbM=
Subject key identifier: D4:18:77:F0:C4:A4:31:1E:3C:A4:49:20:77:42:06:A1:B3:0E:E3:0C
Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a
Certificate serial: 082C6D25
Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/1Bh38MSkMR48pEkgd0IGobMO4ww.roa
Signing time: Sat 01 Jan 2022 05:06:13 +0000
ROA not before: Sat 01 Jan 2022 05:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200325
IP address blocks: 45.92.42.0/24 maxlen: 24
2a0e:1cc0:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137129253 (0x82c6d25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a
Validity
Not Before: Jan 1 05:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d41877f0c4a4311e3ca44920774206a1b30ee30c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9a:a7:10:9c:51:0d:e2:a0:1a:59:e3:79:9d:
4b:7f:e0:68:0d:50:41:5c:5c:45:57:31:2d:4e:a2:
c2:f9:bb:54:8a:90:05:53:2a:eb:4d:7d:e3:9d:f2:
f7:f7:4b:ca:00:af:82:96:e7:98:fd:32:91:14:a1:
a9:50:ba:71:64:3d:0f:7c:ff:f8:be:7d:7b:78:9e:
84:8a:3f:6d:c4:af:36:d9:44:19:73:d1:07:43:83:
02:d0:34:4e:8e:ce:8f:78:c8:60:78:d0:8d:36:4b:
c6:0e:ff:d8:5a:96:93:ca:10:6a:21:34:14:dc:a8:
fb:e1:60:36:4f:02:8c:3c:0d:19:f9:8f:f6:f8:1a:
94:ab:9b:f5:21:35:a3:22:fb:0f:f6:e2:81:58:c2:
94:1b:5c:cd:db:dd:a1:61:9c:a7:ac:77:e4:29:2f:
83:69:70:29:61:33:2d:53:78:d8:63:2e:43:c3:fd:
d1:b2:d6:6b:b0:c9:16:78:7e:7f:99:bd:bb:6b:e0:
00:50:f2:4c:8f:01:ef:16:40:74:60:24:04:88:78:
d2:e6:a9:59:b9:53:28:02:eb:1f:fe:cc:f6:a4:da:
17:91:d3:0b:5e:94:67:6b:00:19:78:28:04:17:08:
7d:2d:1f:06:15:c5:e9:82:35:82:75:8b:ae:6e:27:
c7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:18:77:F0:C4:A4:31:1E:3C:A4:49:20:77:42:06:A1:B3:0E:E3:0C
X509v3 Authority Key Identifier:
keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/1Bh38MSkMR48pEkgd0IGobMO4ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.42.0/24
IPv6:
2a0e:1cc0:4::/48
Signature Algorithm: sha256WithRSAEncryption
4f:bc:ae:6c:c7:d1:b2:44:9c:89:6c:d7:4d:bf:52:64:e8:9b:
b3:24:5d:75:00:4d:f6:29:c9:34:1c:b9:63:c5:ed:5e:c1:98:
87:cf:1c:72:05:76:33:7c:0f:47:da:15:96:f1:35:93:50:ae:
96:4c:ed:6b:99:8b:8d:cf:53:00:1c:83:80:45:12:9b:d1:2f:
e4:87:18:69:36:95:97:b0:c6:2f:2e:bc:66:a2:58:00:cb:18:
db:cd:b0:ff:ef:96:42:02:af:72:18:ce:b0:a5:74:a6:90:b9:
9b:1a:44:5c:f5:70:c7:f9:d7:6d:d2:d4:c5:83:92:83:f2:6b:
8e:be:6e:1b:7e:11:0c:b3:12:da:1e:09:c5:d8:a7:55:1f:3d:
bf:ed:a7:4b:7b:e8:a4:09:49:59:5e:55:2d:b2:29:8c:82:18:
bd:5a:dd:a6:3e:a7:85:8e:74:a3:52:00:38:73:41:ab:f4:00:
df:83:28:e0:64:f5:a1:8e:c8:62:1d:58:3f:0a:85:a1:7f:02:
92:27:e0:07:9c:56:15:d4:e1:7c:69:9e:2f:5f:0d:90:fc:52:
82:5a:a9:87:4b:f9:c6:76:1d:55:bc:75:06:82:4f:73:88:a9:
29:ae:33:01:9c:6c:1e:69:5d:3b:8a:90:39:d9:fa:c0:48:63:
3c:76:ce:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org