Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/675704-8d7d-47fa-82e4-afe8cd94a8d9/1/J0elB8GDx9l4UQyXqsnniwWJkLY.roa
File: J0elB8GDx9l4UQyXqsnniwWJkLY.roa (raw, json)
Hash identifier: e4S1f67o2P17xySD5l/napHAv5naMlavf3Nau5bdwhM=
Subject key identifier: 27:47:A5:07:C1:83:C7:D9:78:51:0C:97:AA:C9:E7:8B:05:89:90:B6
Certificate issuer: /CN=2c6d462d6584e3da1ff251554a345e49c6ad0fb1
Certificate serial: 07E76D8A
Authority key identifier: 2C:6D:46:2D:65:84:E3:DA:1F:F2:51:55:4A:34:5E:49:C6:AD:0F:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LG1GLWWE49of8lFVSjReScatD7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/675704-8d7d-47fa-82e4-afe8cd94a8d9/1/J0elB8GDx9l4UQyXqsnniwWJkLY.roa
Signing time: Sat 01 Jan 2022 09:00:27 +0000
ROA not before: Sat 01 Jan 2022 09:00:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35267
IP address blocks: 45.93.198.0/24 maxlen: 24
45.93.199.0/24 maxlen: 24
45.93.196.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132607370 (0x7e76d8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c6d462d6584e3da1ff251554a345e49c6ad0fb1
Validity
Not Before: Jan 1 09:00:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2747a507c183c7d978510c97aac9e78b058990b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2c:bc:3f:85:01:b1:6f:f7:22:d3:9a:1e:90:
54:0f:d8:fc:0b:91:dc:bf:43:67:0d:ea:71:61:34:
39:4f:dd:e6:dc:75:8c:bd:4e:00:06:b2:d6:aa:15:
9a:cd:59:4d:ff:5e:7b:3f:56:08:74:a1:3c:fe:e8:
c2:68:19:dc:4b:fd:4b:b4:fc:a4:fb:82:04:2a:9e:
f7:4b:d2:02:dd:d9:6e:7b:68:f7:49:10:50:36:2d:
b2:9a:ee:71:62:7c:69:fe:33:50:35:c7:a7:3c:8f:
cc:71:b8:68:87:3f:30:eb:1e:03:46:4d:35:d9:b8:
76:25:ac:21:7f:a4:d3:48:dd:91:cc:96:1b:24:ed:
80:fa:64:94:73:91:c5:2c:dc:c6:b8:e5:fd:99:f4:
a2:2c:95:f3:b4:89:d4:ab:77:8c:05:84:b9:fb:0b:
4e:31:87:63:a5:fb:5d:4a:86:c6:55:91:cd:ab:89:
3f:10:98:f7:79:2b:83:9b:82:14:1a:ca:a5:5c:a2:
9a:c3:2b:d1:d1:fc:0a:ec:e6:c1:ee:3b:58:75:77:
6e:67:4c:97:21:54:85:56:d4:5c:ef:b1:2e:c6:2e:
33:09:e6:d6:f4:2c:cc:af:01:ac:89:90:01:81:f5:
f0:84:26:aa:21:ec:65:46:01:1c:68:a7:03:14:0c:
72:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:47:A5:07:C1:83:C7:D9:78:51:0C:97:AA:C9:E7:8B:05:89:90:B6
X509v3 Authority Key Identifier:
keyid:2C:6D:46:2D:65:84:E3:DA:1F:F2:51:55:4A:34:5E:49:C6:AD:0F:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LG1GLWWE49of8lFVSjReScatD7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/675704-8d7d-47fa-82e4-afe8cd94a8d9/1/J0elB8GDx9l4UQyXqsnniwWJkLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/675704-8d7d-47fa-82e4-afe8cd94a8d9/1/LG1GLWWE49of8lFVSjReScatD7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.196.0/22
Signature Algorithm: sha256WithRSAEncryption
46:9b:a8:a9:82:d5:56:3a:be:f2:e7:0c:d7:ac:1d:27:8f:cd:
ef:96:05:af:f2:48:35:07:95:cb:41:a9:0d:1d:f5:fd:2d:5b:
7f:43:30:3b:cf:d2:a0:d8:a0:14:ef:6a:87:c5:1f:92:46:6e:
31:dc:3f:bc:d2:2e:5e:ed:44:55:f4:ab:b2:4f:a5:50:b1:92:
3c:4f:a0:d9:ff:7e:c8:36:2c:17:4d:f6:ff:1d:68:90:8d:f9:
89:4f:1c:a7:93:af:6c:c9:40:8b:8b:c5:60:73:9c:b9:6a:81:
06:88:14:d2:8c:1e:7e:2a:db:6a:ac:a7:9c:d5:e4:73:da:ff:
3a:fe:10:88:36:e8:0c:68:55:0c:e9:fe:69:40:a4:ca:84:7b:
28:1a:a2:22:6f:ae:11:7a:60:2c:8b:e6:16:a5:d3:83:df:d4:
ed:1c:5f:80:82:1f:92:69:ac:95:da:64:b5:6b:bf:ce:09:a5:
06:a2:08:57:f5:4a:28:f4:47:0d:a7:22:82:ef:10:41:b1:d2:
79:e3:cc:d8:d3:0d:27:b9:a7:de:57:ae:54:1b:53:8b:d5:31:
6b:ff:53:33:a6:97:7f:ed:42:6f:2e:ee:c3:ea:bc:b8:26:20:
35:53:bc:ba:a2:7e:52:1e:69:66:b7:60:d6:d2:e2:08:81:69:
cb:89:43:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:12 2024 by rpki-client on console-ams.rpki-client.org