Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/PHPB6VK1kCtbhqlNrncK6SBCUZw.roa
File: PHPB6VK1kCtbhqlNrncK6SBCUZw.roa (raw, json)
Hash identifier: 4H7y/b6kXBtiDV0J22oxB2di3xow7MpMazwR1oF7oJM=
Subject key identifier: 3C:73:C1:E9:52:B5:90:2B:5B:86:A9:4D:AE:77:0A:E9:20:42:51:9C
Certificate issuer: /CN=cb335dc6feb385f6a23344056a13c2c595028e91
Certificate serial: 0868664C
Authority key identifier: CB:33:5D:C6:FE:B3:85:F6:A2:33:44:05:6A:13:C2:C5:95:02:8E:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzNdxv6zhfaiM0QFahPCxZUCjpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/PHPB6VK1kCtbhqlNrncK6SBCUZw.roa
Signing time: Sat 01 Jan 2022 08:55:35 +0000
ROA not before: Sat 01 Jan 2022 08:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41652
IP address blocks: 45.80.2.0/24 maxlen: 24
2a0e:3780::/36 maxlen: 36
2a0e:3780:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141059660 (0x868664c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb335dc6feb385f6a23344056a13c2c595028e91
Validity
Not Before: Jan 1 08:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c73c1e952b5902b5b86a94dae770ae92042519c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:12:18:bd:64:ea:a0:d5:1a:d9:34:bd:33:85:
6e:40:27:eb:69:1a:fe:5a:8d:0e:5d:bb:df:af:55:
9f:ec:5c:cc:54:82:45:ed:53:14:31:ce:9b:e8:af:
1f:72:14:3c:f1:73:b8:a6:84:28:80:0c:23:45:75:
2e:d1:da:cf:8e:21:73:56:a9:32:3f:13:d2:31:a6:
b0:ad:e4:6c:09:9a:fc:d2:42:d5:71:f3:89:e2:05:
6c:1d:26:12:f8:f2:b6:f3:38:20:7d:d4:01:fc:0d:
06:a1:67:2f:3c:74:de:3f:6f:19:91:c7:c1:6f:23:
de:2f:6f:d6:69:e7:b3:74:c9:5f:11:e1:da:94:1e:
4f:e8:57:27:ae:35:50:2a:b4:ae:a7:b8:cd:a4:04:
67:23:51:4c:74:a3:b0:69:0f:31:06:f7:88:fa:b1:
79:d9:04:50:fe:1b:0f:33:d0:39:4f:a4:31:cb:38:
95:7a:3d:59:ed:32:49:42:85:3f:19:d7:c5:7d:80:
c9:ac:b3:f0:b4:ed:9d:c4:b3:38:70:33:ba:71:9d:
b5:04:5c:03:8c:28:e3:52:e8:5c:14:c9:4d:98:af:
23:67:a1:59:c1:e2:40:ce:ab:79:aa:82:42:f8:a6:
64:f8:28:ee:20:30:97:5b:60:7d:96:da:48:99:e3:
30:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:73:C1:E9:52:B5:90:2B:5B:86:A9:4D:AE:77:0A:E9:20:42:51:9C
X509v3 Authority Key Identifier:
keyid:CB:33:5D:C6:FE:B3:85:F6:A2:33:44:05:6A:13:C2:C5:95:02:8E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzNdxv6zhfaiM0QFahPCxZUCjpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/PHPB6VK1kCtbhqlNrncK6SBCUZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/yzNdxv6zhfaiM0QFahPCxZUCjpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.2.0/24
IPv6:
2a0e:3780::/36
Signature Algorithm: sha256WithRSAEncryption
a7:70:20:96:e7:62:90:c0:e2:76:ba:00:51:c4:5f:f7:5b:cc:
fb:ac:73:b1:7a:e4:2b:34:6e:29:78:2c:a5:2f:2b:dc:58:fa:
da:3a:82:bf:d9:1e:17:aa:9d:53:95:0a:cf:2b:86:18:6e:2d:
e5:3a:94:f9:b0:29:59:f1:57:87:a3:e6:4d:03:27:4f:29:b4:
df:bf:a7:75:8a:a9:3f:3c:87:36:0b:6a:48:83:af:4b:8f:f9:
77:70:99:c9:43:28:e1:61:7b:b4:4c:26:3c:58:8b:51:d2:0e:
d2:40:a2:f6:53:93:73:47:73:f1:57:9c:51:49:a3:c4:e8:6b:
6f:30:0b:a7:6b:d1:99:9d:e0:89:2c:a2:b2:4b:e7:eb:97:86:
44:2d:3e:bc:c9:45:0a:53:32:d0:53:30:71:cc:b0:6b:62:38:
37:bd:e2:3c:44:c5:07:c6:c4:14:c3:a9:ae:81:02:dd:a7:ea:
5c:30:0a:24:ab:88:be:01:22:58:ea:a3:ea:ed:18:be:47:4f:
dd:14:de:ac:85:97:64:ad:b9:1e:45:dd:40:74:44:6a:e4:d9:
94:dd:db:e1:77:b0:a8:08:8e:19:92:7b:ab:e6:51:32:58:e6:
88:e0:dc:6c:90:55:03:26:04:7b:cd:80:7d:91:ee:2a:fa:10:
4c:29:5c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:19 2024 by rpki-client on console-fra.rpki-client.org