Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/12ac0e-5474-45d5-8def-6a414f184706/1/ZQPKzyNCVIFCRcSicyVfz-m8pv8.roa
File: ZQPKzyNCVIFCRcSicyVfz-m8pv8.roa (raw, json)
Hash identifier: inIib8s1d8vnrQt38t5oMBwuT06pVNYWG4ifUUGgroQ=
Subject key identifier: 65:03:CA:CF:23:42:54:81:42:45:C4:A2:73:25:5F:CF:E9:BC:A6:FF
Certificate issuer: /CN=72ca1a5cff52ebe2f22b669dcc2c9027cea0b81c
Certificate serial: 056DDAB1
Authority key identifier: 72:CA:1A:5C:FF:52:EB:E2:F2:2B:66:9D:CC:2C:90:27:CE:A0:B8:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/csoaXP9S6-LyK2adzCyQJ86guBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/12ac0e-5474-45d5-8def-6a414f184706/1/ZQPKzyNCVIFCRcSicyVfz-m8pv8.roa
Signing time: Sat 01 Jan 2022 00:58:07 +0000
ROA not before: Sat 01 Jan 2022 00:58:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35120
IP address blocks: 45.8.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91085489 (0x56ddab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ca1a5cff52ebe2f22b669dcc2c9027cea0b81c
Validity
Not Before: Jan 1 00:58:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6503cacf234254814245c4a273255fcfe9bca6ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c2:50:67:88:29:14:5a:31:86:55:a1:0e:3d:
d0:f6:1a:d3:09:e9:b3:06:df:e0:3d:1e:39:8d:c8:
c7:a2:cc:cc:f5:5c:69:02:a1:60:20:8a:89:b3:74:
e8:ad:47:92:4d:e6:2b:e2:0c:a0:35:36:b7:d7:93:
04:ad:82:e3:e3:04:a0:fd:6e:e8:e7:04:d6:73:cc:
75:c5:85:b2:c8:66:5f:43:f8:95:d6:49:cc:bb:66:
1f:f4:e3:47:4e:62:b7:10:68:42:34:aa:2a:13:cd:
cd:fd:cb:27:0f:e9:2f:52:d5:46:77:92:86:50:63:
92:92:9d:fe:93:a2:db:ad:74:49:19:66:e7:3c:74:
08:eb:70:a3:6e:50:b1:03:d2:65:b9:46:4c:94:33:
d8:52:c1:be:bd:be:fd:77:6b:f2:91:9e:eb:c1:a1:
1e:03:43:20:41:4f:99:00:b3:b3:7c:f7:a4:53:f5:
f9:81:54:d1:78:1d:37:f2:2f:96:69:be:6e:42:0b:
72:ad:e3:ce:b9:fd:0e:2a:2a:0b:12:f7:ef:e2:23:
e8:f7:fc:b5:0b:ff:32:c5:e4:7e:2b:97:67:6d:0a:
fc:b0:9a:c9:9d:c2:b6:60:0e:1e:1b:b7:40:91:37:
db:01:2f:de:9d:4d:47:5e:33:ad:18:48:b2:b8:cf:
57:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:03:CA:CF:23:42:54:81:42:45:C4:A2:73:25:5F:CF:E9:BC:A6:FF
X509v3 Authority Key Identifier:
keyid:72:CA:1A:5C:FF:52:EB:E2:F2:2B:66:9D:CC:2C:90:27:CE:A0:B8:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/csoaXP9S6-LyK2adzCyQJ86guBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/12ac0e-5474-45d5-8def-6a414f184706/1/ZQPKzyNCVIFCRcSicyVfz-m8pv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/12ac0e-5474-45d5-8def-6a414f184706/1/csoaXP9S6-LyK2adzCyQJ86guBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.8.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:02:46:85:f7:32:04:77:78:97:3b:fc:f5:0e:78:af:c9:d3:
d8:5d:57:d4:82:78:6f:b5:2a:42:17:a8:bf:15:77:c1:49:8e:
c3:77:eb:b5:e1:9c:30:23:7a:66:4f:97:4b:e6:97:d3:e4:37:
b7:01:49:82:e7:d2:5a:d5:b6:45:3e:fe:4a:19:d0:e7:78:92:
44:c4:17:4a:38:4d:63:fc:a6:dc:65:5f:4b:cb:50:24:f0:06:
ba:26:c7:2a:59:34:2f:15:ff:ac:56:cc:ea:b6:bb:5b:58:15:
b6:d5:81:8d:81:3e:42:cd:94:49:f7:c2:5d:c1:72:5b:d2:b9:
bd:4e:c7:a1:a1:80:3a:91:5c:df:44:98:be:25:3f:b4:13:9e:
53:a7:80:d0:cb:a8:d6:01:2f:c8:46:c7:eb:ac:fa:ab:7a:73:
f4:05:11:dd:4b:5b:07:7d:a7:0a:03:b8:62:23:87:f7:38:84:
39:62:5a:bc:ed:53:ce:cc:11:6f:9c:bb:c0:ff:06:77:32:e8:
2e:ea:cf:36:04:58:7c:cb:50:1d:88:aa:b1:39:fd:46:88:b1:
f0:34:08:1e:ca:90:b9:a5:79:73:d1:f9:cf:e4:89:68:a1:62:
e6:e3:60:65:8e:a4:e4:1e:f2:e0:25:91:64:03:75:b3:5b:ee:
39:2d:b5:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:39 2024 by rpki-client on console-fra.rpki-client.org