Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/6ade9b-3216-4fef-8049-f3e24e075e35/1/KlFHlvc8fFExGChL4PjMcCI-Yx0.roa
File: KlFHlvc8fFExGChL4PjMcCI-Yx0.roa (raw, json)
Hash identifier: fnjIpYXpg39dRNpJGghnB/L2ZBHgut0F2TDSzDGs67I=
Subject key identifier: 2A:51:47:96:F7:3C:7C:51:31:18:28:4B:E0:F8:CC:70:22:3E:63:1D
Certificate issuer: /CN=ed3ff7836530d1c474f4d088b6b36224fbf6982d
Certificate serial: 074476F7
Authority key identifier: ED:3F:F7:83:65:30:D1:C4:74:F4:D0:88:B6:B3:62:24:FB:F6:98:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7T_3g2Uw0cR09NCItrNiJPv2mC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/6ade9b-3216-4fef-8049-f3e24e075e35/1/KlFHlvc8fFExGChL4PjMcCI-Yx0.roa
Signing time: Sat 01 Jan 2022 09:00:24 +0000
ROA not before: Sat 01 Jan 2022 09:00:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 45.88.31.0/24 maxlen: 24
45.88.28.0/24 maxlen: 24
45.88.30.0/24 maxlen: 24
45.88.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121927415 (0x74476f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed3ff7836530d1c474f4d088b6b36224fbf6982d
Validity
Not Before: Jan 1 09:00:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a514796f73c7c513118284be0f8cc70223e631d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:96:a7:01:c0:34:48:a4:e6:fb:44:a6:6e:64:
85:87:79:9d:4e:89:27:a8:70:27:4b:02:95:f1:94:
08:fe:2d:18:dd:fe:df:f1:6e:da:6e:22:0a:d6:c8:
2a:ff:27:a1:3a:57:27:ce:0c:f0:84:5e:fb:39:b2:
8b:b9:d8:3b:d6:7b:87:8d:d0:11:72:c3:71:60:bc:
9e:7e:25:e2:15:94:6a:e1:40:58:89:f1:07:df:62:
03:2b:11:18:1b:7d:89:c9:f7:7f:04:d9:81:5f:37:
70:52:79:97:74:3a:83:56:96:d4:9b:3e:4a:d5:2f:
2d:8c:bd:4a:cf:15:f6:14:7a:01:48:e9:74:07:f4:
5e:d7:ec:67:12:97:f3:5c:46:bf:0b:2c:63:b5:f6:
70:d8:06:b9:03:49:b8:c4:11:07:98:62:e7:0c:44:
c6:b5:4d:ac:2d:d0:a7:bc:60:53:4c:3c:75:81:a9:
11:b7:12:af:28:42:cd:74:0b:d4:ab:9d:80:68:d7:
fa:70:33:ba:85:32:29:4c:2b:7f:c4:9d:b5:7d:f9:
78:ec:55:50:03:b5:d3:4d:1c:01:62:76:c6:b3:7e:
f8:8d:14:73:55:77:ca:76:aa:91:38:65:ab:eb:f4:
33:97:1f:b0:ee:03:0c:3f:19:85:ce:79:0d:c6:70:
59:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:51:47:96:F7:3C:7C:51:31:18:28:4B:E0:F8:CC:70:22:3E:63:1D
X509v3 Authority Key Identifier:
keyid:ED:3F:F7:83:65:30:D1:C4:74:F4:D0:88:B6:B3:62:24:FB:F6:98:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7T_3g2Uw0cR09NCItrNiJPv2mC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6ade9b-3216-4fef-8049-f3e24e075e35/1/KlFHlvc8fFExGChL4PjMcCI-Yx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6ade9b-3216-4fef-8049-f3e24e075e35/1/7T_3g2Uw0cR09NCItrNiJPv2mC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.28.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:38:48:44:33:bc:9e:f3:2c:97:58:ed:c2:9e:fc:c5:7b:97:
59:72:12:0c:04:f9:5f:ff:80:6d:5b:4d:c8:8b:9f:0e:c2:3d:
e1:29:12:05:ac:b8:cb:20:8b:33:18:50:e4:c1:9f:f5:49:a2:
9d:7c:b2:22:05:08:c5:2b:6c:5f:71:2e:bc:81:f0:51:51:c4:
40:97:b9:bd:06:2e:4b:51:fc:3f:fe:85:d7:d6:74:ff:f2:e4:
09:68:5e:3a:90:3b:3c:98:e5:af:34:27:56:34:d9:16:3a:85:
e1:2f:e4:f9:01:33:65:fc:94:5b:da:19:84:2b:db:1e:38:79:
d2:49:c0:b1:72:55:34:5a:5e:1c:91:4b:00:b1:6b:d3:fc:10:
ef:e8:19:81:52:c8:89:d7:54:e2:84:21:0b:56:41:22:ef:1a:
4c:6a:7b:07:df:4d:e9:f8:45:13:fd:b1:30:f6:38:51:69:93:
f7:f5:32:3c:f4:9d:22:ae:b0:67:7d:a6:26:bb:c2:db:15:51:
f0:e1:ed:96:7b:56:df:0f:ac:d4:12:60:40:dd:80:d7:fb:db:
57:03:43:78:d5:2e:9c:05:11:72:47:06:d0:8d:78:ff:77:db:
b2:f6:cb:41:59:fb:53:bb:50:f2:3f:8c:ce:49:37:e6:17:cf:
15:04:af:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:26 2024 by rpki-client on console-fra.rpki-client.org