Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/_9zzOhDFMbLFTpJs5w0x1m15VxI.roa
File: _9zzOhDFMbLFTpJs5w0x1m15VxI.roa (raw, json)
Hash identifier: SE9MpKy4UZEGoDN6GjIVdgsWc9Ocb3ehWAzmac71MrI=
Subject key identifier: FF:DC:F3:3A:10:C5:31:B2:C5:4E:92:6C:E7:0D:31:D6:6D:79:57:12
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 047E8381
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/_9zzOhDFMbLFTpJs5w0x1m15VxI.roa
Signing time: Tue 03 May 2022 12:15:28 +0000
ROA not before: Tue 03 May 2022 12:15:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.140.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75400065 (0x47e8381)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: May 3 12:15:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffdcf33a10c531b2c54e926ce70d31d66d795712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a7:6f:40:f7:0b:66:65:18:a8:b0:e8:e6:d4:
f7:94:2f:ad:3c:f5:b6:79:1c:6b:62:8e:39:d6:d2:
64:84:f6:33:ce:7c:d1:b2:38:33:68:18:8e:74:1b:
a9:f4:98:ed:f1:4c:4f:27:6c:c4:0e:d7:62:51:50:
45:44:62:9f:38:91:7b:66:a3:8d:9a:17:9f:b9:ef:
57:79:20:3a:8d:bd:c8:e9:ff:b5:46:10:d0:68:c9:
79:29:6a:48:40:00:02:49:d0:71:94:02:8f:f6:06:
56:f3:dd:58:09:99:93:65:17:12:1a:b0:30:1d:3f:
1a:84:4c:78:74:99:84:f5:b5:51:ad:0d:a5:19:5a:
26:3d:d1:e7:9a:72:c0:7a:d9:1a:bb:2c:86:21:c3:
85:38:c9:58:f4:76:f6:93:3d:79:f2:38:7f:5b:c1:
ae:ff:f0:b0:bd:dd:88:77:7f:8a:16:aa:98:12:c3:
47:5d:1e:3c:6b:08:13:49:2d:d3:e5:41:14:f3:26:
71:74:fa:e9:f4:d8:5a:81:ae:63:9b:4f:8b:6d:d4:
0b:61:20:fd:17:d3:ba:b5:d9:97:17:c8:55:b6:dd:
51:4e:1a:c6:73:97:1e:d2:b7:55:8d:d3:bc:ae:28:
1a:c8:7b:65:cb:e5:80:64:34:78:b9:a7:a2:2b:31:
15:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:DC:F3:3A:10:C5:31:B2:C5:4E:92:6C:E7:0D:31:D6:6D:79:57:12
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/_9zzOhDFMbLFTpJs5w0x1m15VxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.192.0/22
Signature Algorithm: sha256WithRSAEncryption
11:21:0d:ec:70:87:e2:b5:df:df:87:00:50:e5:02:c9:5d:3d:
66:e1:4a:ee:68:f6:65:b6:6c:ee:da:17:ad:0c:75:e6:0d:8c:
5c:9c:07:2a:42:e5:23:74:59:48:a1:bd:b3:c2:fa:b0:7e:97:
39:c3:2a:2e:39:35:5c:0f:7d:16:c6:af:da:ff:cd:06:ff:82:
72:cd:f0:1b:10:5c:5f:bb:88:fd:2e:54:8f:04:a5:fe:5c:c8:
d0:20:8d:5c:a5:8b:02:46:b3:13:52:f4:ba:1e:54:2a:53:d6:
f6:b2:73:4a:68:91:37:28:e6:62:d2:1d:dd:e7:35:f5:dd:53:
ad:ac:4a:26:e1:5d:6e:95:fe:12:1f:28:61:fa:56:46:9d:02:
c3:89:e2:f3:d5:fa:31:3b:ee:5c:96:2c:93:cc:3e:0b:2e:be:
f8:78:7d:0b:e9:42:6b:06:16:a8:85:89:3c:b1:07:47:92:2f:
6a:e7:93:8a:17:57:fc:b0:30:18:d8:aa:0b:47:46:1c:d4:19:
47:88:5a:8b:94:73:aa:33:f8:0c:46:82:ba:87:c4:bb:f3:0d:
13:2a:4f:40:26:a0:2d:b5:ae:a2:f0:43:3b:57:4e:ba:f8:93:
fb:c1:46:5c:38:f0:c1:36:c3:4b:b0:d6:61:9e:bd:10:d1:da:
c0:ab:4e:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org