Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/Cx1okwrQuSSzuu2e6ldzto2CLDY.roa
File: Cx1okwrQuSSzuu2e6ldzto2CLDY.roa (raw, json)
Hash identifier: NZFVh52uX65TFTptuXvEigSOfx9auMh8VlAg9q87V64=
Subject key identifier: 0B:1D:68:93:0A:D0:B9:24:B3:BA:ED:9E:EA:57:73:B6:8D:82:2C:36
Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Certificate serial: 4D59BB
Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/Cx1okwrQuSSzuu2e6ldzto2CLDY.roa
Signing time: Sat 01 Jan 2022 01:52:09 +0000
ROA not before: Sat 01 Jan 2022 01:52:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207910
IP address blocks: 45.67.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5069243 (0x4d59bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Validity
Not Before: Jan 1 01:52:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b1d68930ad0b924b3baed9eea5773b68d822c36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fc:f2:9a:8c:7d:32:c2:52:2b:a5:77:1c:fa:
e5:50:df:95:a9:11:13:cd:eb:15:5c:4c:c1:a4:b5:
b7:65:45:9f:7b:18:2c:9f:a1:f8:fd:ec:aa:bb:17:
fa:7d:25:13:71:e4:f2:bc:80:e2:9b:b5:fc:e7:3c:
05:cb:44:af:a4:9a:9b:8a:bb:02:b9:3a:93:7e:5e:
24:eb:c8:17:d7:eb:15:85:a8:95:63:b3:84:9e:50:
92:a7:76:1f:a5:29:90:de:4d:74:e0:6d:6c:b6:c9:
d8:48:1c:d7:5e:d2:a6:b1:fb:99:a9:53:83:9e:aa:
e5:4c:d6:da:62:13:ec:0f:d6:3c:19:85:35:13:3b:
7e:74:ba:bd:82:3b:84:72:38:d2:56:2e:c3:70:b3:
b9:d2:45:b9:0f:be:f1:da:be:a7:f4:55:53:05:d7:
3c:09:2e:74:14:8e:e5:35:02:51:94:f7:70:4f:0f:
7b:c2:8f:46:25:3d:8c:fd:48:d6:b0:06:4c:0f:44:
aa:70:a4:ca:a7:6f:f5:dd:c1:dd:c5:d6:c3:79:f3:
d9:da:db:d3:92:9c:4f:f5:a2:ba:bb:55:4b:a0:21:
dd:98:da:4e:91:e1:c5:0e:ff:86:d0:cc:39:a3:fd:
7a:b8:6e:c7:a8:eb:ac:90:18:ea:10:38:74:da:5a:
56:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:1D:68:93:0A:D0:B9:24:B3:BA:ED:9E:EA:57:73:B6:8D:82:2C:36
X509v3 Authority Key Identifier:
keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/Cx1okwrQuSSzuu2e6ldzto2CLDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.83.0/24
Signature Algorithm: sha256WithRSAEncryption
23:f1:a6:51:24:38:b6:e5:91:d0:7a:30:99:62:4d:6a:a4:c0:
47:23:6e:3d:2b:b6:96:c7:2a:75:7b:e6:79:00:f9:78:9b:39:
9d:96:99:9d:f9:c8:15:e8:fc:02:0b:94:27:1c:cd:28:b8:65:
8b:d6:47:42:ad:3c:4f:9d:99:bb:be:b4:9f:62:cb:6a:81:6a:
7d:a8:b7:36:e0:f7:85:0f:fe:41:41:c9:f7:3c:4c:4d:96:32:
3d:51:3f:24:77:4c:3a:fc:a3:62:8e:aa:54:51:bc:03:3a:bc:
39:0a:67:9d:c9:67:e2:80:cb:3a:4b:84:13:24:e6:3b:b3:72:
7f:44:17:58:7e:4b:c6:e2:81:c7:54:f0:d5:9b:df:b7:0b:44:
d7:74:1e:86:0a:a6:c2:a0:c0:ec:59:ef:d0:32:51:1e:a5:37:
9d:f8:40:76:fc:c3:47:4c:3f:0d:33:0a:c7:cb:83:13:20:f6:
af:8d:06:cd:6b:cf:4a:fc:66:f3:1f:26:4e:21:03:bb:5f:db:
87:62:7f:18:40:bf:45:df:fc:d2:73:2d:26:2a:04:b2:18:4b:
fd:59:8d:1f:ab:07:e3:ae:b1:7c:c4:e1:d4:67:20:31:65:11:
87:fd:8d:81:b0:ce:2d:50:83:cd:94:48:24:a8:3b:30:68:65:
ac:0a:7b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:09 2024 by rpki-client on console-ams.rpki-client.org