Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/1uf6rIVHtlEso6yDnQBaRbmpliU.roa
File: 1uf6rIVHtlEso6yDnQBaRbmpliU.roa (raw, json)
Hash identifier: cV7hVxt3Xm6wKx0Or1a/1/29SXVEfKTuNGYpRh+OveA=
Subject key identifier: D6:E7:FA:AC:85:47:B6:51:2C:A3:AC:83:9D:00:5A:45:B9:A9:96:25
Certificate issuer: /CN=8e626c909eb4951154bcee8221e43951b4257624
Certificate serial: 018A9A56BC5ACE8791D7CC8CD739BA5401D5
Authority key identifier: 8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/1uf6rIVHtlEso6yDnQBaRbmpliU.roa
Signing time: Fri 15 Sep 2023 19:34:50 +0000
ROA not before: Fri 15 Sep 2023 19:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47377
IP address blocks: 185.51.54.0/23 maxlen: 24
45.150.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:9a:56:bc:5a:ce:87:91:d7:cc:8c:d7:39:ba:54:01:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e626c909eb4951154bcee8221e43951b4257624
Validity
Not Before: Sep 15 19:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6e7faac8547b6512ca3ac839d005a45b9a99625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:eb:a1:9f:67:9b:a0:ad:50:2d:11:0b:18:11:
0c:a8:72:03:33:4d:da:e7:55:4b:46:4f:be:b0:77:
9c:ff:bf:a9:40:20:98:7f:8a:8b:30:43:2d:b5:9b:
2f:97:66:d4:47:57:56:c7:76:72:5a:1b:33:70:fa:
c3:96:c7:36:75:ad:d1:3a:c4:63:30:5b:39:df:22:
06:06:d9:01:be:9e:ce:99:f4:f9:63:30:d5:ba:43:
62:8e:b6:40:96:25:a7:39:be:12:d7:7d:55:af:75:
b7:75:7e:fc:1a:ff:35:59:17:f4:37:61:c3:b9:d0:
1f:52:7f:73:a6:92:e0:3e:7c:ef:d9:d8:42:a8:ac:
6e:bf:20:7d:3a:74:d1:18:d3:50:23:3a:1e:b2:70:
77:be:3b:46:08:ef:96:e4:2d:51:03:3c:05:36:cc:
6e:e6:60:4b:0b:6b:40:cf:c9:34:91:00:06:cd:fa:
0d:68:e0:8b:80:6f:62:ae:89:bb:ed:cd:2c:42:0a:
0b:c4:e4:07:17:4d:76:2a:f5:65:8d:a6:23:6c:7b:
8e:b9:94:e5:b6:90:5c:4c:49:91:d3:b7:ee:94:39:
86:30:49:0c:ce:55:62:fb:95:84:79:95:05:aa:0e:
52:ac:90:2f:31:42:92:44:49:a1:ab:2a:97:40:92:
d4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E7:FA:AC:85:47:B6:51:2C:A3:AC:83:9D:00:5A:45:B9:A9:96:25
X509v3 Authority Key Identifier:
keyid:8E:62:6C:90:9E:B4:95:11:54:BC:EE:82:21:E4:39:51:B4:25:76:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmJskJ60lRFUvO6CIeQ5UbQldiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/1uf6rIVHtlEso6yDnQBaRbmpliU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fe4266-7f54-4fb3-b810-e97d1d0220af/1/jmJskJ60lRFUvO6CIeQ5UbQldiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.116.0/22
185.51.54.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:96:8a:6f:aa:c5:04:a9:e2:f6:35:89:59:e8:c0:c3:91:34:
15:4a:b3:25:3c:47:41:0d:7f:30:2d:e7:18:bc:dd:c6:19:d9:
52:be:60:50:9d:3a:38:d0:29:dc:d0:69:f3:31:1e:ba:99:68:
f4:d2:8f:5f:81:5f:87:60:11:d3:9f:d2:f8:e9:3a:fb:85:12:
4c:b2:a4:ad:f9:47:0f:dd:39:81:2a:6b:ba:3c:34:06:4b:23:
67:c5:fa:27:ba:94:7f:ce:13:71:5e:5e:13:b2:cd:81:6d:a2:
af:fe:d8:06:56:7a:9c:e3:6f:68:08:0e:ec:d3:80:55:c4:af:
37:a5:63:3c:4c:bd:f2:71:a4:a3:5d:75:89:0d:5e:8b:6f:f7:
8a:3f:38:82:84:a1:85:31:3f:50:3f:7b:cf:9f:22:d8:4c:f9:
75:16:57:11:f2:ad:70:60:ee:35:43:25:18:cb:8d:98:14:99:
5e:e7:b3:7b:ca:a5:34:42:c9:db:97:40:53:24:96:f8:3b:bd:
7b:42:fe:79:59:72:f0:43:99:69:0b:59:95:ae:c2:6a:04:d8:
5c:63:b3:30:bc:7b:b8:32:91:62:a4:23:20:b8:e8:d3:12:8f:
9a:a0:f1:a4:43:51:75:d6:7d:d9:61:30:be:94:b6:6b:69:a0:
db:68:f5:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:46 2025 by rpki-client