Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/XIpvBe0gbI_C9I580Ocikv_wN8k.roa
File: XIpvBe0gbI_C9I580Ocikv_wN8k.roa (raw, json)
Hash identifier: jMMF4kHEJhFUk79VRaunRPHvu1dq8OkqCdfPh0cwZwg=
Subject key identifier: 5C:8A:6F:05:ED:20:6C:8F:C2:F4:8E:7C:D0:E7:22:92:FF:F0:37:C9
Certificate issuer: /CN=bfff419659f54df378792b602c0092c353988ec8
Certificate serial: 0185069CBE26FE361AE1B6A2A4B380A3BF45
Authority key identifier: BF:FF:41:96:59:F5:4D:F3:78:79:2B:60:2C:00:92:C3:53:98:8E:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v_9Blln1TfN4eStgLACSw1OYjsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/XIpvBe0gbI_C9I580Ocikv_wN8k.roa
Signing time: Mon 12 Dec 2022 13:53:33 +0000
ROA not before: Mon 12 Dec 2022 13:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208342
IP address blocks: 45.129.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:9c:be:26:fe:36:1a:e1:b6:a2:a4:b3:80:a3:bf:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfff419659f54df378792b602c0092c353988ec8
Validity
Not Before: Dec 12 13:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c8a6f05ed206c8fc2f48e7cd0e72292fff037c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ef:d9:4b:15:1e:ff:1c:6e:cc:a5:3d:45:e8:
3a:1d:31:fc:39:44:c3:fa:cb:63:fa:43:0d:71:03:
74:9d:b7:26:99:9a:29:17:b4:73:6b:d6:53:2b:d7:
a8:2a:87:58:9a:f5:12:1c:66:16:56:56:2f:cb:8c:
09:0c:71:19:6e:05:a6:08:65:b7:c8:bb:50:d8:6f:
52:cb:84:71:b0:d7:44:4c:56:a0:c1:2e:68:66:33:
28:46:03:a0:5b:18:c2:58:d8:5c:82:d2:c1:30:82:
b1:96:ca:db:a3:69:b4:06:e4:28:ad:8d:c9:29:2f:
b7:76:56:ad:5c:5c:60:07:14:08:e1:4d:57:e3:b3:
f5:98:07:34:cd:7b:43:19:22:21:65:35:22:8d:3e:
c7:9f:25:e4:d1:79:10:f2:d0:61:f1:c3:ed:82:bc:
14:51:67:04:93:a6:6e:bc:69:4f:4c:54:8c:f7:28:
2e:63:a7:86:db:c7:36:4d:68:69:7a:83:2f:d1:7d:
2d:d9:fa:f7:6b:94:f9:1c:ae:a1:8a:6f:62:a5:aa:
95:b6:3f:51:af:ab:18:d9:86:4b:18:8d:c5:82:a3:
74:1b:60:f4:a0:ff:52:90:e2:2d:14:e9:2e:41:05:
ab:78:1a:3e:1f:d9:24:50:97:47:04:e3:d6:96:7b:
cd:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:8A:6F:05:ED:20:6C:8F:C2:F4:8E:7C:D0:E7:22:92:FF:F0:37:C9
X509v3 Authority Key Identifier:
keyid:BF:FF:41:96:59:F5:4D:F3:78:79:2B:60:2C:00:92:C3:53:98:8E:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v_9Blln1TfN4eStgLACSw1OYjsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/XIpvBe0gbI_C9I580Ocikv_wN8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/v_9Blln1TfN4eStgLACSw1OYjsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.244.0/22
Signature Algorithm: sha256WithRSAEncryption
68:7f:f0:54:95:31:4f:7b:f8:af:15:9f:b7:45:b8:3b:3c:c0:
24:30:7f:a2:3d:35:e9:db:fd:ea:a3:cf:7c:a8:02:14:70:2b:
86:d6:94:2a:10:04:25:6d:17:b7:c4:80:fd:82:a9:a1:e3:af:
18:b8:f3:da:28:65:e1:27:90:8a:49:01:d6:cd:cd:0b:f1:15:
90:a8:db:06:89:cc:2a:9a:65:22:84:7f:fb:88:e4:a1:dd:b7:
32:ca:4f:96:ea:4e:b4:bd:b8:00:8e:9e:5e:43:64:1b:7a:b5:
5f:a3:c4:e2:42:32:1b:9b:0b:5a:5a:7a:31:b9:84:52:9c:8b:
01:11:47:f1:89:20:20:fd:22:ba:2e:4b:ec:70:c8:2f:ca:66:
ce:b9:e8:3d:87:9e:fc:46:91:2e:67:87:d0:05:1b:55:ff:43:
08:e2:f1:2b:27:b1:6e:53:2b:96:b1:d2:bc:d1:0f:f1:f0:09:
b8:33:6e:4f:b9:28:82:b2:65:4d:b9:b6:b4:9c:9b:22:c8:11:
f4:21:c9:01:e2:3d:b0:97:db:86:f4:c7:1b:65:ad:46:15:4e:
a4:67:9b:b5:bb:68:36:08:9f:af:fb:ea:76:e9:04:53:71:75:
33:8d:3e:8b:b0:18:51:96:84:f4:e0:c6:86:f8:29:47:5c:a2:
38:e1:74:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:37 2024 by rpki-client on console-ams.rpki-client.org