Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/U4RJEOb1qRrZCa2zqWDfRdLHvy0.roa
File: U4RJEOb1qRrZCa2zqWDfRdLHvy0.roa (raw, json)
Hash identifier: GGLU5cr+fNfanWJJSsOfYY6BA51r0WtURuURCpU+UcU=
Subject key identifier: 53:84:49:10:E6:F5:A9:1A:D9:09:AD:B3:A9:60:DF:45:D2:C7:BF:2D
Certificate issuer: /CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Certificate serial: 01842F1E116DB8BD96CD984499FBEA90AA29
Authority key identifier: B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/U4RJEOb1qRrZCa2zqWDfRdLHvy0.roa
Signing time: Mon 31 Oct 2022 17:36:50 +0000
ROA not before: Mon 31 Oct 2022 17:36:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49870
IP address blocks: 45.67.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2f:1e:11:6d:b8:bd:96:cd:98:44:99:fb:ea:90:aa:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Validity
Not Before: Oct 31 17:36:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53844910e6f5a91ad909adb3a960df45d2c7bf2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e5:14:e9:2b:cb:c1:72:3b:68:39:77:f8:c1:
e7:81:aa:e7:2a:13:65:38:77:dc:24:20:e7:e9:a3:
b7:ba:79:ff:62:87:58:42:34:a1:e6:5e:de:c3:92:
47:de:f4:eb:4e:df:12:3d:e7:74:44:48:3c:cf:31:
c5:05:ab:83:e2:51:ac:1f:ec:e2:e9:ce:42:34:13:
09:97:ec:0e:57:9f:1d:b8:b7:80:fd:9f:36:52:ea:
83:37:18:89:d4:b9:69:a8:8c:34:3d:37:e2:c7:0c:
1c:4e:aa:57:c7:76:57:43:6b:95:17:9a:07:29:3d:
01:57:2b:f4:7c:d4:6e:05:25:c5:f3:9c:cf:a2:13:
9c:d1:c2:12:17:18:5f:6d:e2:39:f1:d8:a6:8e:f3:
61:78:6f:fe:d4:32:68:84:24:cc:df:5b:05:2f:f5:
07:06:86:16:1f:f6:f5:01:42:93:43:7e:26:26:e2:
93:94:31:69:ab:37:70:e9:21:c8:7a:4f:a2:43:68:
21:0e:50:e3:ec:f4:11:ed:f7:b2:0f:91:c2:39:23:
5c:d2:16:08:58:d7:13:53:be:e1:9c:fb:9e:dc:e3:
a4:92:d2:b8:90:46:e7:33:8d:b1:12:08:73:97:f5:
58:2d:df:e5:08:2c:9e:d9:c8:42:84:ef:2e:c9:0d:
c0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:84:49:10:E6:F5:A9:1A:D9:09:AD:B3:A9:60:DF:45:D2:C7:BF:2D
X509v3 Authority Key Identifier:
keyid:B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/U4RJEOb1qRrZCa2zqWDfRdLHvy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/t8QKdH46wazGEaTEA7YAc5jn158.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.13.0/24
Signature Algorithm: sha256WithRSAEncryption
94:dc:fb:43:2b:d7:e3:e3:08:36:cc:04:6d:9c:2f:5d:c2:c5:
f0:fc:0e:c3:76:78:e4:08:83:9d:92:40:0f:81:30:15:29:e5:
90:b2:1a:77:80:43:fe:49:8b:65:7d:ea:cc:5c:14:27:4d:ae:
83:ae:fe:8d:82:bc:7f:c3:0d:42:c3:44:bb:ac:35:99:b1:1b:
0c:d3:d7:19:c5:00:a6:10:19:a5:3b:6e:b1:3b:8e:26:70:c4:
01:bf:0b:cc:ea:3f:6a:ef:cb:55:78:66:4a:1a:83:dd:81:ba:
4d:ec:5d:42:6f:17:db:fa:7b:6e:8a:e6:fe:c1:41:19:00:63:
2f:fd:a2:52:a7:63:57:bd:c4:cf:9b:18:40:b3:05:90:98:c3:
55:03:18:11:55:13:b4:dc:86:b3:4c:75:bf:fd:6e:1d:21:18:
99:9c:70:d0:71:7a:22:37:be:5a:c3:0b:98:85:2c:8e:c3:3f:
cd:65:06:eb:56:53:34:a6:20:e8:0b:74:98:76:59:ea:1d:0f:
86:c7:1f:79:db:e9:e7:39:7f:d5:5d:de:00:97:50:e7:dd:02:
e4:5f:fc:c2:af:56:ef:2d:a2:ba:89:bb:af:61:fa:da:96:66:
ad:30:e0:f0:b7:b1:3c:a7:ae:e0:f9:9f:01:d1:96:10:59:74:
9e:e1:0f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:37 2024 by rpki-client on console-ams.rpki-client.org