Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/dGDZaYwn7Dd0PLtll3pWm-7OgRk.roa
File: dGDZaYwn7Dd0PLtll3pWm-7OgRk.roa (raw, json)
Hash identifier: ZnEkIUaxklMGhu9wkcW4gn3Qb+mWdKBUrLbziOfj1Jg=
Subject key identifier: 74:60:D9:69:8C:27:EC:37:74:3C:BB:65:97:7A:56:9B:EE:CE:81:19
Certificate issuer: /CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Certificate serial: 0831E5BF
Authority key identifier: B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/dGDZaYwn7Dd0PLtll3pWm-7OgRk.roa
Signing time: Sat 01 Jan 2022 10:57:41 +0000
ROA not before: Sat 01 Jan 2022 10:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 45.67.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137487807 (0x831e5bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Validity
Not Before: Jan 1 10:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7460d9698c27ec37743cbb65977a569beece8119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c5:31:d0:7f:14:60:8b:1d:cf:b0:62:46:3d:
7a:6d:ca:e7:0d:7c:d8:b8:a9:df:e5:4b:7d:1d:29:
25:dd:a7:3f:8b:f7:90:ae:b3:bc:f2:6c:51:d3:f2:
1c:4d:28:fe:73:a5:d2:69:d8:50:08:3b:3a:23:c0:
f1:f1:68:98:5c:05:a4:16:9f:a7:1b:96:e7:01:a0:
64:f6:1f:b8:99:1e:a0:9f:6c:fc:d5:fc:e0:3c:2f:
ed:72:be:71:71:73:8f:8a:be:c5:32:ff:ea:11:62:
b9:72:ce:82:84:46:21:b4:84:78:f6:37:7c:26:48:
68:b4:19:f6:3a:77:ef:49:ad:3b:f9:24:13:ca:27:
68:6a:02:4c:69:cc:c0:6a:e4:80:25:9e:95:57:3e:
de:06:50:fa:77:30:d5:59:91:87:ff:45:99:fd:d8:
de:a4:8b:ad:bf:b8:a0:8b:66:84:7d:8f:51:fb:5c:
52:e8:3a:e7:72:0d:4d:0c:92:c8:f8:b6:96:39:6c:
42:b4:a7:9a:9d:a1:f4:29:03:a7:26:9f:9e:e8:23:
1b:5c:ff:b1:bd:ac:fe:18:39:10:6f:06:c6:e3:d0:
09:e4:ce:9f:44:0d:b2:7e:4d:18:8f:f8:b1:d2:c6:
be:b4:7f:3a:33:da:20:d2:a1:3b:ce:95:50:90:c1:
ef:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:60:D9:69:8C:27:EC:37:74:3C:BB:65:97:7A:56:9B:EE:CE:81:19
X509v3 Authority Key Identifier:
keyid:B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/dGDZaYwn7Dd0PLtll3pWm-7OgRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/t8QKdH46wazGEaTEA7YAc5jn158.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.13.0/24
Signature Algorithm: sha256WithRSAEncryption
95:72:49:b4:a6:28:99:da:43:82:41:60:e9:fe:99:b1:7f:21:
1c:ad:91:07:7b:a9:78:73:af:7c:be:64:ff:c2:1f:db:dc:19:
02:32:77:0f:2c:5c:1a:6f:ce:2a:83:03:9a:05:ba:cc:a6:63:
00:cd:e5:c9:1b:43:32:ef:6d:70:00:89:26:25:b9:35:fe:74:
54:2c:e2:5d:a7:09:81:3b:dd:84:2d:1a:45:80:37:cb:70:26:
65:5d:cd:28:cc:fb:1d:5b:11:09:4c:a4:2f:10:15:12:8c:6e:
f6:5c:2c:65:6d:63:8d:5e:40:d8:78:34:ab:2b:25:be:e5:0f:
f8:cb:ad:0a:64:f6:d8:b1:91:03:7e:60:43:d0:0d:b8:77:f4:
26:64:64:8d:05:e7:60:e5:d7:28:6e:b9:af:57:6d:88:18:20:
b5:5e:2d:c8:c9:23:81:f3:33:6b:c6:12:18:17:3d:a9:0b:97:
f3:fd:84:2c:59:ca:4e:13:73:dd:ef:c8:3d:aa:fe:dc:41:4f:
8b:86:93:04:86:61:ea:5c:bd:96:f2:53:52:43:61:07:c7:41:
9f:70:93:7e:da:db:39:84:0c:14:ac:af:9e:03:e9:b5:bd:37:
9c:5e:bf:dc:8e:62:09:22:3d:34:da:9f:b8:32:b5:c4:0c:6d:
fb:7d:7b:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:37 2024 by rpki-client on console-ams.rpki-client.org