Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/i9lmI7bYdxXHaqbWusH61uNqZGs.roa
File: i9lmI7bYdxXHaqbWusH61uNqZGs.roa (raw, json)
Hash identifier: pemnFVt6cq5BidufZ7wuEgtHL7zxRqI/8q8NNIftyGU=
Subject key identifier: 8B:D9:66:23:B6:D8:77:15:C7:6A:A6:D6:BA:C1:FA:D6:E3:6A:64:6B
Certificate issuer: /CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Certificate serial: 03C65FC8
Authority key identifier: 1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/i9lmI7bYdxXHaqbWusH61uNqZGs.roa
Signing time: Tue 04 Jan 2022 09:48:03 +0000
ROA not before: Tue 04 Jan 2022 09:48:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201150
IP address blocks: 45.132.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63332296 (0x3c65fc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Validity
Not Before: Jan 4 09:48:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bd96623b6d87715c76aa6d6bac1fad6e36a646b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:06:2c:8d:29:fd:37:27:f3:af:dc:87:9e:f5:
32:49:bd:4a:93:b9:bf:aa:06:62:2b:69:57:35:b3:
4e:e1:5a:8b:96:e1:cf:a2:1e:ff:59:56:87:06:db:
19:9e:46:57:1e:91:d5:e0:b9:a8:dc:95:6d:a3:51:
fb:19:86:6e:a9:64:d5:7d:17:9c:c4:ad:09:17:ad:
ab:93:c2:9e:cd:c9:99:38:93:4e:01:19:75:89:e4:
00:93:64:24:73:80:92:40:8a:b0:27:23:60:bf:6e:
76:d8:92:73:ff:05:ea:03:21:e1:76:ef:e9:ee:08:
b0:38:58:68:d7:e8:65:7f:ea:1a:34:f5:2e:7a:27:
37:32:27:c3:99:de:83:cd:4c:1c:5a:21:df:0b:72:
6b:d9:a6:fa:a1:50:52:b3:6d:47:f7:b4:6b:d7:63:
79:5f:49:a9:8e:6b:05:77:ca:32:b7:80:0a:64:33:
b9:5d:8a:c2:a3:17:42:7c:23:91:ad:1a:0b:cf:53:
ff:79:43:69:0b:a3:58:68:ab:ba:45:38:7d:28:f2:
b1:9d:9d:08:79:56:25:93:69:7f:2f:ac:2e:56:e8:
47:38:ac:b5:66:ec:e7:25:62:43:99:22:fd:69:bb:
9b:0d:e3:10:a4:b5:64:a8:ee:ff:89:e3:77:98:35:
98:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D9:66:23:B6:D8:77:15:C7:6A:A6:D6:BA:C1:FA:D6:E3:6A:64:6B
X509v3 Authority Key Identifier:
keyid:1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/i9lmI7bYdxXHaqbWusH61uNqZGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.32.0/24
Signature Algorithm: sha256WithRSAEncryption
92:c9:09:2d:73:f0:16:e2:4f:e1:47:0c:d2:67:d3:15:12:c9:
57:a3:55:97:b9:9e:a0:79:ea:42:14:ee:d4:88:e6:52:68:9d:
6d:90:8c:de:03:ba:84:fd:c2:fb:97:ea:65:98:c8:be:08:b6:
ea:ad:43:17:05:8e:72:d6:ac:06:f1:b2:d5:c1:eb:01:12:f3:
02:ab:f5:fb:7f:a6:cc:00:3b:d6:10:45:29:c0:c4:b5:6d:3e:
29:0a:55:ca:c8:c4:98:db:80:6d:2b:88:86:ae:15:f1:f7:16:
46:75:27:24:f7:a4:00:79:49:1a:89:7e:76:12:8a:eb:04:9f:
a5:8f:3f:7a:23:73:d5:79:4f:b0:49:85:44:42:21:f1:3d:ae:
ab:58:d2:ad:b6:19:cc:41:e0:4b:1f:0a:bb:bb:71:02:89:02:
ef:fa:85:ee:5e:ca:fc:d4:30:3e:c1:4a:a3:45:e6:1d:3f:9d:
8b:5a:3b:25:5c:8b:12:2b:c1:04:3a:e2:6c:ef:f9:44:a7:70:
4d:cb:d0:05:69:bb:a6:83:43:10:20:87:2d:32:4e:af:2d:25:
b5:94:29:43:17:26:cb:59:b8:34:02:8a:10:c1:50:70:6b:1b:
fe:7f:8d:61:cd:cd:a0:40:14:ff:4b:3d:69:bc:7e:4d:a3:cc:
e2:d8:5b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:41 2024 by rpki-client on console-fra.rpki-client.org