Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/aM1DXRef2yZnhCvw_As-SHl5kCg.roa
File: aM1DXRef2yZnhCvw_As-SHl5kCg.roa (raw, json)
Hash identifier: NqbMbMa8Uts3700pf8qB2hUPBt9AAg62EDFS/RFavdk=
Subject key identifier: 68:CD:43:5D:17:9F:DB:26:67:84:2B:F0:FC:0B:3E:48:79:79:90:28
Certificate issuer: /CN=38bd6d8ebb82404d5709351bc2329a0ee43a9a43
Certificate serial: 09D62C92
Authority key identifier: 38:BD:6D:8E:BB:82:40:4D:57:09:35:1B:C2:32:9A:0E:E4:3A:9A:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OL1tjruCQE1XCTUbwjKaDuQ6mkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/aM1DXRef2yZnhCvw_As-SHl5kCg.roa
Signing time: Mon 13 Jun 2022 21:09:44 +0000
ROA not before: Mon 13 Jun 2022 21:09:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54574
IP address blocks: 45.88.192.0/22 maxlen: 24
2a07:aec0::/29 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165031058 (0x9d62c92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38bd6d8ebb82404d5709351bc2329a0ee43a9a43
Validity
Not Before: Jun 13 21:09:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68cd435d179fdb2667842bf0fc0b3e4879799028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2e:00:f4:22:aa:d0:4f:c5:2c:9b:45:e5:3e:
e6:5a:d0:6d:cc:90:51:27:92:fd:5d:54:c9:7d:b6:
97:e8:6e:e9:af:2a:13:57:70:d8:3e:22:59:3e:8f:
72:14:14:ef:d8:13:7c:98:59:d0:c2:4d:1b:fe:d1:
a6:53:8e:c7:88:b0:f2:58:69:a8:b7:07:c9:de:a5:
99:59:3b:ce:d5:80:ab:5e:e1:c7:9e:91:a0:55:ca:
d4:8a:82:c9:ae:b6:f5:3d:ea:76:03:af:7f:c2:f1:
79:bc:1f:9f:62:20:10:70:d3:f4:be:d8:92:24:94:
2c:2f:9d:af:07:1e:7e:82:f6:7c:63:7f:3e:0c:5e:
2e:26:a2:17:91:9f:ea:54:11:95:bd:0e:28:03:1f:
98:51:98:ff:56:ba:f4:cb:bf:40:33:72:26:4c:0b:
97:47:16:27:6e:f4:64:16:6f:b0:28:ab:44:9f:6e:
39:2e:63:05:64:f2:f3:44:96:a6:c7:fe:1d:b7:6d:
23:73:11:22:ab:0b:dd:ef:fa:1d:50:4d:85:89:65:
41:04:0d:07:10:e7:df:cc:73:1e:4a:e5:50:90:24:
09:06:f4:f4:7a:d7:fd:1e:66:ea:f7:b8:15:71:be:
73:69:c8:5b:1e:9a:a0:88:aa:a6:ad:fa:d9:0d:a9:
74:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CD:43:5D:17:9F:DB:26:67:84:2B:F0:FC:0B:3E:48:79:79:90:28
X509v3 Authority Key Identifier:
keyid:38:BD:6D:8E:BB:82:40:4D:57:09:35:1B:C2:32:9A:0E:E4:3A:9A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OL1tjruCQE1XCTUbwjKaDuQ6mkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/aM1DXRef2yZnhCvw_As-SHl5kCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/bb3b49-62d0-497c-bd1e-8c9539f444c6/1/OL1tjruCQE1XCTUbwjKaDuQ6mkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.192.0/22
IPv6:
2a07:aec0::/29
Signature Algorithm: sha256WithRSAEncryption
39:6d:1e:f2:9f:76:95:60:fa:84:22:02:3c:be:3d:f9:58:f3:
a5:39:ef:13:db:3e:60:15:81:24:bd:7b:06:34:d0:89:ad:e6:
f6:cb:d5:9f:52:45:7d:59:92:73:b1:0b:18:cd:c2:3c:10:83:
97:78:f1:dd:3a:70:2c:1d:21:f4:59:01:24:86:74:8e:79:20:
88:c3:21:02:0d:da:7e:cd:03:bc:ec:e4:75:43:92:bf:99:4c:
24:f5:2a:0d:02:29:02:b0:bb:9a:78:18:2e:74:62:a0:23:5f:
5d:91:d4:92:c5:44:a9:9e:91:bf:2f:9b:3b:f2:f3:86:ca:23:
5a:54:34:d3:03:29:46:bc:08:a7:1e:55:7f:3c:82:4f:e1:5a:
64:a8:e1:62:8d:2b:15:0c:79:05:e4:00:b3:8b:1f:51:96:5b:
34:2e:4a:29:8a:e3:fe:20:fb:5d:21:9e:be:71:c7:b3:57:c2:
95:da:e3:bf:a1:4e:cb:2f:c4:86:e7:05:db:0d:f4:c9:de:d3:
69:06:e9:a6:b4:13:51:40:c2:37:0f:55:4e:d9:33:82:76:ba:
d8:2d:c3:35:3c:c0:d0:26:72:10:39:b1:7d:0e:d9:31:04:27:
3f:2c:fd:b7:cd:13:30:4e:6e:06:2e:e7:ea:d6:4d:cc:bd:7d:
31:e1:39:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:56 2024 by rpki-client on console-ams.rpki-client.org