Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/0UdHeg7JalHoo7l8PCB4CQdOaHI.roa
File: 0UdHeg7JalHoo7l8PCB4CQdOaHI.roa (raw, json)
Hash identifier: 9R2Rv+yxl6SNtHjE1mhwGRjJTmUPHJbmUOjGiFq8VHM=
Subject key identifier: D1:47:47:7A:0E:C9:6A:51:E8:A3:B9:7C:3C:20:78:09:07:4E:68:72
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 0AB7A5BD
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/0UdHeg7JalHoo7l8PCB4CQdOaHI.roa
Signing time: Tue 29 Mar 2022 21:48:47 +0000
ROA not before: Tue 29 Mar 2022 21:48:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 45.11.172.0/23 maxlen: 24
45.11.174.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179807677 (0xab7a5bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Mar 29 21:48:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d147477a0ec96a51e8a3b97c3c207809074e6872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b6:25:df:58:59:68:8c:11:d4:e9:18:1f:c5:
55:49:e4:d3:af:24:d7:0a:70:50:9d:ba:13:b7:7f:
b1:66:45:c8:8a:36:a0:f3:8b:c8:cb:6d:79:8a:7c:
1f:75:69:66:a8:b5:c9:cf:e1:c2:8e:cb:17:84:ad:
63:70:01:91:30:05:b6:15:8d:13:65:4d:97:c1:23:
ed:bf:5f:40:07:a7:35:86:88:76:a0:05:9d:ce:27:
3e:79:7a:11:65:50:21:8f:1e:a6:78:80:f4:16:6f:
96:24:15:59:1f:c7:87:ed:c5:63:fe:69:9a:27:fa:
b7:d3:d4:7f:51:28:0f:33:b2:d4:76:49:b0:61:4e:
66:ba:0e:c3:f6:bb:80:3f:e0:ef:51:8b:81:05:29:
8b:26:98:38:20:ec:f9:e7:d2:65:ea:8c:4f:bc:6d:
33:80:fa:94:57:3c:0b:08:84:aa:c0:e9:ce:10:6f:
4c:3b:3d:e8:4d:c7:75:74:95:ec:02:9a:f9:d0:64:
3a:02:73:f2:4c:45:60:0b:cd:16:89:c3:95:39:cc:
f9:57:41:e3:71:79:0a:bd:0d:5f:b0:ef:a4:c9:30:
c2:db:9b:ba:79:0e:32:9a:cf:1c:6b:1e:38:67:aa:
64:cd:55:83:67:c7:68:4a:b2:2f:64:3f:f0:75:62:
ec:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:47:47:7A:0E:C9:6A:51:E8:A3:B9:7C:3C:20:78:09:07:4E:68:72
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/0UdHeg7JalHoo7l8PCB4CQdOaHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.172.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:98:4b:ea:5e:68:15:af:a3:b0:65:b9:7a:3d:54:f7:b8:6b:
56:7d:d3:53:5a:81:d5:96:47:96:4a:5c:dd:42:4b:38:fa:72:
0a:bf:2e:49:45:32:71:fc:18:3d:a5:8d:52:f3:32:70:18:f9:
aa:78:c3:8d:ab:8d:fc:e6:cc:5e:eb:58:2b:14:aa:5b:73:96:
b3:dd:83:82:f1:dc:ee:72:e4:08:ff:fd:b5:86:b4:a8:ee:81:
01:bf:54:ae:b8:08:6f:c5:81:98:d8:bb:df:fc:3f:93:89:a2:
ec:cf:a1:81:e6:c9:63:21:81:09:37:42:50:37:8a:90:b0:89:
61:3e:ca:9d:29:f8:07:15:52:6a:69:4b:51:ac:2b:a9:ee:b2:
db:a7:ff:4d:85:2e:79:b8:52:e7:13:23:ce:8b:55:d0:8d:9b:
74:44:c1:56:7d:35:95:16:33:3b:0c:bf:59:e0:78:9c:be:25:
b5:e5:24:7b:1c:89:20:7c:d8:a8:f5:b6:a6:12:16:59:e0:55:
92:09:46:25:03:de:25:08:12:34:62:9c:c2:7d:1a:82:d6:62:
11:00:21:7e:d8:c9:6b:2d:ae:c1:54:e1:28:7a:2e:e5:4f:90:
d6:8e:6e:a3:92:0d:01:d0:9d:e6:9b:e0:7a:16:ed:5c:48:b2:
4c:64:0c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org