Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/dAjYpINZNSYOrzmVzRttrwbMDw0.roa
File: dAjYpINZNSYOrzmVzRttrwbMDw0.roa (raw, json)
Hash identifier: YKYWm2I81EtY3I3wmId2IEhDNdP49CAI6Ecyls+29Tg=
Subject key identifier: 74:08:D8:A4:83:59:35:26:0E:AF:39:95:CD:1B:6D:AF:06:CC:0F:0D
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 0B59F43A
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/dAjYpINZNSYOrzmVzRttrwbMDw0.roa
Signing time: Tue 07 Jun 2022 13:47:02 +0000
ROA not before: Tue 07 Jun 2022 13:47:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 45.11.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190444602 (0xb59f43a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Jun 7 13:47:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7408d8a4835935260eaf3995cd1b6daf06cc0f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bb:ed:48:54:15:24:e8:22:d4:87:89:87:e1:
99:54:a1:8b:16:9f:f2:aa:85:65:0b:a0:86:18:b3:
ff:d8:c8:61:df:3d:ce:30:74:8f:e5:19:0c:de:42:
2b:3f:57:4d:51:18:29:ac:a1:7d:01:8e:df:2f:09:
74:d8:04:78:21:b5:e0:43:9b:13:bb:2b:df:e7:62:
f7:fe:21:fc:4b:68:e4:4f:1c:f4:13:75:1c:bf:05:
95:64:97:44:0d:76:85:1d:9d:36:8a:b7:e1:17:a5:
d9:44:f8:be:80:03:5f:a9:a5:d0:2d:a7:9e:c1:c0:
9a:c5:48:63:cb:8d:a0:46:ad:97:ab:b1:4a:9d:46:
b6:d3:64:54:40:94:e9:60:61:a7:f3:e7:04:ab:da:
e9:85:f0:87:d9:58:62:00:76:9e:83:d9:65:9d:81:
14:85:2b:19:8c:a9:f2:2b:2b:90:91:59:ee:0a:c7:
2c:d4:51:84:1f:93:b6:15:c9:f1:17:75:66:e6:7c:
ad:59:ff:06:a8:e9:61:9f:8e:9c:d1:16:88:99:d8:
ff:95:bc:02:c1:cc:89:9c:24:46:0a:50:2a:12:3b:
f2:16:53:7b:bc:b7:df:0e:36:83:88:8e:a9:ea:1f:
6c:bd:0d:c7:6c:5f:ab:0c:64:11:1e:25:d5:50:61:
ea:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:08:D8:A4:83:59:35:26:0E:AF:39:95:CD:1B:6D:AF:06:CC:0F:0D
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/dAjYpINZNSYOrzmVzRttrwbMDw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.172.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:9d:ba:fe:e3:ea:e9:e1:a1:ba:91:60:fd:d1:c8:50:be:eb:
8a:38:5b:37:66:6c:c5:08:5f:17:46:9a:1e:6d:a5:e9:26:1e:
71:e3:0c:12:0c:e1:57:31:65:75:42:23:1a:c4:13:be:88:ab:
0a:d5:b7:85:3e:c9:d8:b4:7c:45:ed:cf:e0:4e:03:34:f9:5b:
bc:5c:90:4f:c5:30:fe:1d:28:84:85:a5:49:cd:12:61:5e:d0:
97:3f:b8:0c:d4:b7:96:9a:bb:61:d7:c3:19:b3:ea:8a:df:58:
41:78:2c:70:b7:be:87:06:16:cf:03:a6:a9:20:95:02:b8:7f:
06:f9:05:ce:8e:d9:32:1f:7c:8c:cc:27:f5:54:5f:5d:41:13:
6b:5d:aa:6d:9d:08:07:0e:cc:ba:54:bf:11:07:ab:f0:63:92:
03:75:a5:c1:ba:9e:ce:57:e8:b3:95:ec:20:b3:3b:9d:66:04:
5c:a6:c0:dd:dd:c2:7b:13:49:7b:5d:cc:e8:2c:25:d3:66:e2:
ff:c5:35:7c:da:ef:9f:e6:77:eb:5d:13:b7:b0:2b:85:3d:b2:
37:69:91:10:ee:1f:ab:83:99:4a:2d:c0:a1:2b:43:fb:b7:35:
3f:15:f5:2c:b7:73:60:37:48:0c:55:cb:17:59:af:75:89:fb:
ce:21:0a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org