Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/g9WEvuxr1_W-8I0bpSq2yMFw6h4.roa
File: g9WEvuxr1_W-8I0bpSq2yMFw6h4.roa (raw, json)
Hash identifier: cVWrlhGwZw9Ij5jiel5orBdPycmzfJ54GR/FeiocAjE=
Subject key identifier: 83:D5:84:BE:EC:6B:D7:F5:BE:F0:8D:1B:A5:2A:B6:C8:C1:70:EA:1E
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 09F4FFF5
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/g9WEvuxr1_W-8I0bpSq2yMFw6h4.roa
Signing time: Sat 01 Jan 2022 10:02:21 +0000
ROA not before: Sat 01 Jan 2022 10:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61290
IP address blocks: 45.11.172.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167051253 (0x9f4fff5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Jan 1 10:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83d584beec6bd7f5bef08d1ba52ab6c8c170ea1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8a:8e:2c:2d:89:9d:77:30:08:57:38:de:ae:
65:c5:28:c8:d1:f2:31:ef:b2:fd:ed:bd:94:ea:23:
73:da:d9:66:03:92:22:0e:d9:5b:7c:16:be:7a:39:
b2:0d:20:1e:5d:e3:e9:83:ae:40:b2:14:0b:96:b5:
4c:28:d4:b1:87:b5:2b:08:8b:5d:50:2d:76:61:ea:
4f:e1:62:47:52:9e:8c:d2:32:4e:2b:7a:bc:88:9e:
e6:89:40:d9:1b:ee:a7:35:43:d0:d1:8b:be:00:39:
af:6c:58:1c:c0:0b:aa:8b:13:4b:ee:29:ec:e5:71:
2e:f5:d0:18:08:b6:eb:c8:d7:e8:53:08:fd:f8:f9:
2d:8b:6a:fb:cf:07:56:ad:33:49:87:8c:2b:2b:8e:
59:3e:c6:1f:cd:b7:4d:8c:8d:33:dc:a5:96:cb:43:
76:09:1e:a1:75:62:df:b1:ca:54:3e:d5:b2:49:f3:
b7:dc:8b:1d:df:ec:ba:9b:92:60:3d:ee:3a:b2:bf:
a5:3c:7b:0d:fa:66:b3:00:39:0d:d4:b9:bd:17:4e:
5f:32:aa:74:cd:88:30:7a:3e:cf:86:2b:c7:9f:1c:
20:99:32:0e:90:e3:7c:8f:f1:1a:47:15:57:02:32:
24:0c:86:bb:20:9d:b8:9a:e7:2b:c1:0e:38:53:a8:
13:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:D5:84:BE:EC:6B:D7:F5:BE:F0:8D:1B:A5:2A:B6:C8:C1:70:EA:1E
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/g9WEvuxr1_W-8I0bpSq2yMFw6h4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.172.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:b1:b2:6b:d0:9d:16:b8:90:af:f9:6d:dd:89:c7:a6:d6:f2:
d6:bf:c5:b2:88:f7:a1:0f:7c:13:d5:4a:9c:3a:3b:21:9b:21:
1a:45:5e:1b:ab:64:7a:b7:ec:d2:8e:87:90:b5:72:63:f5:c1:
ce:f4:5f:df:d5:83:85:86:c1:41:15:dc:09:a8:67:af:f9:82:
17:34:50:10:18:75:63:7f:8e:ea:ba:a0:e4:a0:16:64:75:ca:
e7:fc:9c:86:60:01:da:38:35:ad:31:cc:fc:be:88:30:9e:ae:
1a:a1:e8:6a:7e:e6:a8:3d:b4:cd:51:a0:5d:e4:65:10:47:54:
8b:96:bf:37:96:c8:1e:0b:a5:df:36:96:66:47:7e:42:c1:3f:
fa:0c:9b:e7:29:d8:e2:fa:3a:86:cc:7b:c0:3a:c5:d5:35:3f:
4d:28:33:66:cf:c3:19:38:ea:5d:8c:b7:24:95:64:ba:17:7f:
ac:c1:f8:d5:b9:75:7a:d3:bb:6c:92:0f:ce:78:cd:dc:3f:9b:
76:e1:cc:64:7f:da:7e:ee:76:8e:80:db:e9:06:42:73:96:aa:
c2:36:9e:e4:1c:6f:a0:18:b2:93:65:d0:00:a7:cf:29:b5:75:
c5:54:4a:ca:16:e8:13:10:b5:e5:d5:2a:0f:75:2d:a4:e2:a9:
75:b9:4c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org