Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/xx-7Xh5jw8F4lis-NmfelW66VbQ.roa
File: xx-7Xh5jw8F4lis-NmfelW66VbQ.roa (raw, json)
Hash identifier: +oUJ3XxgkBVV202Tf/h1mjrgTqk5t78jXljlxyqumok=
Subject key identifier: C7:1F:BB:5E:1E:63:C3:C1:78:96:2B:3E:36:67:DE:95:6E:BA:55:B4
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 084A092D
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/xx-7Xh5jw8F4lis-NmfelW66VbQ.roa
Signing time: Thu 21 Apr 2022 11:17:02 +0000
ROA not before: Thu 21 Apr 2022 11:17:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 45.9.30.0/24 maxlen: 24
45.132.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139069741 (0x84a092d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Apr 21 11:17:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c71fbb5e1e63c3c178962b3e3667de956eba55b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b9:69:88:e2:47:82:7c:e7:3e:a9:d4:f0:2d:
e8:9e:3a:42:42:0b:ae:3c:58:d9:19:fa:44:7a:44:
4f:c7:74:64:29:e9:c8:50:a5:7b:a4:50:f5:70:ab:
54:84:a0:1c:16:f9:d7:e5:2a:7c:37:b0:71:fb:e9:
5c:7e:e0:69:a1:74:a9:02:df:a6:29:67:db:ca:f5:
6c:53:eb:0a:78:7e:1d:38:fb:e2:65:ef:b3:dc:5c:
92:48:3f:c0:6a:28:10:89:26:c3:c3:4e:d3:36:7b:
34:53:f3:f9:18:5d:7d:87:37:e6:0f:1e:7c:e1:bf:
b4:15:9b:72:b1:52:7e:81:05:fb:78:ed:45:40:74:
a9:a9:38:a9:68:71:7e:a8:69:c2:f5:19:aa:93:0e:
45:1f:49:e9:3f:4c:ea:cf:28:17:70:e1:14:cf:bc:
19:ec:9f:f1:fb:04:70:ab:7f:34:ef:dd:cf:0a:59:
29:5e:19:c5:7b:59:f9:67:12:37:e7:e1:9c:1f:00:
44:29:81:56:4e:b0:a7:db:e4:82:e5:21:06:e6:39:
88:8e:ae:10:02:ac:6a:ea:ca:49:6e:16:a3:2e:d0:
e1:13:fa:08:f5:f4:7d:30:ff:fb:ed:fe:16:0b:8a:
3a:6b:11:df:e3:5a:85:2d:4f:a4:5a:85:c1:2b:c1:
d4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:1F:BB:5E:1E:63:C3:C1:78:96:2B:3E:36:67:DE:95:6E:BA:55:B4
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/xx-7Xh5jw8F4lis-NmfelW66VbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.30.0/24
45.132.180.0/24
Signature Algorithm: sha256WithRSAEncryption
07:18:7b:d0:0e:22:b0:be:2e:5a:b7:bd:b0:75:10:ec:6d:42:
d2:61:41:97:85:1e:4c:58:9a:59:4a:61:7d:71:25:64:d6:1d:
aa:fb:45:be:8c:4e:f8:bc:19:6f:5d:5d:37:b7:bc:7b:15:32:
e9:23:0d:32:5a:6a:65:59:4b:e4:94:ec:d6:a6:18:46:0b:75:
8a:7a:a1:41:38:ae:6f:ad:8a:7c:34:eb:73:89:d5:e1:57:60:
fa:e8:c7:38:a7:e6:af:21:ae:66:ef:79:0e:04:6e:67:86:ff:
8f:c8:8b:34:73:d2:17:b5:f9:fd:64:d6:98:7a:3c:92:8b:d4:
ae:96:df:57:70:43:3d:86:39:16:83:45:1e:48:14:bd:cc:86:
f5:6b:22:67:fc:5f:c8:8d:2a:a9:33:2b:e0:88:0f:0f:4c:b6:
3d:82:81:a8:14:a6:69:78:80:e7:a2:af:10:f5:0f:b9:7e:53:
26:b3:71:74:88:f2:7d:90:74:4a:cd:71:e0:03:5d:dc:a3:36:
28:23:a2:88:98:dc:85:e8:b7:b4:28:4c:e7:c0:d0:7a:c5:95:
e0:8a:9a:46:ac:b5:89:38:2c:d3:65:a4:7e:78:fd:45:4f:a1:
1c:1d:61:dc:a1:3b:a0:7b:9e:53:b7:5c:ef:91:7c:cd:c9:d6:
e7:29:1a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org