Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/dh7XglyMggesPRM3zWvny6za8TQ.roa
File: dh7XglyMggesPRM3zWvny6za8TQ.roa (raw, json)
Hash identifier: nujS8kyM+uVrdFA04e+NctO0hqwXmOemFFyEhekP/HQ=
Subject key identifier: 76:1E:D7:82:5C:8C:82:07:AC:3D:13:37:CD:6B:E7:CB:AC:DA:F1:34
Certificate issuer: /CN=070483d3d62f19c0835746dcb721c8832c3b7926
Certificate serial: 03B11191
Authority key identifier: 07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/dh7XglyMggesPRM3zWvny6za8TQ.roa
Signing time: Mon 02 May 2022 09:30:46 +0000
ROA not before: Mon 02 May 2022 09:30:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 45.85.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61936017 (0x3b11191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=070483d3d62f19c0835746dcb721c8832c3b7926
Validity
Not Before: May 2 09:30:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=761ed7825c8c8207ac3d1337cd6be7cbacdaf134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:8e:5c:3f:f9:92:39:dc:22:82:28:be:6e:83:
28:c4:4d:b6:f5:67:c5:4f:f1:9f:e3:63:dd:1d:40:
33:ae:96:a7:09:87:0d:1d:cb:eb:bb:85:95:41:c1:
5c:4f:a5:4a:dc:63:56:0e:2f:8f:d0:14:ea:61:ca:
de:ad:96:2d:c4:5f:fb:3d:52:67:aa:ed:6b:0f:90:
6a:d2:89:7f:a6:d2:23:b0:79:6c:22:1b:57:e8:44:
14:61:20:dd:61:63:5f:66:b1:26:25:71:b9:07:e7:
d3:3e:77:81:2b:58:93:36:66:da:6e:73:70:07:fa:
c1:14:cb:14:81:5e:15:d8:51:f7:4d:3e:e8:eb:70:
80:63:1b:8d:1f:e7:e7:9c:af:52:9e:90:d2:7b:11:
c1:74:ae:60:91:71:78:fa:6b:39:12:a5:aa:61:11:
ee:0d:47:ac:7a:c4:d3:62:15:97:2d:be:fd:20:09:
7d:b0:a6:5f:08:63:df:28:32:db:b3:15:f8:56:49:
3f:e9:a9:20:31:82:f7:71:27:48:74:e8:8c:09:60:
64:ba:e4:69:eb:8c:19:f4:ac:f8:f0:88:23:58:e1:
59:ba:5e:25:a5:67:55:11:58:7b:45:67:99:ae:b9:
2f:9a:01:8e:04:22:51:ad:84:52:f2:23:fe:5e:7f:
d6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:1E:D7:82:5C:8C:82:07:AC:3D:13:37:CD:6B:E7:CB:AC:DA:F1:34
X509v3 Authority Key Identifier:
keyid:07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/dh7XglyMggesPRM3zWvny6za8TQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.204.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:9c:6a:93:0f:e3:80:06:a1:7e:b3:8c:0c:9e:6a:ae:ef:a9:
00:47:d0:ce:8d:47:38:0c:1c:f2:87:b0:c3:37:dc:74:44:66:
9c:8e:2c:7d:fc:e7:fb:41:6e:2b:56:2e:1e:d3:70:87:93:6c:
3c:e6:2e:d7:c9:cf:77:3c:b8:29:5a:4c:41:df:6c:16:ee:60:
d6:c8:e9:9b:a8:0f:ba:21:e1:45:e8:cc:55:35:8c:a4:b3:f4:
40:88:bf:74:52:31:8c:32:e7:d1:2b:4e:b6:af:e4:1c:a8:0a:
67:eb:c5:c7:0a:fd:45:e6:ee:7f:e3:0a:2e:ad:50:2f:61:ca:
f5:a9:6b:a9:24:3f:2c:1d:19:9e:02:14:b2:51:5e:79:1e:44:
63:6d:e9:98:b7:0e:c3:81:97:98:ef:1c:65:b1:1e:5f:90:d7:
14:7a:39:0d:94:c1:cf:ea:f9:87:70:cf:40:2b:75:41:84:df:
3f:8c:45:a8:64:3a:f5:5e:f2:61:51:54:dc:6f:19:32:b2:ba:
44:dd:f6:91:56:de:e5:df:19:97:76:7c:2d:b5:f0:44:43:be:
03:7a:6b:33:e9:d7:7a:12:85:03:58:cc:43:15:a9:47:89:3a:
7b:42:cc:55:40:90:32:c1:9a:46:d9:05:c7:8c:0e:9e:b8:f6:
bc:3d:2b:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:02 2024 by rpki-client on console-fra.rpki-client.org