Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3ae1de-bd5c-4a17-9fa8-0a9a1f1c989c/1/j6xtavHFIwwZPIwAg6VXfGhka9U.roa
File: j6xtavHFIwwZPIwAg6VXfGhka9U.roa (raw, json)
Hash identifier: /JuICdFeypEgbQjlx9XhmHOg+RQLTq5JlC0SXRgaJKQ=
Subject key identifier: 8F:AC:6D:6A:F1:C5:23:0C:19:3C:8C:00:83:A5:57:7C:68:64:6B:D5
Certificate issuer: /CN=f6057e74aad21abcf13374f5915b1a7e827d4ea1
Certificate serial: 03A284CA
Authority key identifier: F6:05:7E:74:AA:D2:1A:BC:F1:33:74:F5:91:5B:1A:7E:82:7D:4E:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9gV-dKrSGrzxM3T1kVsafoJ9TqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3ae1de-bd5c-4a17-9fa8-0a9a1f1c989c/1/j6xtavHFIwwZPIwAg6VXfGhka9U.roa
Signing time: Sat 01 Jan 2022 07:54:07 +0000
ROA not before: Sat 01 Jan 2022 07:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212530
IP address blocks: 45.13.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60982474 (0x3a284ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6057e74aad21abcf13374f5915b1a7e827d4ea1
Validity
Not Before: Jan 1 07:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fac6d6af1c5230c193c8c0083a5577c68646bd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:51:3a:89:80:73:5a:36:b4:81:53:bf:4f:39:
fb:f4:3c:b4:ef:84:58:56:0f:9b:78:4d:f3:70:00:
5e:cf:5a:ab:54:ea:52:fd:55:1f:ce:6e:29:30:b6:
97:f1:2a:3d:a5:bd:ae:47:cd:79:c2:13:39:62:3a:
a2:cd:43:03:70:b1:6c:a2:d3:fe:47:4c:b7:94:ca:
49:4c:40:c8:32:3b:14:be:d6:dc:84:d5:0a:93:fc:
9d:b2:d2:1c:df:ca:28:d6:4f:50:3c:00:72:37:ef:
12:14:50:3d:5e:f1:c3:57:7b:92:63:c0:f7:53:7c:
00:90:7f:f9:81:a5:b5:79:19:b7:c8:12:ad:c2:0e:
5b:e8:22:7b:6d:ab:76:f4:b7:6e:f6:12:4b:f9:0f:
f7:a5:de:f6:db:77:8d:a9:28:1c:3c:46:be:ab:84:
d6:1b:4e:db:59:50:cb:ea:98:56:6d:af:cc:63:b1:
97:cb:08:44:2d:92:b6:40:cc:fb:7c:36:7d:71:c3:
46:0e:41:2f:4c:53:e7:54:88:f9:db:64:24:3e:ee:
63:5c:d3:37:69:62:19:06:89:85:7c:43:44:70:05:
d2:f7:51:31:8b:0a:da:54:f3:7d:a0:52:1e:04:cb:
7a:83:5e:e8:6b:79:95:8d:18:df:ae:fd:57:98:cb:
a7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:AC:6D:6A:F1:C5:23:0C:19:3C:8C:00:83:A5:57:7C:68:64:6B:D5
X509v3 Authority Key Identifier:
keyid:F6:05:7E:74:AA:D2:1A:BC:F1:33:74:F5:91:5B:1A:7E:82:7D:4E:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9gV-dKrSGrzxM3T1kVsafoJ9TqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3ae1de-bd5c-4a17-9fa8-0a9a1f1c989c/1/j6xtavHFIwwZPIwAg6VXfGhka9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3ae1de-bd5c-4a17-9fa8-0a9a1f1c989c/1/9gV-dKrSGrzxM3T1kVsafoJ9TqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.112.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:1d:0f:57:f4:6a:17:bc:38:11:5e:57:13:36:5e:79:24:33:
ab:4b:eb:d1:21:8f:22:06:72:ef:77:52:ba:e4:1c:f9:86:c4:
9a:a8:da:95:b9:51:a1:e6:ca:91:32:c0:6c:2e:73:5c:5f:ab:
15:03:54:03:4c:c4:44:97:64:55:25:1a:dc:ea:76:c6:da:4c:
30:25:57:00:ce:12:36:b5:9f:56:07:70:35:f8:43:0d:b0:e6:
4b:83:3c:b8:3f:9e:f8:b7:72:ed:5f:bd:85:24:77:2a:3a:9b:
bf:15:a2:91:cc:36:5e:c8:6f:c7:7d:81:b3:12:c5:a7:fa:dc:
d2:80:c6:d9:52:0c:0c:99:2f:f1:54:d9:0c:57:8e:ce:2b:96:
5e:fc:e4:3a:18:f5:19:22:b0:0b:d0:6d:be:11:b5:cc:57:87:
dc:8b:2c:20:ea:14:22:57:80:6d:f7:92:5a:83:af:bb:e2:61:
22:7a:80:50:d3:16:b4:1a:fc:eb:56:49:94:d5:2e:76:e2:ad:
16:c2:42:1c:79:63:76:35:0f:86:b2:53:c9:d3:67:e0:49:03:
8d:6c:fb:da:15:ce:d1:fe:83:cc:20:29:ea:52:72:68:d4:35:
c5:ad:31:45:e0:9a:0d:3f:51:0f:1f:f9:c9:c4:4b:f7:29:e7:
9b:30:86:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:57 2024 by rpki-client on console-ams.rpki-client.org