Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/959e03-78fc-4589-acde-f9a43709d00b/1/Ih4oQP5Xv1bilO12sZV-x1ffD8Q.roa
File: Ih4oQP5Xv1bilO12sZV-x1ffD8Q.roa (raw, json)
Hash identifier: SJRngR8TSqLSWe33vFO2zt/WA++VwL3B3tiIiBZYduk=
Subject key identifier: 22:1E:28:40:FE:57:BF:56:E2:94:ED:76:B1:95:7E:C7:57:DF:0F:C4
Certificate issuer: /CN=c6cfa94f6134e3960ea5f318846a30cf3e922dd7
Certificate serial: 07D4D080
Authority key identifier: C6:CF:A9:4F:61:34:E3:96:0E:A5:F3:18:84:6A:30:CF:3E:92:2D:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xs-pT2E045YOpfMYhGowzz6SLdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/959e03-78fc-4589-acde-f9a43709d00b/1/Ih4oQP5Xv1bilO12sZV-x1ffD8Q.roa
Signing time: Sat 01 Jan 2022 09:58:09 +0000
ROA not before: Sat 01 Jan 2022 09:58:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58154
IP address blocks: 45.131.220.0/22 maxlen: 24
2a0e:6340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131387520 (0x7d4d080)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6cfa94f6134e3960ea5f318846a30cf3e922dd7
Validity
Not Before: Jan 1 09:58:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=221e2840fe57bf56e294ed76b1957ec757df0fc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c6:fd:ce:52:25:29:40:a9:04:d1:b5:c9:fc:
cf:f9:ab:94:fb:93:68:fe:51:38:f6:5a:d8:5b:a4:
70:ce:77:4b:2d:8a:bc:69:f2:f8:8d:bb:ce:a9:da:
e1:7f:c6:f1:ec:0d:ec:04:fb:19:17:3c:75:32:29:
ab:5a:3c:28:7e:89:ca:b2:00:0b:01:30:61:a0:45:
b4:27:f0:cd:62:94:3c:e0:03:b2:08:d0:76:ba:87:
50:ff:b1:6d:90:85:60:29:ea:c8:cb:5a:9d:fd:c9:
a1:e2:b0:0d:32:91:24:2f:bb:dd:ec:78:96:8d:a9:
a5:7b:e0:d9:1b:ad:28:e1:7d:82:e3:97:86:d3:72:
7d:a5:5b:a2:c4:ce:39:35:8a:6c:6d:7a:ad:2d:39:
ca:e3:f2:08:9f:6b:ec:96:6f:4f:3d:71:ff:be:f3:
04:31:c0:72:32:52:ed:82:d0:d2:85:96:5a:c2:25:
fd:81:ec:36:7d:a5:34:bd:d9:a6:8b:ab:80:ca:3a:
0a:75:a2:56:7d:35:a1:a9:7d:0a:d9:99:4d:2a:81:
57:f8:08:19:f4:ae:b3:6a:d3:2b:38:27:27:23:8d:
e0:be:62:9c:0c:a8:cd:9a:dc:89:ab:bc:73:fc:b7:
ed:64:71:9b:99:67:d3:43:4a:0b:e6:69:bd:ae:46:
dd:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:1E:28:40:FE:57:BF:56:E2:94:ED:76:B1:95:7E:C7:57:DF:0F:C4
X509v3 Authority Key Identifier:
keyid:C6:CF:A9:4F:61:34:E3:96:0E:A5:F3:18:84:6A:30:CF:3E:92:2D:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xs-pT2E045YOpfMYhGowzz6SLdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/959e03-78fc-4589-acde-f9a43709d00b/1/Ih4oQP5Xv1bilO12sZV-x1ffD8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/959e03-78fc-4589-acde-f9a43709d00b/1/xs-pT2E045YOpfMYhGowzz6SLdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.220.0/22
IPv6:
2a0e:6340::/29
Signature Algorithm: sha256WithRSAEncryption
6d:e5:16:0f:8b:39:a4:9b:c2:88:db:60:45:b6:46:02:1d:cc:
85:e9:0c:d5:16:e5:83:0c:16:51:c2:77:61:bf:80:2c:21:5f:
3a:eb:a2:a1:8d:2c:c1:ff:24:60:4c:a9:37:81:83:e1:42:8c:
87:ef:32:57:f3:bb:c8:14:26:5c:98:db:c2:ff:a1:e9:8e:ea:
7f:69:c2:11:b0:c4:6a:5a:20:8c:7e:d3:6a:8a:4a:91:8f:4d:
42:b4:3c:36:07:70:22:0a:b8:54:3a:d3:db:be:5e:98:5f:91:
5b:ec:46:dd:f2:fa:5a:0d:1c:36:21:da:a1:d8:6e:10:79:63:
38:03:67:1c:7c:4e:fc:7e:5d:a0:21:b4:19:fe:bb:5d:a6:3b:
64:5f:41:82:2c:3f:19:7b:8c:c6:a7:2a:fb:47:af:fc:f8:f3:
9b:25:08:c4:cc:bc:f3:01:b8:0a:c2:f0:52:cd:ae:b1:b4:05:
cd:19:51:5e:5a:98:9a:01:fe:9d:b2:06:5f:0b:99:d4:ed:65:
3c:64:ba:1a:b5:43:da:bd:76:02:b7:96:f9:1c:1b:79:56:ec:
4b:57:05:1e:82:c2:d0:0e:49:f4:f9:ad:22:7d:71:93:26:f0:
2f:70:87:c1:01:41:0b:0f:d5:d1:f9:1f:ce:a9:73:82:f9:d4:
81:35:66:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:53 2024 by rpki-client on console-fra.rpki-client.org