Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/4f2igsFSPkCUNmVPZyevLlhSkAU.roa
File: 4f2igsFSPkCUNmVPZyevLlhSkAU.roa (raw, json)
Hash identifier: Aen0BtjY9j3VZKBCi+Q0scVl5DFw8Gcve9UO00kdwyQ=
Subject key identifier: E1:FD:A2:82:C1:52:3E:40:94:36:65:4F:67:27:AF:2E:58:52:90:05
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 03A2319E
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/4f2igsFSPkCUNmVPZyevLlhSkAU.roa
Signing time: Mon 07 Feb 2022 13:47:45 +0000
ROA not before: Mon 07 Feb 2022 13:47:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.140.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60961182 (0x3a2319e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Feb 7 13:47:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1fda282c1523e409436654f6727af2e58529005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:87:09:34:90:82:80:49:0d:6a:94:df:87:58:
8c:e3:e5:50:e6:c8:f5:90:0b:7c:cb:f8:6c:11:54:
62:77:a7:60:76:a5:34:c6:06:7d:11:ba:47:af:78:
2a:bb:fe:6e:e2:72:27:05:ff:24:e1:c7:cc:a7:f0:
a0:0a:0e:2f:f8:d3:6d:81:73:d6:2b:e5:8f:1e:59:
6c:d8:29:09:5b:b1:83:9a:51:5f:57:90:64:06:ca:
5a:ec:cd:be:d0:f1:0d:81:58:10:8c:36:31:2c:b3:
01:a6:0c:13:dd:2e:a5:e3:38:be:89:61:e9:e9:df:
91:d8:df:27:27:43:68:28:84:3b:11:0d:5f:e2:dc:
e3:03:c2:c1:ee:e3:0e:34:33:77:e5:f7:a5:54:e8:
4b:35:40:88:e6:0a:8b:5d:a4:69:93:b5:ae:fe:a5:
1c:e6:0e:9e:55:22:c7:89:d4:9f:24:d6:de:60:28:
c2:81:58:23:b0:78:43:3b:76:0c:cd:27:06:d5:3d:
0a:40:66:8e:76:95:62:9d:ff:25:b4:29:c5:03:9e:
06:07:e4:de:75:dc:57:ac:bb:fb:0c:22:c4:9a:f9:
21:0e:7f:36:d5:c1:47:e7:d6:39:9d:35:c7:ab:68:
5c:29:68:89:87:93:db:76:a1:09:6b:10:98:ba:0a:
40:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:FD:A2:82:C1:52:3E:40:94:36:65:4F:67:27:AF:2E:58:52:90:05
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/4f2igsFSPkCUNmVPZyevLlhSkAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.167.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:07:4b:5b:c7:18:8d:a4:fa:8d:af:e2:3c:4c:aa:a2:b8:19:
ef:de:9d:1e:0b:56:8b:d2:b5:8c:af:76:1e:8b:2d:d6:19:7d:
f6:ca:d1:2a:7b:5f:c3:d4:bc:0b:2e:53:5c:9b:b2:64:66:7c:
f9:09:1e:b6:83:45:a1:0f:ef:65:3e:fe:f4:bc:df:65:e8:0b:
ae:9d:78:23:5b:9a:fe:23:10:98:7d:d1:3f:c3:ce:de:e8:a5:
99:7d:27:5c:66:7c:3d:1e:0c:17:c0:5a:b0:c5:de:c9:09:27:
b3:a7:54:41:45:8e:45:e0:75:dc:2e:ba:7e:bc:62:c2:3c:3a:
a8:76:4d:1c:06:9d:16:0b:72:6e:db:34:be:06:a9:91:23:9c:
a6:c7:ab:fe:c3:d9:ed:9a:6d:f3:be:0c:99:77:ba:4b:1e:6a:
6d:5e:4e:8d:cd:e3:4c:14:c4:c4:98:0a:70:6b:fa:54:69:09:
d1:ba:d3:ef:ad:62:1e:9d:68:b8:32:4d:28:5d:27:69:f7:46:
94:30:ab:7b:75:c1:33:b2:35:15:ab:3b:22:f6:bc:48:da:70:
e7:91:90:74:b1:bd:05:ab:9b:f0:00:a6:3e:7e:ad:ef:eb:77:
4c:57:50:f7:d9:a8:90:32:dc:66:5b:ef:c1:6c:88:c0:b1:61:
c9:26:dc:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:38 2024 by rpki-client on console-fra.rpki-client.org