Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/T2SeNF3o5-a_uGGRGlaDw8qAUKo.roa
File: T2SeNF3o5-a_uGGRGlaDw8qAUKo.roa (raw, json)
Hash identifier: abU8EuIYgo8PLQ840psJjw1eqpVh3GJ6ukFNVlZN7DE=
Subject key identifier: 4F:64:9E:34:5D:E8:E7:E6:BF:B8:61:91:1A:56:83:C3:CA:80:50:AA
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 01847FD128A73D9E7E65AEF49D192618C794
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/T2SeNF3o5-a_uGGRGlaDw8qAUKo.roa
Signing time: Wed 16 Nov 2022 09:42:04 +0000
ROA not before: Wed 16 Nov 2022 09:42:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.140.144.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7f:d1:28:a7:3d:9e:7e:65:ae:f4:9d:19:26:18:c7:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Nov 16 09:42:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f649e345de8e7e6bfb861911a5683c3ca8050aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ad:69:ba:b8:40:86:3e:33:e6:a5:bb:84:89:
f4:cb:31:35:6a:03:98:36:93:fc:a2:58:7f:d7:e3:
95:f8:c0:68:66:48:a1:95:dd:3a:7c:65:1b:eb:89:
2c:9c:72:25:e6:be:6d:ce:89:10:19:66:5a:65:70:
ea:cd:be:71:64:71:2a:9d:b2:7b:a8:21:45:74:7f:
9e:ff:b0:b0:10:ac:93:52:cd:67:65:b8:03:2d:40:
c4:4e:c7:6e:04:ce:cf:a7:b4:83:3d:d4:37:fd:86:
a5:d6:2f:e5:5d:1d:b3:1c:b0:b2:e0:a0:45:92:a9:
f5:12:d1:61:88:ba:8a:65:2c:a7:cc:6f:20:48:9d:
7f:87:35:fb:8a:06:b9:19:24:73:2d:73:40:e5:76:
be:5c:88:cb:2e:b3:f2:8f:76:c5:91:34:5c:08:a8:
0b:ba:2e:7a:3e:15:30:c4:7d:69:92:01:13:ac:32:
c7:ff:79:bf:35:55:f1:0a:03:19:89:f2:b2:94:77:
80:55:e4:c7:4b:5c:f6:9e:5e:7c:31:69:83:eb:ee:
b7:3d:52:eb:6b:e0:6b:c4:d7:c4:da:2e:31:a3:7e:
de:0e:e9:ee:79:b1:1f:4a:d0:77:dd:a1:ad:f2:83:
7c:d9:56:1d:9e:75:5a:6a:1a:94:f7:0d:ca:85:22:
46:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:64:9E:34:5D:E8:E7:E6:BF:B8:61:91:1A:56:83:C3:CA:80:50:AA
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/T2SeNF3o5-a_uGGRGlaDw8qAUKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.144.0/24
Signature Algorithm: sha256WithRSAEncryption
50:f0:0f:07:ff:8c:78:94:91:21:90:d1:34:5d:f3:dd:b2:e2:
0d:2b:3a:f8:de:ba:6a:da:98:6a:29:81:13:56:74:f4:c5:bf:
ef:bf:6e:59:de:c5:37:27:b6:a1:c2:90:60:87:62:5d:41:1f:
59:a4:af:2c:88:22:e9:f2:62:e2:15:33:7e:01:cb:2f:28:2f:
5d:30:17:7d:14:94:da:3a:e9:e0:4a:c6:ed:a9:c5:1e:1d:a6:
ac:4e:c8:9f:39:6b:ba:8c:c0:95:7c:ae:61:a3:58:1f:3c:8f:
0a:d3:d2:ba:82:54:9a:32:03:52:eb:11:a2:56:3b:99:bb:9b:
a5:62:34:37:a9:3c:23:d5:c4:b8:58:7e:f1:f1:dc:88:bb:61:
73:a2:bf:97:7b:23:0d:9b:c0:5c:b4:66:fd:78:09:09:b7:4b:
dc:4a:63:41:a2:d9:a9:37:af:b1:16:da:c4:a7:b3:b8:98:d8:
fc:d5:89:cc:82:77:35:da:bc:29:2e:b3:34:03:d8:e9:16:78:
5d:f4:f1:bb:3c:55:9b:60:73:27:e5:66:7a:fe:6e:88:04:27:
26:bf:a0:5f:97:aa:93:ef:5d:69:bf:52:81:7c:ad:69:d1:50:
4e:3b:03:c1:b5:f5:6d:3c:e1:d7:1f:fc:30:bd:6b:2e:8a:72:
b6:99:6d:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:38 2024 by rpki-client on console-fra.rpki-client.org