Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/o8sGIX-HHOCUmKJ7NnH_7eytl6c.roa
File: o8sGIX-HHOCUmKJ7NnH_7eytl6c.roa (raw, json)
Hash identifier: 6jqI1Zg5wgKXLzD/lYqbpfwRw0QXzDG2JrGrLascEAY=
Subject key identifier: A3:CB:06:21:7F:87:1C:E0:94:98:A2:7B:36:71:FF:ED:EC:AD:97:A7
Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Certificate serial: 3964FD10
Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/o8sGIX-HHOCUmKJ7NnH_7eytl6c.roa
Signing time: Thu 23 Jun 2022 06:38:32 +0000
ROA not before: Thu 23 Jun 2022 06:38:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59869
IP address blocks: 45.84.132.0/22 maxlen: 22
81.22.176.0/20 maxlen: 20
178.22.224.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 962919696 (0x3964fd10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Validity
Not Before: Jun 23 06:38:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3cb06217f871ce09498a27b3671ffedecad97a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b2:27:24:ce:d7:74:0b:a1:b7:96:8d:eb:fa:
6d:c3:86:8b:c5:ca:76:e3:e4:10:2d:51:76:97:6d:
bd:bf:24:99:fd:96:c7:6f:d1:68:1a:2a:3a:cb:1a:
66:75:9a:f0:71:2e:62:54:6b:48:c6:3f:c9:49:47:
13:04:ff:0c:af:5a:7b:0f:3a:5d:1b:26:a3:ac:e1:
d9:11:de:8b:75:e5:08:48:50:3c:9c:bc:88:31:7e:
97:c5:bf:a7:e9:f6:fb:49:62:9d:40:36:a8:ca:96:
f8:a6:9f:95:e5:ea:6f:a3:56:48:96:8a:26:d2:7d:
6c:8e:f4:07:07:6d:da:85:47:b7:8b:4b:d5:a7:7d:
94:14:f9:5e:2e:ec:a7:a3:fa:dc:29:a6:cc:ac:16:
b5:ee:be:53:95:ad:dc:b8:cc:b0:b8:fe:74:3c:10:
41:1f:75:e3:b2:88:a5:1f:29:a5:a0:92:0c:ff:4f:
4a:43:60:46:76:fa:60:12:5f:62:89:f8:59:d7:3e:
e3:ab:ab:c5:e9:df:f0:53:e8:e7:b2:00:81:d4:b5:
33:70:cd:8c:d8:1d:8e:0b:42:bd:bd:0f:e7:f8:1e:
bc:24:cb:75:b6:17:1b:02:61:0a:9b:ec:7d:51:53:
89:a2:da:21:e6:d1:22:b4:26:07:9e:1c:55:31:48:
d7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:CB:06:21:7F:87:1C:E0:94:98:A2:7B:36:71:FF:ED:EC:AD:97:A7
X509v3 Authority Key Identifier:
keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/o8sGIX-HHOCUmKJ7NnH_7eytl6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.132.0/22
81.22.176.0/20
178.22.224.0/21
Signature Algorithm: sha256WithRSAEncryption
5a:34:4c:a6:83:ff:9a:06:51:8f:10:56:f0:13:47:65:4c:7f:
c5:13:c6:06:de:5c:78:5e:a0:54:20:01:07:24:3e:3b:05:f4:
41:c4:cc:23:1b:85:81:61:53:b1:c6:dd:15:e9:e8:17:46:51:
72:fa:b4:c9:07:88:56:8e:52:1d:65:1e:41:d3:3c:e0:82:21:
f1:1d:5e:67:73:c4:88:76:8c:32:6e:42:39:e5:15:b9:7e:ba:
24:53:37:21:3b:f2:35:2c:41:60:0c:c4:a8:64:21:0b:97:f4:
ad:cc:ef:07:60:e8:d3:1b:36:f2:3a:cf:96:8c:e9:a5:8f:cd:
d7:42:88:a9:76:9e:0f:ad:e0:08:e6:1c:52:1e:2a:0a:f9:0f:
76:37:ae:e2:dd:39:37:b4:3e:d1:18:0d:b4:41:dc:89:18:a4:
7b:47:49:24:a2:12:44:5c:c8:0b:d1:f9:bc:17:ab:85:9c:7d:
be:33:40:95:bf:5b:5c:62:a9:75:f6:d3:82:3a:ff:e4:d8:40:
80:2b:ef:9f:04:f5:f3:6d:b2:da:0e:ce:92:69:8c:d4:ae:d9:
06:ed:60:52:f0:56:e9:d0:a6:0c:5d:3c:55:bf:91:1e:81:ba:
16:3d:4e:8a:98:59:3d:3d:f0:a9:be:e9:5b:97:64:09:7c:64:
d9:2e:ee:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:41 2024 by rpki-client on console-fra.rpki-client.org