Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/SfH8LFRLGvw0FbHNUcZQWFMZeOY.roa
File: SfH8LFRLGvw0FbHNUcZQWFMZeOY.roa (raw, json)
Hash identifier: 8jGEUrva0IuZHi9MEZo/VLcnlnRrVHiFu9ACQQxDDU8=
Subject key identifier: 49:F1:FC:2C:54:4B:1A:FC:34:15:B1:CD:51:C6:50:58:53:19:78:E6
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 046E6D7E
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/SfH8LFRLGvw0FbHNUcZQWFMZeOY.roa
Signing time: Wed 01 Jun 2022 12:35:21 +0000
ROA not before: Wed 01 Jun 2022 12:35:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8796
IP address blocks: 193.227.121.0/24 maxlen: 24
45.153.8.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74345854 (0x46e6d7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jun 1 12:35:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49f1fc2c544b1afc3415b1cd51c65058531978e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:48:36:e4:1e:50:38:80:c7:1e:2c:f1:94:6c:
b8:53:e4:80:2b:26:3f:e1:68:a4:b4:ac:e2:25:28:
26:cd:f8:79:c6:8f:d5:9d:9a:40:14:c1:b0:68:fe:
7e:ce:47:2c:06:98:e9:74:74:1c:84:c7:a9:04:77:
03:02:40:1e:c9:ed:ae:d5:90:5e:84:4b:68:3c:9d:
68:41:77:f9:81:21:1b:b9:c1:c3:09:88:c5:59:e1:
70:a8:45:c9:a4:49:eb:6f:a9:e1:66:a5:e8:ad:89:
ff:35:7b:16:0d:09:23:9a:f3:a8:52:6a:87:66:e0:
7f:8f:77:3b:78:45:f7:e0:93:d3:1f:c9:05:48:7e:
aa:72:88:55:22:bf:de:3a:19:b2:85:eb:0b:0b:ed:
3a:8d:ce:47:d6:d4:3e:f2:94:2e:ef:e5:45:18:b3:
9c:29:2d:78:07:3d:3c:e2:4b:bd:65:ff:50:07:04:
7a:1c:9e:74:f8:cb:b9:83:e8:84:75:af:63:8a:4d:
36:db:a8:c4:e4:6f:9f:77:8b:45:e7:24:ea:4c:e6:
c8:36:52:d2:5a:db:c9:55:77:77:cc:4f:ef:cf:e4:
ff:b4:ac:19:e2:04:ef:84:b7:1f:98:0f:50:84:2d:
90:da:84:4c:21:a6:ac:a1:c4:a4:95:d2:51:70:ea:
f3:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F1:FC:2C:54:4B:1A:FC:34:15:B1:CD:51:C6:50:58:53:19:78:E6
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/SfH8LFRLGvw0FbHNUcZQWFMZeOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.8.0/23
193.227.121.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:ee:ab:8f:8c:41:12:78:dd:75:ef:20:a7:49:64:9d:9e:38:
72:b4:d7:9c:0a:1d:bf:3f:20:70:8d:97:43:53:2b:82:0f:28:
ce:76:d2:fb:04:1e:5a:09:e5:23:fb:1d:1c:ce:83:a0:16:27:
6f:bb:1c:d8:23:bd:99:ac:7f:44:92:8d:bc:61:d1:52:22:55:
61:f0:26:dc:31:e7:e5:bb:3e:c6:5a:6f:07:dd:0f:a3:00:cd:
e0:d5:29:18:3e:3a:2a:00:35:ae:da:6a:16:f6:db:07:6a:a9:
26:94:80:96:cb:36:e1:80:8f:71:da:93:97:45:89:c8:02:23:
13:15:cf:b3:86:13:5a:b2:72:ee:f5:aa:fc:81:06:a2:e5:c5:
34:d3:65:3e:98:ad:1f:97:14:83:cb:a4:09:b5:1e:32:29:82:
c9:06:81:4a:55:2f:6a:6d:d0:6e:5c:8b:6f:88:66:71:72:1f:
a9:f7:2e:d4:29:52:30:48:c0:bc:38:58:bb:54:6e:06:5c:86:
5f:1d:8a:8f:07:60:e1:d4:58:67:e9:27:79:a0:01:f8:2b:42:
1a:c9:7a:c7:61:bf:a5:90:75:0d:f1:7a:49:52:b1:9f:07:a2:
97:a2:0c:78:df:87:a1:75:64:a5:d3:5b:22:be:be:6b:c0:9b:
1a:14:b7:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:11 2024 by rpki-client on console-ams.rpki-client.org