Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/zUcSodiScmggTs0CEkIm8vnmaic.roa
File: zUcSodiScmggTs0CEkIm8vnmaic.roa (raw, json)
Hash identifier: OZ9DiTixrhGCKDXpvHazGvn7YZt+r3qV7ap/t2jxk28=
Subject key identifier: CD:47:12:A1:D8:92:72:68:20:4E:CD:02:12:42:26:F2:F9:E6:6A:27
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 0371BE1F
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/zUcSodiScmggTs0CEkIm8vnmaic.roa
Signing time: Wed 09 Feb 2022 16:12:30 +0000
ROA not before: Wed 09 Feb 2022 16:12:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 45.153.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57785887 (0x371be1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Feb 9 16:12:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd4712a1d8927268204ecd02124226f2f9e66a27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5a:22:2a:79:53:12:62:4f:9e:28:4e:07:f6:
9f:c7:85:9f:1b:54:70:91:47:58:e5:16:e2:aa:89:
ac:e7:d9:a4:86:48:da:84:b4:38:95:c3:99:ef:4a:
ce:d0:e5:ff:14:1e:ff:f1:cb:f8:70:d2:0a:25:3e:
81:e3:95:63:60:f1:0a:c3:ff:52:c0:ac:bc:76:d5:
42:97:ef:5e:e4:fb:73:ca:c6:de:85:8d:19:20:d4:
e7:3e:38:84:b6:f7:c1:65:fc:77:49:82:f0:87:a5:
84:60:76:af:27:51:db:69:16:c1:ef:b5:b8:aa:fa:
a9:b3:6d:81:11:51:3d:22:7d:c1:c2:d8:6d:7f:cc:
41:c2:9a:24:b7:54:05:11:5f:a6:66:94:08:28:d0:
ea:c0:9d:53:67:72:a7:bf:8b:a7:dd:6b:44:c5:cb:
b1:d9:70:ce:b7:40:36:9b:4c:39:2f:1f:bc:52:16:
01:48:86:a4:fe:9d:dc:8a:9a:06:f5:d8:d2:c8:9b:
c1:22:9e:c4:6a:4e:9e:16:45:61:c1:24:92:cd:49:
94:0f:fd:61:06:74:ce:65:6a:84:6a:f9:dc:cb:79:
a7:ad:43:11:29:29:01:0b:d2:b9:cc:db:73:c4:2a:
c8:65:4a:19:32:36:74:5a:ad:38:b8:0d:95:47:79:
f1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:47:12:A1:D8:92:72:68:20:4E:CD:02:12:42:26:F2:F9:E6:6A:27
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/zUcSodiScmggTs0CEkIm8vnmaic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.124.0/24
Signature Algorithm: sha256WithRSAEncryption
51:a6:6d:f2:6c:37:d1:4b:72:b4:ec:c0:66:7e:0c:96:c0:6e:
9b:35:0b:1a:d4:e8:d2:fa:a2:7d:27:36:19:1f:3f:5d:4b:b0:
4c:75:b5:a4:95:dc:6e:8e:0b:2b:b0:bf:af:85:f0:22:27:2d:
a7:89:24:71:ed:41:1c:4f:4b:7b:9a:aa:8b:32:65:55:2b:77:
8e:ce:38:12:13:ea:b5:04:4e:6c:5b:85:ab:50:dd:79:d2:98:
7c:cd:9b:68:d5:aa:14:68:fa:d5:64:09:fc:a8:be:ba:98:b1:
c9:6b:84:35:a0:96:20:33:9e:0f:f1:fb:72:7e:ba:d1:de:f4:
78:54:05:eb:bd:f8:2b:21:3c:bd:a8:04:66:6b:35:9a:8c:28:
e7:8e:b2:0b:7c:fb:23:2e:bd:28:6b:94:2a:ff:8e:e4:e5:7b:
60:23:36:46:64:e2:a2:db:06:b3:e2:13:35:31:c2:3f:a7:ad:
02:38:4b:25:db:4d:fc:51:a2:fb:04:26:d1:e0:29:33:68:cd:
08:09:58:be:5d:7c:7f:10:86:00:44:3b:d3:05:17:7d:61:d1:
99:0e:0a:c0:83:26:19:e3:0f:ba:7b:4e:58:4f:68:d3:00:b0:
7e:9a:5f:7d:4c:31:f6:22:76:e7:92:41:cd:14:81:c9:70:9c:
bf:15:b9:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org