Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/DDHfxBhI1FQ0wWw9hFCkBBw7HVI.roa
File: DDHfxBhI1FQ0wWw9hFCkBBw7HVI.roa (raw, json)
Hash identifier: wdwUCGi61mnlwhKGrjSisCzqWok6sNGcdEkmwHZKbZs=
Subject key identifier: 0C:31:DF:C4:18:48:D4:54:34:C1:6C:3D:84:50:A4:04:1C:3B:1D:52
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01FD7ED5
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/DDHfxBhI1FQ0wWw9hFCkBBw7HVI.roa
Signing time: Fri 04 Mar 2022 10:52:07 +0000
ROA not before: Fri 04 Mar 2022 10:52:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208029
IP address blocks: 45.13.117.0/24 maxlen: 24
2a0c:b641:470::/44 maxlen: 48
2a0c:b642:5000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33390293 (0x1fd7ed5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Mar 4 10:52:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c31dfc41848d45434c16c3d8450a4041c3b1d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f4:c8:24:5b:3c:06:ce:7c:68:f7:4b:67:7b:
5b:c7:03:5a:b0:cb:f9:0c:86:dc:19:c4:5f:6c:d7:
7d:5f:d5:00:cf:67:0b:41:1e:ad:0b:b4:95:aa:b5:
70:23:e9:50:81:37:3c:7b:18:64:9f:9e:d0:6f:15:
44:f3:62:64:ec:aa:88:2d:0f:cc:91:87:af:b9:a4:
89:7d:52:5e:4e:72:dd:20:f5:73:6c:60:9e:53:53:
65:1c:37:50:25:f6:41:72:10:78:0b:c5:76:f0:c4:
fd:19:d8:dd:d9:da:f5:15:89:77:cd:9d:36:a0:84:
39:9a:b1:d9:a0:a2:b4:91:33:72:8a:30:1a:b9:47:
86:fb:5a:70:14:2c:f3:f0:c7:11:4e:03:59:37:49:
53:7c:e6:dd:c0:35:eb:75:40:44:60:b1:07:05:e5:
fd:8a:d5:9a:54:af:dd:b5:eb:e2:15:56:ef:14:9f:
35:56:a2:d5:be:56:7f:cd:a7:4b:76:a1:4a:ef:d7:
28:34:11:e7:f1:fc:d3:b0:1d:c6:b9:f7:71:ce:9a:
8e:68:fe:da:ed:f5:a3:1c:51:76:c6:f6:7b:3f:34:
53:d6:5f:20:02:1a:5a:0f:81:27:46:73:47:51:d8:
f1:50:1e:14:a4:a6:78:7a:37:57:4b:4e:36:05:33:
e3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:31:DF:C4:18:48:D4:54:34:C1:6C:3D:84:50:A4:04:1C:3B:1D:52
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/DDHfxBhI1FQ0wWw9hFCkBBw7HVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.117.0/24
IPv6:
2a0c:b641:470::/44
2a0c:b642:5000::/36
Signature Algorithm: sha256WithRSAEncryption
63:66:a4:3f:79:ad:54:1d:80:95:16:80:8a:6b:ed:7f:8c:96:
25:c4:45:36:5b:a4:24:18:73:90:e1:c3:ec:1f:6e:59:76:83:
b8:b1:ed:7e:e2:0e:6c:3a:39:26:79:de:aa:b4:03:15:50:47:
ea:6b:d5:19:d0:78:60:44:13:29:37:65:e1:30:6b:a6:42:ac:
b4:1a:6b:22:e1:79:19:3e:8b:5f:58:e6:6a:64:85:e6:bd:c0:
db:d3:72:28:90:62:0b:bc:db:a2:0a:8f:36:d4:48:69:f0:19:
67:86:c2:51:af:be:cd:53:6f:e1:8e:0c:cc:42:12:99:a4:e0:
3a:cf:a0:1b:35:7a:c0:9c:1e:14:34:1a:ac:66:93:96:5b:39:
b9:41:e0:07:1d:bb:e0:2c:84:bb:68:6d:2c:22:6f:c2:fc:14:
d5:9f:73:43:8e:0c:43:77:7f:a7:e4:40:c8:28:8d:e8:fb:50:
f7:66:99:a7:26:47:fc:9b:bd:6a:bb:83:2b:5f:62:4a:7f:7f:
02:28:ed:c6:0a:93:0b:89:ca:0a:66:6f:38:c0:05:55:53:3f:
18:92:21:07:e0:ae:69:52:4a:52:3e:10:59:c4:b1:db:01:0e:
6e:4c:73:66:73:8f:2d:93:d3:ff:57:d6:a1:3d:73:ee:83:51:
08:5c:d1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org