Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/i440j5Zc6D63yVCacoBfb1u_aaY.roa
File: i440j5Zc6D63yVCacoBfb1u_aaY.roa (raw, json)
Hash identifier: a8T7s0geSkrikOJi09rZOvSqWk2xD4eZlqRglLySTXg=
Subject key identifier: 8B:8E:34:8F:96:5C:E8:3E:B7:C9:50:9A:72:80:5F:6F:5B:BF:69:A6
Certificate issuer: /CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Certificate serial: 03B86204
Authority key identifier: C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/i440j5Zc6D63yVCacoBfb1u_aaY.roa
Signing time: Sat 01 Jan 2022 06:02:21 +0000
ROA not before: Sat 01 Jan 2022 06:02:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206706
IP address blocks: 45.143.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62415364 (0x3b86204)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Validity
Not Before: Jan 1 06:02:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b8e348f965ce83eb7c9509a72805f6f5bbf69a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a0:88:84:34:97:99:ed:26:0a:bc:71:cc:3c:
89:94:5a:5c:d5:16:44:5b:95:7a:b6:35:42:0d:b9:
64:87:28:da:ef:ee:bd:6a:6e:0d:e0:5e:b0:95:10:
21:11:6c:5f:ae:23:5b:07:7f:50:43:43:d0:3f:95:
a4:c8:b9:30:9d:98:76:6c:1b:da:49:40:ff:65:16:
2b:3b:0f:cc:57:1c:5f:42:17:8b:5d:05:49:52:01:
4d:4a:ac:6a:7e:92:d2:e5:f6:f2:b8:b5:b2:ed:bb:
06:11:6b:32:43:b1:30:38:10:68:c7:d3:fd:68:ef:
7d:e6:68:a9:d7:82:ee:ea:ae:70:0e:fc:8e:bc:8a:
81:7d:1d:15:97:95:1b:c8:a2:d3:27:6e:dc:0a:89:
88:fd:61:4c:72:da:ef:9c:55:b6:fc:dd:88:52:56:
d2:70:19:07:99:37:0c:1a:46:fa:0c:37:b7:ff:e1:
99:0c:67:7f:75:10:1b:f1:27:af:df:3e:21:3d:bb:
bb:bd:96:1f:4b:e3:ca:b2:c6:fb:59:a5:5c:b7:be:
59:a6:66:e4:50:b5:87:38:48:ad:b3:2d:f0:2a:f9:
92:8a:e6:7f:d7:b5:34:b0:ca:c9:a0:a5:72:16:6c:
b9:a2:f3:b8:a7:dc:a5:b0:3e:fe:90:bb:71:d9:2b:
7a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:8E:34:8F:96:5C:E8:3E:B7:C9:50:9A:72:80:5F:6F:5B:BF:69:A6
X509v3 Authority Key Identifier:
keyid:C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/i440j5Zc6D63yVCacoBfb1u_aaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/wSrJsU_SYajSdjqtQXQyvrxJoNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.31.0/24
Signature Algorithm: sha256WithRSAEncryption
53:35:ca:48:31:f5:f3:2a:b5:42:dd:ae:ef:04:f8:95:5e:c7:
5b:71:4b:b5:d2:ad:ff:6c:05:1c:4f:06:81:0d:e5:7f:08:d4:
81:6d:79:e3:eb:5e:ed:55:72:73:d0:5b:e0:38:21:a9:ea:0f:
5f:2f:ee:8a:e6:c2:e3:36:26:36:4a:9f:c4:03:93:d1:7e:04:
4b:b0:e9:45:8f:ef:59:1f:6a:16:ba:4b:90:ce:34:b7:86:4c:
14:a8:15:ea:fa:c3:d5:d3:51:4c:54:5c:af:e2:dd:85:9e:63:
98:88:5c:b4:0c:46:26:e9:9a:ff:6a:df:d1:a2:e1:4c:19:04:
f9:26:b2:3f:d5:f8:ab:be:5e:97:8e:84:7d:bb:88:2a:d9:69:
6c:c3:9a:d4:d7:69:b3:a1:18:9a:d4:45:5d:18:21:91:61:18:
22:7d:c7:f7:88:cc:fa:c2:68:d5:77:c6:3d:1b:8d:49:d0:0d:
6f:05:a8:6d:5e:9e:70:0f:cf:93:83:71:be:6f:31:ae:d8:04:
5d:25:a2:db:cc:9b:7f:ab:35:6b:67:bb:db:fa:ae:ef:b7:60:
e7:5c:3e:85:50:bf:2d:3d:96:37:be:55:24:16:bb:39:27:fd:
63:ef:14:34:ce:87:dd:cf:fa:d2:66:97:30:6e:a2:01:8a:42:
f2:f2:4a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:02 2024 by rpki-client on console-fra.rpki-client.org