Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/cKH_CctZ9Mg3BMMey176F9gpRG4.roa
File: cKH_CctZ9Mg3BMMey176F9gpRG4.roa (raw, json)
Hash identifier: csfdnJK4iybgtC79jjluNZWElBodcoKUBpyHYvHpUvM=
Subject key identifier: 70:A1:FF:09:CB:59:F4:C8:37:04:C3:1E:CB:5E:FA:17:D8:29:44:6E
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 0182188D39B3FB02A3C8504A92FB8B562F2A
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/cKH_CctZ9Mg3BMMey176F9gpRG4.roa
Signing time: Tue 19 Jul 2022 22:21:24 +0000
ROA not before: Tue 19 Jul 2022 22:21:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 135392
IP address blocks: 45.84.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:18:8d:39:b3:fb:02:a3:c8:50:4a:92:fb:8b:56:2f:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Jul 19 22:21:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70a1ff09cb59f4c83704c31ecb5efa17d829446e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:39:a1:d6:57:4e:05:e7:d6:1f:ed:49:a3:8b:
ca:8a:13:f5:79:c1:39:fd:cb:d2:80:fe:9c:a3:11:
43:48:73:df:0f:78:ba:34:80:8e:29:6b:20:0d:46:
76:78:79:5d:16:59:63:36:71:60:b9:57:d8:a3:14:
5e:56:f9:f5:26:ab:9e:35:f8:42:0e:31:10:d6:81:
3d:c3:6c:32:14:7a:3d:ff:f7:a2:82:63:1f:0e:27:
65:d0:d8:fa:3f:f5:bc:1f:f3:bd:5b:c1:1a:2a:31:
f9:1c:bd:bd:38:9f:6f:94:03:f4:ad:c8:37:10:a3:
63:02:d8:7b:98:68:e6:43:7a:68:81:ec:a7:9e:7c:
0d:1a:d1:6e:92:46:67:ed:5f:24:89:3f:90:fc:9c:
9f:01:cf:1d:30:0a:8a:10:fc:33:5d:30:0e:37:57:
db:f3:c6:23:b4:fa:3b:33:bc:b8:49:a7:e7:c4:d6:
40:e9:cf:ab:76:7b:cb:95:58:e4:6b:cd:46:d6:f2:
bf:53:8d:69:66:6a:b4:85:32:61:2a:ec:96:c5:6e:
29:a4:c1:84:34:e1:cb:3d:f6:ee:26:fe:00:fc:7b:
00:a6:e2:dd:b6:ff:8c:82:6b:f3:d7:63:9b:d7:fd:
a9:27:cb:82:17:68:da:45:e0:e5:80:a0:76:31:8d:
e6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A1:FF:09:CB:59:F4:C8:37:04:C3:1E:CB:5E:FA:17:D8:29:44:6E
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/cKH_CctZ9Mg3BMMey176F9gpRG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.242.0/24
Signature Algorithm: sha256WithRSAEncryption
97:c1:17:5f:f8:21:b2:fa:f9:50:bf:98:3c:2a:59:a4:9f:e8:
12:83:3f:b8:4c:90:c1:6d:3e:78:63:f3:e9:0d:ad:0a:11:e6:
58:f8:94:d7:c9:0a:b2:d9:1f:f7:13:a1:0f:72:c5:5b:06:ff:
f8:b1:fb:16:17:cd:81:4f:a6:ff:ac:84:bd:34:a0:82:e2:84:
a0:7f:3b:d2:f3:95:14:af:12:82:59:9f:b6:6a:95:02:0d:eb:
21:11:89:1b:18:38:c5:15:25:0a:b7:b0:a4:95:41:cc:5d:6f:
b3:fb:1a:44:16:0a:71:30:c8:d0:42:5a:cb:5a:8e:e4:21:18:
a9:54:aa:34:91:ac:5b:37:11:7e:71:45:3a:8c:60:f3:20:20:
ed:ef:dd:a7:5e:c2:ce:ea:27:f4:48:1c:cc:49:3e:18:ce:d2:
97:08:91:eb:d1:25:d7:df:d3:f5:3e:ce:dc:f8:84:c8:98:5a:
ff:00:6d:c4:d9:ba:1f:9e:2d:71:72:2e:90:b7:22:52:13:c0:
62:91:b5:ac:43:34:63:c6:62:df:e5:38:d6:31:f2:1c:89:a6:
fb:78:70:8d:50:79:96:7a:b5:c5:b9:09:e2:53:a3:09:a0:0b:
d9:ea:4c:3e:cd:a2:70:3b:db:d7:ae:2e:25:27:d5:d5:f7:eb:
d8:47:3a:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:06 2023 by rpki-client on console-fra.rpki-client.org