Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/1ENBJs1tIJuP5YIPaCmWbe974vY.roa
File: 1ENBJs1tIJuP5YIPaCmWbe974vY.roa (raw, json)
Hash identifier: 9vP95TujrOqnSaofPsGpxufXLF3XJiyKqRFMmY6fezA=
Subject key identifier: D4:43:41:26:CD:6D:20:9B:8F:E5:82:0F:68:29:96:6D:EF:7B:E2:F6
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 07D7FD86
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/1ENBJs1tIJuP5YIPaCmWbe974vY.roa
Signing time: Tue 24 May 2022 10:05:16 +0000
ROA not before: Tue 24 May 2022 10:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 45.11.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131595654 (0x7d7fd86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: May 24 10:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4434126cd6d209b8fe5820f6829966def7be2f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:6a:b9:33:10:70:c9:d8:60:be:ed:1d:76:5d:
26:cb:a3:15:99:83:e3:02:82:e3:c2:e7:06:3c:fc:
33:9d:61:db:27:15:42:d3:78:19:44:42:38:48:cc:
59:c4:eb:41:a9:43:45:fd:95:30:da:4c:0e:60:13:
04:13:d1:f4:3f:df:cd:12:b8:93:53:2f:c3:16:3b:
78:db:18:3c:96:ca:bc:c1:78:fd:18:15:05:fe:ba:
47:3e:69:15:10:69:dc:bf:e0:23:e3:9c:1e:c9:d8:
f1:0e:04:4d:96:84:76:90:d6:67:03:98:3e:1e:9d:
e7:68:7c:a7:0b:5f:fc:91:e0:e7:2c:f2:cc:ce:e9:
c9:29:bd:eb:61:86:61:80:67:21:57:a3:0d:eb:87:
80:1b:84:9f:0d:74:4b:33:90:65:cf:ca:54:50:b1:
93:c0:97:c4:92:b0:41:13:30:06:4e:ec:cf:e7:b3:
33:9e:ad:68:3d:fc:27:e2:25:52:7d:31:5f:5b:af:
56:68:89:17:b4:12:50:51:ba:5d:dd:46:cd:7f:93:
3d:5a:73:58:9a:26:74:3f:1f:69:3b:43:ce:18:0b:
4d:ac:8c:ce:2b:d1:da:48:4f:47:3c:b9:76:ec:f8:
4c:60:25:3d:5c:77:bc:c6:e5:3a:a2:02:e3:12:67:
97:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:43:41:26:CD:6D:20:9B:8F:E5:82:0F:68:29:96:6D:EF:7B:E2:F6
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/1ENBJs1tIJuP5YIPaCmWbe974vY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.191.0/24
Signature Algorithm: sha256WithRSAEncryption
25:39:c6:a7:5b:1b:82:c8:63:50:1b:92:34:fb:f0:0f:3f:95:
a6:e9:1e:95:d6:58:3a:9f:b6:c4:3a:48:8b:0c:9b:e0:7b:6c:
f2:0d:48:9d:bc:89:67:4b:dc:6e:bf:cb:c5:3f:28:46:c4:0c:
fc:76:05:e1:02:88:db:55:6f:c7:c9:20:93:0f:b9:78:00:21:
28:2f:04:fa:aa:9f:2c:5c:ad:8e:8c:6a:81:43:f4:f5:2c:6c:
17:1c:68:ca:c5:39:60:db:a4:6a:ea:74:42:64:80:fd:09:ab:
62:ec:7e:b8:e0:57:d8:39:00:a9:13:80:e2:e7:1d:87:d5:27:
76:c8:7b:b4:52:38:8e:d2:b0:64:da:a9:45:35:00:fd:ba:0c:
56:45:24:9d:0c:12:0f:0d:98:96:d7:8e:67:a7:45:30:76:f3:
82:8c:8b:55:c2:a7:fb:d8:c9:fc:f2:c8:51:27:b8:64:95:47:
62:22:4e:31:c4:6b:56:94:c5:22:bb:d6:e1:d7:a5:77:e0:94:
a7:0e:5b:ca:b7:45:da:e9:56:a3:cc:ba:2e:bc:2d:ac:df:d5:
26:91:76:d1:42:67:00:6e:68:90:0f:f4:aa:44:83:20:15:51:
f2:fb:aa:88:5e:99:d9:dc:e5:64:1b:db:1d:3b:26:10:3b:5c:
d6:c6:64:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:13 2023 by rpki-client on console-fra.rpki-client.org