Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/I-DjyVjJcHzkWbnQt3chsrYBusA.roa
File: I-DjyVjJcHzkWbnQt3chsrYBusA.roa (raw, json)
Hash identifier: dN9VMywQGhU5EqzIIByYl0QPBHbNIzQ9WMdjdHL5hBg=
Subject key identifier: 23:E0:E3:C9:58:C9:70:7C:E4:59:B9:D0:B7:77:21:B2:B6:01:BA:C0
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 07C36E89
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/I-DjyVjJcHzkWbnQt3chsrYBusA.roa
Signing time: Tue 17 May 2022 15:31:12 +0000
ROA not before: Tue 17 May 2022 15:31:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51765
IP address blocks: 45.11.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130248329 (0x7c36e89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: May 17 15:31:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23e0e3c958c9707ce459b9d0b77721b2b601bac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0f:fb:03:66:df:82:ac:b8:fa:38:b2:7e:f0:
89:8b:47:bc:42:79:d1:fa:2f:19:56:1f:5c:da:89:
53:8c:dd:e5:b5:27:9f:94:4a:e9:32:8a:43:4d:05:
8e:c0:d3:c7:bf:1e:57:44:21:70:1f:e1:82:45:d6:
fa:c6:07:79:0c:dd:37:c1:d3:46:fb:86:40:8b:de:
04:63:47:af:a5:63:2b:b8:6b:b7:1e:d7:47:a3:6a:
a3:8e:64:8c:3f:15:27:24:32:77:43:9d:f5:c1:9e:
36:be:1c:f1:85:04:67:c1:1e:83:7d:2b:bb:29:1e:
98:14:3f:52:0f:73:41:bd:e4:ca:40:f8:d4:5a:ba:
0a:00:9a:cc:bc:26:e3:dd:07:44:14:cd:f0:87:a2:
d1:d3:27:74:f6:e5:86:ea:f3:16:31:8f:62:66:62:
63:66:93:8c:bc:69:9f:70:59:65:d5:14:8d:27:3f:
8f:52:52:3e:5b:87:38:0a:fa:a8:b4:79:13:3f:65:
70:7f:4c:37:2f:3b:06:11:49:87:dc:b9:00:36:0d:
8f:cd:c5:f0:09:5c:fd:5e:c1:17:68:65:2d:af:35:
1f:8d:97:8b:4b:94:74:45:48:df:0d:5c:7a:aa:25:
01:52:1b:8f:3e:4a:89:09:50:d5:d6:6b:3b:fd:28:
0c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:E0:E3:C9:58:C9:70:7C:E4:59:B9:D0:B7:77:21:B2:B6:01:BA:C0
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/I-DjyVjJcHzkWbnQt3chsrYBusA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.189.0/24
Signature Algorithm: sha256WithRSAEncryption
32:a2:40:7e:f2:0e:0e:d8:88:79:b3:33:b8:af:4a:1c:5a:b4:
95:7c:c7:07:b0:85:ff:07:ff:e6:fe:61:a2:38:4e:ac:0d:ce:
ee:31:c6:f8:00:49:1f:98:12:18:bd:6e:d2:98:c1:e5:8d:cf:
0b:ff:54:e8:70:70:b6:e7:97:bb:c3:63:a7:87:75:d6:aa:1d:
62:7c:95:b4:e5:14:b8:a4:a5:af:cd:27:68:aa:df:02:42:9f:
1c:61:9d:d7:8b:f9:76:ef:4d:50:d9:e0:b1:f2:70:71:bf:ea:
db:d6:08:aa:a0:46:d5:c8:ea:aa:e8:f6:87:98:80:74:a7:58:
3e:2c:3a:4d:64:0b:a9:be:a9:9b:4e:82:d4:0a:ae:b2:0a:d5:
f8:69:3f:da:2a:c1:5e:9c:81:a8:a6:ee:16:27:5a:35:51:84:
bd:f2:92:bc:48:72:cf:ce:50:e6:f1:ad:12:e0:9a:32:dd:37:
29:43:85:79:76:0d:af:5f:23:43:eb:28:06:51:76:52:de:3b:
ea:f1:b1:4c:00:e5:14:e4:13:b1:b8:07:a5:63:46:b8:03:3e:
4b:fd:e3:32:24:f9:20:6c:3e:91:3a:89:fe:b0:70:98:20:9d:
48:bd:9e:2f:e2:aa:a2:91:62:d6:00:83:e3:89:1a:09:10:a0:
15:f6:7e:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:13 2023 by rpki-client on console-fra.rpki-client.org