Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/xUKLioDQkS8K8uU9WexjxaNRvx8.roa
File: xUKLioDQkS8K8uU9WexjxaNRvx8.roa (raw, json)
Hash identifier: 0xqT+p8CfLf5RGCDsYxcJRFVDw2QFAM1CcLhs0yfISk=
Subject key identifier: C5:42:8B:8A:80:D0:91:2F:0A:F2:E5:3D:59:EC:63:C5:A3:51:BF:1F
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01831E084CE59D2A6F4A07B68305EB17B139
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/xUKLioDQkS8K8uU9WexjxaNRvx8.roa
Signing time: Thu 08 Sep 2022 16:56:43 +0000
ROA not before: Thu 08 Sep 2022 16:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210122
IP address blocks: 45.11.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1e:08:4c:e5:9d:2a:6f:4a:07:b6:83:05:eb:17:b1:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Sep 8 16:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5428b8a80d0912f0af2e53d59ec63c5a351bf1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:bd:46:6d:c0:7b:29:a7:c0:0c:b9:bf:2d:d7:
c9:26:35:c6:55:03:a5:2b:28:ba:b3:87:a5:3d:90:
18:76:12:1c:45:26:d3:ac:1d:03:ad:77:67:15:7f:
6a:31:3a:9f:4f:5d:cb:98:35:f8:32:e3:d9:0a:5c:
7c:47:19:0e:b1:2e:b4:27:8b:32:d0:4c:b4:0a:03:
da:40:84:0a:71:4c:70:71:88:2e:f3:08:57:82:86:
63:b0:3a:5a:90:d2:dc:76:90:de:1e:ba:a1:80:05:
19:3d:de:95:b9:ef:f3:53:bf:8b:0c:6c:12:aa:66:
4b:16:cd:6d:ed:d4:6b:9c:6a:06:9d:a4:e7:c3:db:
5a:34:74:66:90:0a:39:9f:05:4f:8c:cf:6d:b5:42:
ad:e0:1b:bd:90:ee:c2:5a:96:3c:8f:70:9a:44:53:
74:85:ee:01:54:ba:0d:a3:08:4a:b0:96:09:db:29:
77:7c:44:de:99:b5:f6:fa:f4:ce:3d:9d:3e:b2:fd:
78:57:e1:41:14:83:fb:4f:4e:64:82:f9:fb:93:ff:
00:ec:8c:00:ef:59:9d:cb:90:7d:6c:a6:55:ce:ac:
0e:6a:24:cf:eb:91:23:e3:c8:75:37:5c:ff:f3:c2:
ac:ee:d4:9c:db:07:a9:5f:d9:63:a8:71:23:63:ef:
44:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:42:8B:8A:80:D0:91:2F:0A:F2:E5:3D:59:EC:63:C5:A3:51:BF:1F
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/xUKLioDQkS8K8uU9WexjxaNRvx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.191.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:fb:74:2f:e3:36:3a:70:6c:d7:17:ef:99:b6:07:8c:19:a2:
48:a7:1d:ce:56:e2:87:ae:9b:1f:cf:71:4d:f9:5b:3d:ac:90:
6e:64:f0:4d:73:52:0a:c7:bf:54:a1:74:35:67:6c:d1:54:b2:
fb:5e:71:4d:3c:01:4a:b8:be:2b:7e:68:2a:e2:ae:ad:ef:90:
9f:44:c6:81:52:33:47:47:3a:02:d1:8c:07:8a:63:cd:79:45:
04:b3:f2:c8:14:fb:dc:5f:b0:ab:31:bf:b0:bb:ca:57:29:e2:
3a:a1:6b:01:bb:15:a4:ed:4a:b4:bd:06:0b:e6:3b:29:8a:3b:
a4:db:c2:18:e6:10:ac:4e:6f:7c:62:16:23:e3:72:2a:20:c5:
3d:0f:d4:6b:6d:46:e4:73:48:ab:9e:3d:82:ca:75:5d:fd:02:
a4:2d:ff:03:84:63:fd:ef:de:c7:7c:02:ae:d7:bf:be:47:38:
71:14:46:98:09:33:d9:46:c3:e4:d7:45:7e:59:0e:7b:07:d6:
c6:a7:a2:e5:5c:bd:0f:4d:60:78:ed:23:19:51:82:b7:5a:90:
4f:9c:41:03:b1:4e:c8:23:0c:76:2e:02:46:89:47:f3:6d:49:
8d:20:3a:97:6c:fe:53:01:78:8e:43:47:a6:b8:f7:5f:0c:bc:
ac:c5:12:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org