Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/4x8OS_9mcB8_nlOSozO1KO3HpQA.roa
File: 4x8OS_9mcB8_nlOSozO1KO3HpQA.roa (raw, json)
Hash identifier: 0cNWkth2ZxOtpaTVVTno7DL3yEse6b95YrawG/veUsI=
Subject key identifier: E3:1F:0E:4B:FF:66:70:1F:3F:9E:53:92:A3:33:B5:28:ED:C7:A5:00
Certificate issuer: /CN=da980a45fe487366e386b6064c2c652519f9fc93
Certificate serial: 07867846
Authority key identifier: DA:98:0A:45:FE:48:73:66:E3:86:B6:06:4C:2C:65:25:19:F9:FC:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pgKRf5Ic2bjhrYGTCxlJRn5_JM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/4x8OS_9mcB8_nlOSozO1KO3HpQA.roa
Signing time: Sat 01 Jan 2022 15:04:45 +0000
ROA not before: Sat 01 Jan 2022 15:04:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205591
IP address blocks: 45.154.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126253126 (0x7867846)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da980a45fe487366e386b6064c2c652519f9fc93
Validity
Not Before: Jan 1 15:04:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e31f0e4bff66701f3f9e5392a333b528edc7a500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:67:6a:51:1f:8e:ef:d3:f5:22:fd:4e:a2:27:
ec:9d:f7:75:42:76:f0:4e:91:c2:19:6e:30:ff:07:
d0:94:fd:62:b8:d7:f3:90:e3:00:72:e5:d9:74:55:
2c:06:55:8b:ef:5c:16:b7:bf:4b:d6:08:c3:0d:77:
96:00:18:f8:eb:85:4e:e8:7d:d1:2a:6c:c4:82:b5:
f1:71:c0:0c:9d:80:4f:36:ac:b6:9c:55:32:e2:a1:
64:c7:35:bf:c7:0c:bc:6c:e7:a6:87:42:44:88:56:
60:a4:12:78:3c:34:82:a8:b0:d7:9a:e1:2c:aa:09:
c5:84:82:57:8b:8b:02:5d:91:52:c4:98:1d:21:01:
20:4c:8f:8f:c7:72:35:b4:ed:bf:ee:04:78:8a:9d:
83:71:73:52:0b:29:d3:0d:68:a5:7c:21:8d:1f:45:
a6:00:11:eb:50:89:01:5f:4f:2e:69:fe:52:13:9c:
be:d3:5a:87:4e:14:b3:7b:c0:f3:f7:65:11:fb:05:
f6:bc:a9:0c:1b:9e:22:62:aa:a3:fa:d5:aa:af:b4:
35:7f:4c:4e:4d:d2:6b:32:1b:01:99:8d:ae:9d:03:
83:41:24:21:af:7f:cc:65:12:2e:9b:14:c0:9b:97:
42:84:9e:c1:ad:b3:af:bf:2b:2d:63:77:eb:34:26:
2c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:1F:0E:4B:FF:66:70:1F:3F:9E:53:92:A3:33:B5:28:ED:C7:A5:00
X509v3 Authority Key Identifier:
keyid:DA:98:0A:45:FE:48:73:66:E3:86:B6:06:4C:2C:65:25:19:F9:FC:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pgKRf5Ic2bjhrYGTCxlJRn5_JM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/4x8OS_9mcB8_nlOSozO1KO3HpQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/2pgKRf5Ic2bjhrYGTCxlJRn5_JM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.110.0/24
Signature Algorithm: sha256WithRSAEncryption
17:ac:22:74:4d:a2:ba:f8:b7:e2:29:c4:7b:ff:3f:5a:db:b0:
05:9e:d3:ca:15:7d:bb:66:95:c5:2e:c6:b4:e8:d4:a5:e2:60:
92:35:3b:23:2f:48:47:b2:ed:da:30:60:69:f9:ee:ac:b7:ae:
33:bb:fc:61:fa:f1:26:7a:35:f3:d0:78:46:25:6d:d8:52:3b:
cc:76:ca:28:b3:4f:42:d2:6e:9f:57:54:08:e3:54:0e:b4:d4:
bb:22:94:16:cb:8d:8c:b6:b9:59:55:55:e4:d9:89:25:26:4c:
92:7d:2f:cf:24:02:a9:12:f1:fc:fa:9a:64:53:90:98:dc:d5:
99:df:27:3c:62:9b:1f:7e:c2:5d:0e:bf:61:4d:77:1f:63:14:
c7:c3:9a:96:8d:8c:ad:1e:49:ca:d5:07:51:5c:3e:e5:59:b6:
cb:a9:c9:98:4d:de:f4:4e:f9:b2:f2:3a:85:87:bf:92:80:1b:
ab:b5:2a:dd:ac:a1:72:2f:4f:4d:c3:97:f1:88:1f:14:fe:64:
6d:f3:f3:7c:e8:2a:3c:90:e7:b0:48:00:06:09:76:31:7d:77:
a9:27:b6:af:0d:21:05:b7:10:78:e4:26:bf:1e:5e:c6:04:1d:
19:98:10:2d:25:43:29:84:70:7c:1b:ec:a6:17:f5:ca:c1:22:
22:d8:e6:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:20 2024 by rpki-client on console-ams.rpki-client.org