Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/6kuDXpIY6fO0XwxhVN9wm4i6VE8.roa
File: 6kuDXpIY6fO0XwxhVN9wm4i6VE8.roa (raw, json)
Hash identifier: ktcdqtVmDKlTDleMh5r8vh5LD7PRXNcqHQ2n2sonxqw=
Subject key identifier: EA:4B:83:5E:92:18:E9:F3:B4:5F:0C:61:54:DF:70:9B:88:BA:54:4F
Certificate issuer: /CN=da980a45fe487366e386b6064c2c652519f9fc93
Certificate serial: 0787B2DB
Authority key identifier: DA:98:0A:45:FE:48:73:66:E3:86:B6:06:4C:2C:65:25:19:F9:FC:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pgKRf5Ic2bjhrYGTCxlJRn5_JM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/6kuDXpIY6fO0XwxhVN9wm4i6VE8.roa
Signing time: Sat 01 Jan 2022 15:04:45 +0000
ROA not before: Sat 01 Jan 2022 15:04:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206313
IP address blocks: 45.154.110.0/24 maxlen: 24
45.154.108.0/24 maxlen: 24
45.154.108.0/22 maxlen: 24
45.154.109.0/24 maxlen: 24
2a0f:b500::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126333659 (0x787b2db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da980a45fe487366e386b6064c2c652519f9fc93
Validity
Not Before: Jan 1 15:04:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea4b835e9218e9f3b45f0c6154df709b88ba544f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f7:57:d6:2c:6e:15:94:4e:97:37:3a:55:19:
91:5e:8d:49:d3:e6:47:73:13:ba:6b:61:f4:8b:b9:
df:97:8b:9a:2e:87:d0:4b:8d:30:bd:4b:a3:d0:be:
1f:4b:75:6e:b7:a4:05:81:c8:70:9e:b5:c7:02:7b:
c7:8b:e5:97:4b:53:f1:0e:94:55:b4:de:9e:38:55:
12:61:b3:2d:a5:2b:59:12:78:65:dc:58:d1:fe:f9:
b7:4f:ae:38:26:05:25:b2:59:88:f1:65:88:4e:41:
47:e7:0c:e1:b0:a4:b2:99:09:e2:8a:30:32:a2:40:
ae:10:a0:f9:fa:a9:02:a5:c0:38:39:72:32:73:84:
52:1c:93:c7:c1:30:cf:38:48:97:94:81:a6:b1:70:
bf:ed:5e:bd:1d:fc:4c:d0:b9:50:fb:1d:98:ea:bd:
1c:4b:e7:e4:1b:d6:a0:7a:bb:0a:92:69:28:55:db:
41:4b:06:48:46:64:9a:60:8d:bb:cf:ee:3f:9f:4b:
4c:3d:e1:c6:f8:67:27:0c:b5:80:ea:92:03:65:08:
4d:a9:9b:9c:11:97:d9:98:76:38:1e:54:ed:3c:53:
91:54:c2:ec:e7:fb:e5:aa:45:c1:cc:be:26:c6:1b:
23:58:1d:9a:f7:61:dc:d5:33:85:5f:e4:78:58:66:
ef:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:4B:83:5E:92:18:E9:F3:B4:5F:0C:61:54:DF:70:9B:88:BA:54:4F
X509v3 Authority Key Identifier:
keyid:DA:98:0A:45:FE:48:73:66:E3:86:B6:06:4C:2C:65:25:19:F9:FC:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pgKRf5Ic2bjhrYGTCxlJRn5_JM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/6kuDXpIY6fO0XwxhVN9wm4i6VE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/410e39-b8a6-46ca-acdc-3f12aff274da/1/2pgKRf5Ic2bjhrYGTCxlJRn5_JM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.108.0/22
IPv6:
2a0f:b500::/29
Signature Algorithm: sha256WithRSAEncryption
01:8c:86:49:b2:33:c6:67:63:d3:c9:43:b7:4c:4a:67:fb:fb:
13:e0:e0:ee:7d:a7:20:df:9e:23:c7:ca:fe:b7:aa:a8:20:0f:
0b:41:73:19:1d:ce:16:bc:a2:28:c9:06:46:bc:b7:87:a5:aa:
6e:13:80:bc:5b:2d:7b:e4:d2:7e:e7:cc:e1:90:e3:b4:06:21:
03:87:b9:8e:47:8f:c2:6a:cd:84:61:71:34:a6:43:a6:5d:03:
ee:ea:a1:07:f1:b4:ff:df:fb:ed:5a:aa:f2:5a:24:b1:86:45:
1c:2d:dd:a5:c8:6a:b5:f9:af:59:02:7c:1d:5b:13:2f:05:bd:
d6:1e:26:6d:49:e0:b2:a3:1d:04:90:5a:42:15:e9:cd:ae:92:
8f:ed:71:4b:78:02:45:2c:d3:a0:8b:0f:fd:18:d0:77:a6:34:
a6:45:cb:86:8d:d4:09:6a:7f:29:f4:56:af:ef:23:4e:fa:64:
3b:e3:ef:5e:d8:63:b7:55:d6:27:13:b0:83:cf:ac:9d:0b:5e:
ef:1e:94:e8:bb:97:46:d9:00:cc:fc:f9:bb:a5:e1:4b:3a:b1:
e6:51:e1:8f:38:b2:7a:29:15:49:32:08:5a:42:6c:70:f5:f3:
b8:7c:b7:de:d6:98:21:5d:e3:f4:28:b5:f0:5b:ef:b1:d5:34:
0b:09:63:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:37 2024 by rpki-client on console-fra.rpki-client.org