Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/zO0GxYqZrsamzODI8GPF6lWaibU.roa
File: zO0GxYqZrsamzODI8GPF6lWaibU.roa (raw, json)
Hash identifier: 05F2x4Wz1IpLhJhZC42gC1k5gTwxLYKgqjWNFn/Tdyw=
Subject key identifier: CC:ED:06:C5:8A:99:AE:C6:A6:CC:E0:C8:F0:63:C5:EA:55:9A:89:B5
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 08FA07
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/zO0GxYqZrsamzODI8GPF6lWaibU.roa
Signing time: Sat 02 Apr 2022 19:32:22 +0000
ROA not before: Sat 02 Apr 2022 19:32:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207614
IP address blocks: 45.90.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 588295 (0x8fa07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Apr 2 19:32:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cced06c58a99aec6a6cce0c8f063c5ea559a89b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:11:9b:73:60:dd:01:ff:4d:34:98:be:f0:da:
7b:9e:86:fe:5e:4c:9a:39:3a:0d:34:21:d6:06:e5:
c4:b9:0d:bd:6f:d5:63:c6:21:6c:ec:2b:21:49:3e:
6a:2e:6c:ad:f1:0c:79:f4:02:1f:4c:97:1f:4f:c4:
2d:cc:c3:f8:03:cf:17:bc:8d:d5:5f:1d:2d:32:15:
3d:3d:3c:da:3d:93:89:11:88:23:f6:61:38:7d:05:
21:f6:2e:97:4a:f5:97:31:50:e9:b3:51:c3:a4:3b:
80:e2:e6:76:1d:2b:04:3e:37:56:dc:f0:c8:a2:84:
a9:d7:7f:00:a4:35:6e:53:05:c3:2d:c5:a0:65:a6:
c4:45:ec:d6:10:54:ed:9e:91:c8:2a:0f:ae:4f:2b:
a0:d5:b5:76:50:85:c6:c7:02:7a:af:6c:2d:04:4f:
c5:a5:0b:21:5d:d5:8a:a1:23:8f:40:17:7f:ee:4c:
31:67:59:69:6c:c4:40:bb:0e:b9:f4:8a:26:fa:7d:
d3:87:a5:a9:7f:55:4d:df:8b:ac:93:ed:53:d8:41:
c1:6d:70:ec:f7:af:bf:bf:e8:ef:b0:2d:fb:ef:9b:
1b:97:36:74:7a:fe:2a:9b:50:f5:f5:d9:23:5b:64:
94:cf:65:ff:a8:7b:61:6d:72:36:fa:e9:5b:cd:47:
a5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:ED:06:C5:8A:99:AE:C6:A6:CC:E0:C8:F0:63:C5:EA:55:9A:89:B5
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/zO0GxYqZrsamzODI8GPF6lWaibU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.45.0/24
Signature Algorithm: sha256WithRSAEncryption
55:51:d4:e1:06:06:1a:64:51:ea:b7:38:42:e4:a1:a7:93:42:
73:7c:b5:08:13:b3:c8:74:8d:f6:59:6e:2e:f9:be:5a:d3:8a:
94:16:5d:08:08:c6:90:4e:5f:98:9b:62:a7:bc:ed:76:1e:23:
88:2e:4b:f6:83:39:f5:16:cb:5d:d9:6c:f4:2a:4e:ea:a8:22:
e6:65:72:8c:e8:70:70:fa:0c:06:1e:59:a7:d5:74:45:97:ff:
97:69:b1:9d:6e:69:56:ee:41:00:e2:9b:0f:38:04:32:14:c7:
83:be:b4:26:78:25:8a:fc:91:27:30:b2:08:1c:58:70:8e:b2:
ff:71:31:40:05:eb:62:1a:a8:9d:89:5a:71:c2:59:ed:8c:ce:
20:cd:77:a3:cb:66:2c:50:95:aa:8d:7e:8e:ba:0f:2d:ae:a3:
e5:55:b3:b7:37:52:cd:f4:66:86:b4:ae:e9:dd:eb:5c:55:11:
90:30:da:61:fc:f2:e5:44:db:5f:c6:12:ea:ad:6f:f6:2f:6b:
8d:07:c3:c1:24:13:94:d3:21:b6:f6:d1:26:7f:6d:d5:a0:96:
8d:0d:76:88:c3:a2:be:e5:20:a3:a0:91:9d:89:89:61:b7:3d:
0b:c5:f1:08:e7:b1:74:08:30:bf:a2:23:1b:af:8c:5f:84:5c:
ef:35:07:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:55 2024 by rpki-client on console-ams.rpki-client.org