Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/33da71-0b4e-4b16-a9dc-beed916eb140/1/CV4Be2sfYynY4VkDn1NrhbdBd3k.roa
File: CV4Be2sfYynY4VkDn1NrhbdBd3k.roa (raw, json)
Hash identifier: 8VWxeFn8Sm+vnMzDu55i4kMCeVFLjG/KxHdsCFStaBw=
Subject key identifier: 09:5E:01:7B:6B:1F:63:29:D8:E1:59:03:9F:53:6B:85:B7:41:77:79
Certificate issuer: /CN=06dbc24e08b2c26ada90ad638f1adc747f69a45f
Certificate serial: 07060A3A
Authority key identifier: 06:DB:C2:4E:08:B2:C2:6A:DA:90:AD:63:8F:1A:DC:74:7F:69:A4:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BtvCTgiywmrakK1jjxrcdH9ppF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/33da71-0b4e-4b16-a9dc-beed916eb140/1/CV4Be2sfYynY4VkDn1NrhbdBd3k.roa
Signing time: Fri 24 Jun 2022 08:17:11 +0000
ROA not before: Fri 24 Jun 2022 08:17:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3223
IP address blocks: 45.149.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117836346 (0x7060a3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06dbc24e08b2c26ada90ad638f1adc747f69a45f
Validity
Not Before: Jun 24 08:17:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=095e017b6b1f6329d8e159039f536b85b7417779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:1e:99:1f:bf:86:89:5b:84:8c:70:4f:3d:9d:
5e:22:ba:1d:fb:37:e6:58:18:55:0d:e8:b9:8f:ad:
ce:ee:cd:93:f8:57:31:e8:70:e8:76:fe:b8:26:34:
95:d7:98:79:ee:69:be:c5:eb:1a:d8:b1:e9:cf:e5:
c6:d1:7b:a3:34:a4:ef:2b:87:fe:a5:c9:24:9b:8e:
7e:b5:41:d0:ea:c3:ba:13:8e:89:c8:63:f9:d4:8f:
16:3b:2f:51:27:20:4e:2a:69:17:cd:fc:52:d9:a9:
5d:23:95:9a:00:e3:b7:d1:a6:cc:f5:e4:e2:16:10:
b6:ae:62:2c:05:a4:b0:d7:ae:01:e0:65:2b:3d:b5:
38:f5:1e:98:63:4a:40:42:4e:e2:19:b2:10:2d:4b:
c1:6c:b8:4d:65:00:23:11:b5:11:45:08:c9:64:77:
6d:b4:53:3b:0a:89:be:d8:a5:d9:a9:90:70:f0:14:
6f:ec:70:12:4b:d3:25:b0:74:de:25:3e:d2:57:4f:
a9:9a:de:0c:f9:76:cb:8d:04:e3:1e:dd:85:49:f4:
04:2e:44:79:a2:3c:3c:36:10:3a:39:54:31:ac:0b:
86:05:46:a6:be:a5:45:7d:4e:e5:21:d0:57:fb:65:
f4:2e:80:99:ae:52:b9:a9:8b:b5:84:e4:da:96:bd:
5a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:5E:01:7B:6B:1F:63:29:D8:E1:59:03:9F:53:6B:85:B7:41:77:79
X509v3 Authority Key Identifier:
keyid:06:DB:C2:4E:08:B2:C2:6A:DA:90:AD:63:8F:1A:DC:74:7F:69:A4:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BtvCTgiywmrakK1jjxrcdH9ppF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33da71-0b4e-4b16-a9dc-beed916eb140/1/CV4Be2sfYynY4VkDn1NrhbdBd3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33da71-0b4e-4b16-a9dc-beed916eb140/1/BtvCTgiywmrakK1jjxrcdH9ppF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.124.0/22
Signature Algorithm: sha256WithRSAEncryption
59:68:43:af:48:12:29:45:65:6c:e3:e4:d5:c9:ce:be:5b:1d:
b5:d9:41:08:24:03:fe:db:c3:e8:ad:d4:cc:15:37:f4:ab:2f:
d5:3e:2d:23:0c:e0:93:f3:77:5a:a1:42:ad:77:45:96:75:74:
de:ba:ac:2b:22:40:43:43:fd:fe:ea:ab:9b:32:0f:24:ed:c1:
d7:8b:d0:87:48:11:82:39:1c:db:ca:32:b1:e6:2d:8a:b3:dd:
cf:0a:40:06:73:14:25:c5:8c:5d:0b:42:5b:c5:e4:10:e6:ec:
93:6c:83:3d:5b:56:90:68:79:49:f9:3f:0a:57:21:c1:ba:13:
81:87:fd:8f:72:b8:f1:9a:12:bb:96:20:fc:5b:fa:59:a2:7b:
76:8b:9a:f5:f7:3a:78:c3:ff:30:c7:89:93:52:50:f2:e7:f9:
74:5b:f7:3b:7d:93:86:46:c1:4e:da:1f:e6:06:2e:c1:4f:32:
5d:9d:b9:8f:d7:34:ce:57:24:23:02:2f:5a:61:b0:9e:e5:c5:
f7:87:23:72:1a:cb:90:d6:b9:3a:4e:2f:cc:26:9f:fe:83:b1:
a0:13:59:51:d1:4b:3e:f0:f3:3a:aa:a8:fd:c6:b9:f7:36:cd:
24:17:12:d3:e6:7c:4f:9d:49:f3:df:a5:fa:7e:8b:ad:c9:76:
dc:0c:fd:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:52 2024 by rpki-client on console-ams.rpki-client.org