Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/SmllgdAa2X9vTI3f4OWfkt7qATw.roa
File: SmllgdAa2X9vTI3f4OWfkt7qATw.roa (raw, json)
Hash identifier: vxRRCG1X+O0FwSPX0Ih8v9BiClQjXbFGRU+gb9iscgs=
Subject key identifier: 4A:69:65:81:D0:1A:D9:7F:6F:4C:8D:DF:E0:E5:9F:92:DE:EA:01:3C
Certificate issuer: /CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
Certificate serial: 0184CE343CED1713E78CADCD0E4DA070C1DF
Authority key identifier: F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/SmllgdAa2X9vTI3f4OWfkt7qATw.roa
Signing time: Thu 01 Dec 2022 15:00:40 +0000
ROA not before: Thu 01 Dec 2022 15:00:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200984
IP address blocks: 45.13.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ce:34:3c:ed:17:13:e7:8c:ad:cd:0e:4d:a0:70:c1:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
Validity
Not Before: Dec 1 15:00:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a696581d01ad97f6f4c8ddfe0e59f92deea013c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:87:24:a5:80:00:59:0d:7c:ae:80:56:9b:57:
59:2e:79:d9:3e:ef:67:fc:23:58:a7:e0:8a:f1:e7:
71:37:ea:db:f5:a0:db:ce:c6:99:6d:ea:88:2d:fa:
e7:81:94:9b:ce:38:d2:b9:8e:3d:ce:56:e5:9a:1b:
00:62:af:1f:dd:c9:f5:ae:fc:76:c3:c6:44:a7:1f:
fe:be:6a:d0:71:70:48:bd:8d:85:8d:48:31:6a:f1:
fe:3e:30:94:18:19:cd:62:d8:f7:0e:ae:11:4b:7d:
63:9b:0f:10:dd:cb:eb:a7:09:5d:b8:bc:f5:61:87:
a6:7e:97:ca:23:96:ab:e7:24:92:e6:4b:ac:5b:eb:
b8:7c:64:4e:6c:b6:b7:6b:2d:9a:32:16:05:9e:85:
50:27:82:81:60:ba:c9:44:15:e9:28:3b:b8:e1:21:
8d:46:95:98:ed:3a:61:b9:14:8d:2f:ca:08:22:4f:
f8:1d:3b:70:03:2a:69:ef:09:36:d1:43:18:9a:f6:
db:18:63:e0:88:b3:3a:65:64:f0:70:3e:55:cc:11:
fc:1c:15:c9:97:0b:a8:af:e4:c2:b7:9e:e0:49:9c:
9a:97:62:78:10:24:64:8c:e5:60:7d:03:2d:64:27:
53:e7:be:f7:4e:a7:4b:a1:07:69:dd:7d:8f:dc:cb:
9d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:69:65:81:D0:1A:D9:7F:6F:4C:8D:DF:E0:E5:9F:92:DE:EA:01:3C
X509v3 Authority Key Identifier:
keyid:F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/SmllgdAa2X9vTI3f4OWfkt7qATw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.80.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:8a:8f:37:7c:74:03:25:a5:91:1c:e1:36:53:0f:10:a0:53:
ca:df:2e:a7:d6:17:e4:4d:76:10:c4:1d:79:29:c3:ba:33:f8:
ed:06:41:95:01:f5:97:18:b1:40:03:90:38:ad:9d:7e:38:84:
ae:bb:24:dd:d0:d2:8a:99:1c:fe:98:3f:9c:77:48:7e:6e:a7:
8b:8c:bc:75:89:bd:17:73:6b:a3:6a:77:78:30:76:c6:29:b8:
b0:92:9f:48:3f:77:a8:10:c8:10:09:08:28:a5:b9:59:e1:ca:
f5:56:48:51:26:04:15:c3:5d:88:74:f7:ff:cc:5b:48:2d:d8:
fd:c0:eb:90:54:48:9f:22:d9:6b:a2:7b:0c:9c:8c:79:88:c0:
04:87:a7:68:ac:7f:6c:75:96:77:7c:0f:4f:34:5a:98:36:89:
72:a9:da:d8:e2:e4:89:71:0b:37:d5:0c:2f:b2:fd:c1:a7:bb:
38:b0:49:a9:29:c8:27:97:55:54:30:85:02:24:7d:0c:ab:cc:
28:bd:c8:7c:89:4a:ad:a8:2f:f6:b1:d0:85:20:66:b3:8e:98:
9f:2f:4a:5a:db:ba:e9:46:ba:1b:48:17:81:a7:76:a6:41:e3:
0f:44:34:0c:44:ea:9c:48:b9:5e:04:07:ad:3d:8b:ba:02:7e:
22:eb:ac:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:49 2024 by rpki-client on console-fra.rpki-client.org