Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/e25ef5-67bf-463b-858b-a56dc50121dd/1/dFmRGHx3HlgkWKZIG9LnWkl1CYw.roa
File: dFmRGHx3HlgkWKZIG9LnWkl1CYw.roa (raw, json)
Hash identifier: JFuAJUu6oRW0oSKMf2mHjBnyR46074qPX6++/OhP0XI=
Subject key identifier: 74:59:91:18:7C:77:1E:58:24:58:A6:48:1B:D2:E7:5A:49:75:09:8C
Certificate issuer: /CN=cc1557b2c3adfbb25d37ea2a2dfd19b2d4ea510e
Certificate serial: CD86
Authority key identifier: CC:15:57:B2:C3:AD:FB:B2:5D:37:EA:2A:2D:FD:19:B2:D4:EA:51:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zBVXssOt-7JdN-oqLf0ZstTqUQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/e25ef5-67bf-463b-858b-a56dc50121dd/1/dFmRGHx3HlgkWKZIG9LnWkl1CYw.roa
Signing time: Tue 26 Apr 2022 15:04:46 +0000
ROA not before: Tue 26 Apr 2022 15:04:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 145.250.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52614 (0xcd86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc1557b2c3adfbb25d37ea2a2dfd19b2d4ea510e
Validity
Not Before: Apr 26 15:04:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=745991187c771e582458a6481bd2e75a4975098c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:db:e0:e8:7d:8a:88:57:b7:49:ca:5c:b0:62:
04:4f:c8:33:b2:99:3a:ff:56:1a:02:d1:93:77:7e:
73:06:18:21:1e:5d:2f:4c:47:93:19:dd:0a:46:4d:
96:00:ee:fb:1b:af:29:9c:8e:1c:bf:27:0b:b8:56:
af:e9:f2:34:ae:70:8f:12:36:67:5b:a8:89:26:c4:
a6:30:c3:c1:19:a9:34:8f:a2:ce:3d:77:1d:56:73:
14:dd:7e:58:78:98:aa:37:ae:bc:b2:0b:10:42:7c:
1d:4f:a8:0d:e9:20:8c:99:82:d9:c3:af:90:bf:f8:
25:2b:23:ef:b4:25:0b:33:b4:71:fb:c4:a6:ec:f4:
a1:70:ca:b2:48:a3:0f:ef:5a:7e:9b:65:02:a5:09:
81:64:c9:69:19:a1:90:78:e4:5e:19:57:9d:db:b8:
f5:6d:7c:de:1b:e2:a4:15:77:c5:5a:04:f7:e8:a0:
51:5d:13:91:e6:65:a0:a1:9e:58:79:cb:55:f1:3e:
7e:17:d7:d9:4f:7a:52:b8:d6:10:81:30:69:b0:45:
d6:3a:bd:be:85:48:18:9d:bd:da:b0:8e:a3:01:45:
f4:ec:02:bf:45:64:e7:f9:59:0b:e0:19:d2:60:79:
c2:6c:45:57:7e:38:d4:71:6a:b1:2b:a7:59:bd:f7:
e1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:59:91:18:7C:77:1E:58:24:58:A6:48:1B:D2:E7:5A:49:75:09:8C
X509v3 Authority Key Identifier:
keyid:CC:15:57:B2:C3:AD:FB:B2:5D:37:EA:2A:2D:FD:19:B2:D4:EA:51:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zBVXssOt-7JdN-oqLf0ZstTqUQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e25ef5-67bf-463b-858b-a56dc50121dd/1/dFmRGHx3HlgkWKZIG9LnWkl1CYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e25ef5-67bf-463b-858b-a56dc50121dd/1/zBVXssOt-7JdN-oqLf0ZstTqUQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.250.128.0/17
Signature Algorithm: sha256WithRSAEncryption
8b:d0:62:5f:24:c6:0e:4f:28:05:6a:a6:9a:b8:83:c6:76:e7:
aa:09:ff:c2:03:d7:52:7f:53:50:c5:fb:44:a9:5c:2a:a5:e3:
62:2d:0a:cc:32:6e:dd:9c:a9:3f:4d:87:37:89:29:f0:5e:ce:
06:e4:5c:5c:c6:70:13:45:45:40:73:ca:17:48:54:69:7e:45:
59:11:61:8a:a8:70:d4:5b:26:46:da:c0:94:d6:41:66:b8:c5:
32:f3:a5:92:2e:b3:20:11:19:88:b6:a6:01:27:ae:ba:bb:9c:
96:de:0e:b1:84:86:ab:18:36:0c:e4:03:3e:13:33:d3:40:e8:
a9:a0:f8:74:dc:fb:22:6b:83:23:39:c2:61:4f:97:bd:41:ac:
ea:e3:fe:47:9d:8a:b3:18:99:57:d4:67:0e:45:7f:d8:42:84:
6c:52:c9:b4:75:df:60:ce:52:64:83:52:c4:62:79:c1:99:02:
0b:c0:95:55:2d:d5:67:78:63:ad:34:c8:ca:8a:3d:e4:0a:61:
b1:c5:a8:26:89:f7:54:aa:2d:4e:f2:55:57:08:0c:34:49:1f:
f6:16:77:72:f2:be:71:4d:e5:7f:50:13:75:53:61:50:e1:4a:
17:69:cb:73:b7:2e:a5:ec:4c:7e:68:73:30:b8:68:e8:21:84:
d4:48:a2:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:15 2024 by rpki-client on console-fra.rpki-client.org