Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/gQV_yTvliX5wzinwydLlcYfuOfY.roa
File: gQV_yTvliX5wzinwydLlcYfuOfY.roa (raw, json)
Hash identifier: n7Ff/gzYOEIB+6MLqmiVuFhGs/835RtgoOa/JyaQ5vc=
Subject key identifier: 81:05:7F:C9:3B:E5:89:7E:70:CE:29:F0:C9:D2:E5:71:87:EE:39:F6
Certificate issuer: /CN=843d1afcf13bd2117d47df683e40a63287004cfe
Certificate serial: 0360D1F0
Authority key identifier: 84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/gQV_yTvliX5wzinwydLlcYfuOfY.roa
Signing time: Sat 01 Jan 2022 13:01:37 +0000
ROA not before: Sat 01 Jan 2022 13:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43004
IP address blocks: 45.142.84.0/24 maxlen: 24
45.142.84.4/32 maxlen: 32
45.142.84.2/32 maxlen: 32
45.142.84.3/32 maxlen: 32
45.142.84.1/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56676848 (0x360d1f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843d1afcf13bd2117d47df683e40a63287004cfe
Validity
Not Before: Jan 1 13:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81057fc93be5897e70ce29f0c9d2e57187ee39f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:17:5f:eb:82:a0:b0:ae:54:f3:10:ac:dc:12:
4e:ae:9a:37:51:9a:a7:94:a8:5e:d7:41:23:a8:2a:
1d:ca:f8:2c:e5:c8:81:1b:43:93:f6:2c:88:0e:cb:
c1:14:90:5e:c4:95:db:47:8c:38:73:7e:f2:2a:a1:
4d:17:47:f7:04:4b:44:74:81:db:00:c4:39:6e:ad:
56:eb:dd:ae:32:f1:d1:0a:a5:d0:ac:ff:7c:f8:d7:
82:b1:9c:ae:3e:70:7a:68:fe:c2:b2:5d:57:19:9e:
1a:75:f1:2d:82:a2:c8:09:bf:03:46:8c:7e:9b:a7:
9b:6e:b9:48:76:86:f7:41:f4:43:fd:03:e5:3c:3b:
28:b3:dc:ed:9d:47:19:f3:e5:f2:3a:f0:cc:c4:bb:
9f:f5:6b:4a:c6:9a:94:db:31:d7:bf:f1:19:7d:83:
aa:3a:31:82:78:92:9d:69:c0:c0:96:bc:2a:1f:95:
fe:8e:77:7e:9b:d1:a6:f4:f5:72:dc:87:30:e3:ff:
1a:07:c3:00:fd:6e:f8:63:0b:d6:07:b6:86:a0:a8:
f8:7f:fd:26:ad:eb:2f:ca:49:7a:f2:85:02:cc:43:
64:f7:fc:84:b0:47:69:74:01:8c:03:57:39:cc:9a:
b8:ed:74:4d:3c:d2:10:5a:74:43:c7:9d:56:41:7b:
ce:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:05:7F:C9:3B:E5:89:7E:70:CE:29:F0:C9:D2:E5:71:87:EE:39:F6
X509v3 Authority Key Identifier:
keyid:84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/gQV_yTvliX5wzinwydLlcYfuOfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.84.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:e1:27:4f:5e:bc:c0:b7:b7:11:ef:30:ad:e9:9c:0a:48:f9:
9b:12:1f:15:43:35:f9:44:44:bb:7d:5b:8f:3b:b4:9e:cd:9d:
52:4e:85:c3:c1:45:e2:4d:ce:15:84:64:64:c0:04:90:4a:48:
a0:ce:17:2c:97:e8:8d:3b:59:46:54:06:91:2c:60:45:46:e7:
3b:3f:e5:26:48:1f:db:97:8e:bd:ab:45:82:2a:59:9f:c1:db:
50:0a:52:c6:54:b8:d3:43:bc:26:7c:87:7b:7d:59:4d:0a:c3:
e0:52:9f:9a:84:b6:e7:b4:e8:3c:7e:76:b8:7f:82:39:6a:2c:
93:c2:ad:ba:65:9f:d9:75:4f:c7:9f:99:0a:45:0b:d2:f6:f6:
29:ab:40:07:88:6d:57:fe:80:49:8c:78:96:6d:18:87:c1:fb:
fa:d5:d8:53:4e:a8:b8:4a:37:b7:9a:bd:be:ae:e2:ac:b7:40:
43:ea:32:a4:1d:98:23:32:af:d9:2b:77:4c:5e:f5:b1:60:e9:
bf:c4:40:aa:cb:e9:de:e3:04:5f:7c:44:76:a6:4a:f4:03:36:
91:4f:63:07:d9:61:db:8c:5a:76:4d:56:67:94:36:a8:a4:57:
0f:a4:ea:7d:5e:a1:1c:69:0a:66:b4:57:10:67:51:81:b6:14:
a8:12:81:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:23 2024 by rpki-client on console-fra.rpki-client.org