Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/42db52-dca7-4fa3-9a73-1d7b229d4e3b/1/SBtzZLNq4I3R6s7MqOrT4a_4aVw.roa
File: SBtzZLNq4I3R6s7MqOrT4a_4aVw.roa (raw, json)
Hash identifier: lOvN3BhO4UzCKdtYUr9UxYNM8u0Z9eUcdoI0WMMMqsc=
Subject key identifier: 48:1B:73:64:B3:6A:E0:8D:D1:EA:CE:CC:A8:EA:D3:E1:AF:F8:69:5C
Certificate issuer: /CN=45aa88dc675ce5dc35574bff6290e2ae88ce082b
Certificate serial: 0371F659
Authority key identifier: 45:AA:88:DC:67:5C:E5:DC:35:57:4B:FF:62:90:E2:AE:88:CE:08:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RaqI3Gdc5dw1V0v_YpDirojOCCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/42db52-dca7-4fa3-9a73-1d7b229d4e3b/1/SBtzZLNq4I3R6s7MqOrT4a_4aVw.roa
Signing time: Sat 01 Jan 2022 08:01:17 +0000
ROA not before: Sat 01 Jan 2022 08:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212196
IP address blocks: 87.239.176.0/21 maxlen: 24
2001:67c:2b28::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57800281 (0x371f659)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45aa88dc675ce5dc35574bff6290e2ae88ce082b
Validity
Not Before: Jan 1 08:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=481b7364b36ae08dd1eacecca8ead3e1aff8695c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2a:35:b4:0f:f6:2c:fd:22:2a:bd:7f:6a:6c:
f9:71:78:23:0e:11:a8:f8:a2:fe:04:bd:5a:08:04:
3a:3c:2b:95:5b:82:ef:97:4f:42:19:8e:1e:71:0c:
23:2a:3b:39:3b:b2:3c:4c:a1:05:e5:2b:b0:05:11:
b9:df:d9:4e:a1:75:a9:e4:63:c0:a3:51:90:b6:c4:
81:bb:9b:60:39:25:54:b5:0d:92:bb:a2:4a:22:86:
bf:04:3d:d4:b4:e3:73:04:81:0f:db:bf:2e:75:2c:
7c:b6:71:79:29:08:8b:e7:06:35:b2:fd:6a:a0:b7:
77:56:8f:e7:d2:71:b0:fe:11:d9:8f:2f:68:00:7e:
d9:29:6b:92:7e:53:1b:f1:05:00:38:c2:95:32:c1:
09:c8:10:5a:5f:ba:af:f4:c4:a4:7e:98:77:30:3f:
5c:13:1e:ae:d1:8b:26:fa:03:2a:cf:c6:e8:53:a7:
cf:82:a4:99:33:c3:51:f9:b5:cd:18:4b:85:0a:37:
53:25:64:76:2f:94:2f:9a:41:11:e3:5e:9c:63:3f:
3c:9a:ca:09:a9:24:c2:15:06:33:3f:d0:59:b0:db:
60:50:2a:86:67:12:51:9f:8b:27:fc:4b:cb:31:9c:
42:a9:d7:e7:92:94:72:59:18:1e:2b:e9:73:82:20:
15:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:1B:73:64:B3:6A:E0:8D:D1:EA:CE:CC:A8:EA:D3:E1:AF:F8:69:5C
X509v3 Authority Key Identifier:
keyid:45:AA:88:DC:67:5C:E5:DC:35:57:4B:FF:62:90:E2:AE:88:CE:08:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RaqI3Gdc5dw1V0v_YpDirojOCCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/42db52-dca7-4fa3-9a73-1d7b229d4e3b/1/SBtzZLNq4I3R6s7MqOrT4a_4aVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/42db52-dca7-4fa3-9a73-1d7b229d4e3b/1/RaqI3Gdc5dw1V0v_YpDirojOCCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.176.0/21
IPv6:
2001:67c:2b28::/48
Signature Algorithm: sha256WithRSAEncryption
93:af:8f:08:13:c6:d0:fb:95:6d:59:ca:bf:ee:75:3e:bb:f9:
42:27:4e:6c:1d:fd:d2:27:57:dd:5c:94:0a:d9:c8:9e:ba:48:
30:41:32:e1:7b:10:8e:12:f5:63:a5:ef:18:22:74:e4:10:bc:
65:c9:7f:3c:51:42:9c:8c:31:28:ae:27:2f:bf:31:6e:e8:5c:
2e:f3:fc:4e:05:ca:8d:6d:af:25:a5:de:b8:dc:d6:d1:cb:6e:
ce:c7:9b:78:37:ea:f9:f4:9b:54:a3:17:6b:ae:41:73:51:bb:
e1:f3:fa:b7:5d:cb:f2:cb:41:70:2b:f2:bb:d0:b8:26:72:76:
cf:c3:44:cd:ab:2c:35:34:8a:54:a9:0c:54:e9:0e:a7:77:f3:
08:60:b0:c8:8e:f7:5e:61:a3:35:52:b2:a6:d8:09:e3:51:76:
ca:f0:ce:46:9e:f4:dd:22:f0:5d:7c:d1:03:af:f8:13:5d:04:
43:74:3c:0a:c1:0f:08:08:8c:ec:49:84:58:47:90:33:b5:0a:
42:30:e3:12:62:2e:4e:f0:70:71:3b:3f:8f:4d:47:12:6e:64:
32:62:26:9e:5a:bd:04:2c:62:a5:0a:21:fd:3b:8e:e9:be:f0:
9c:ec:b0:ee:64:2c:67:bf:9c:b5:8e:64:8c:19:45:64:79:84:
d6:82:e5:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:24 2024 by rpki-client on console-fra.rpki-client.org