Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/Su593qUXDytsCn-doRzL5RzkC5k.roa
File: Su593qUXDytsCn-doRzL5RzkC5k.roa (raw, json)
Hash identifier: /mm6Fz6S1xXhqeekJMRlEFWWYKytYt/NQl1rUrUjUf4=
Subject key identifier: 4A:EE:7D:DE:A5:17:0F:2B:6C:0A:7F:9D:A1:1C:CB:E5:1C:E4:0B:99
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 0182112F0377ECD2BB50B9D180E486DE82B8
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/Su593qUXDytsCn-doRzL5RzkC5k.roa
Signing time: Mon 18 Jul 2022 12:01:09 +0000
ROA not before: Mon 18 Jul 2022 12:01:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137409
IP address blocks: 45.84.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:11:2f:03:77:ec:d2:bb:50:b9:d1:80:e4:86:de:82:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Jul 18 12:01:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4aee7ddea5170f2b6c0a7f9da11ccbe51ce40b99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1e:0f:80:1b:66:66:41:89:bd:e5:9b:26:65:
a3:7c:ba:15:b7:d7:58:e7:cc:39:fe:48:30:34:1b:
f9:ae:35:13:63:65:82:8e:c6:9c:53:f1:47:a0:fb:
51:e3:0b:61:f8:c0:0f:f9:c0:32:02:10:69:de:57:
76:6f:d1:90:ed:14:2f:3c:e9:75:f6:c2:04:b8:59:
55:dd:cc:30:3c:e7:c0:6b:43:90:5c:3e:7b:76:57:
33:e3:70:71:da:84:da:db:4d:3b:25:04:ad:91:09:
5b:96:ff:f6:f2:1c:1f:2f:43:14:eb:fc:7a:6e:be:
eb:55:e7:9d:96:77:75:98:51:73:d1:72:d5:4c:57:
d7:96:aa:ce:b7:b0:e6:5b:0d:5d:c4:9d:09:d5:d2:
5a:8b:82:ba:80:f8:57:9a:44:cd:2c:b5:78:db:b7:
eb:7c:3c:12:4a:1e:d8:c1:e8:76:4e:8a:e3:bb:3d:
d1:e0:73:49:c8:8d:c9:fa:1f:c6:6b:ef:0e:c9:3e:
3f:35:72:da:db:12:0e:fd:03:65:da:9e:b2:2d:85:
25:69:88:cd:57:e2:2c:55:09:f8:54:08:bd:e6:9a:
3e:50:e7:a8:23:38:f3:80:31:01:d9:4a:65:e8:e3:
07:99:db:c2:64:56:b4:4c:f8:a3:6d:79:e4:a8:ef:
07:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:EE:7D:DE:A5:17:0F:2B:6C:0A:7F:9D:A1:1C:CB:E5:1C:E4:0B:99
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/Su593qUXDytsCn-doRzL5RzkC5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.56.0/24
Signature Algorithm: sha256WithRSAEncryption
98:f2:6e:b4:5d:44:d1:24:c8:60:d7:a1:37:63:e9:ef:51:07:
bd:5c:2e:91:89:55:32:6b:0c:3d:81:66:76:53:84:17:f9:96:
1d:ab:82:0c:a2:47:ae:52:92:ea:5d:ae:92:0c:63:c0:14:17:
f5:7f:0a:b9:2e:02:3b:ea:53:77:20:6b:2f:ff:7e:4d:96:0b:
24:42:3d:b7:97:bd:81:07:6d:31:cb:fa:e8:3e:cb:2d:a6:a3:
83:e1:e3:bc:ea:ee:69:9c:92:28:c5:00:43:87:bd:e8:bb:af:
4d:bc:6b:c9:8f:ae:9c:02:d9:9e:f0:13:08:fe:75:4e:32:c8:
d3:bd:b5:c4:c2:fc:4b:18:1d:18:90:2e:e2:64:f8:83:5d:7b:
cf:f9:01:75:cc:a4:cf:bd:cf:5c:79:5b:b8:df:e9:09:d4:e8:
22:02:65:f2:c3:8e:8f:1a:e6:45:a1:74:95:7f:ab:86:90:c4:
98:1e:64:cb:56:7c:a2:76:0f:4b:5a:59:d2:53:75:41:b7:6a:
ac:73:c1:f6:c8:82:56:3a:20:b1:58:83:9b:b3:cd:5d:2b:ba:
c0:4f:5a:6c:0f:25:37:45:2e:f3:89:a1:86:ac:d8:73:39:92:
de:56:cf:48:4c:2c:75:1d:da:f7:8f:a6:7b:0d:95:c0:ea:f6:
dd:36:20:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:54 2024 by rpki-client on console-fra.rpki-client.org