Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/P2C64YOGsVunblbaaY21q1BFy8E.roa
File: P2C64YOGsVunblbaaY21q1BFy8E.roa (raw, json)
Hash identifier: VZ1lp7khyxHNwKnRwqQIoOuypCF7TqJnUtiKvbIdQdI=
Subject key identifier: 3F:60:BA:E1:83:86:B1:5B:A7:6E:56:DA:69:8D:B5:AB:50:45:CB:C1
Certificate issuer: /CN=b0dfafd36730396fe338e772dadbe4c3c85cd952
Certificate serial: 0A58360E
Authority key identifier: B0:DF:AF:D3:67:30:39:6F:E3:38:E7:72:DA:DB:E4:C3:C8:5C:D9:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sN-v02cwOW_jOOdy2tvkw8hc2VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/P2C64YOGsVunblbaaY21q1BFy8E.roa
Signing time: Thu 19 May 2022 18:24:29 +0000
ROA not before: Thu 19 May 2022 18:24:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34577
IP address blocks: 45.66.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173553166 (0xa58360e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0dfafd36730396fe338e772dadbe4c3c85cd952
Validity
Not Before: May 19 18:24:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f60bae18386b15ba76e56da698db5ab5045cbc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:97:dd:d5:c4:7e:2c:d5:20:c0:b4:f4:b8:59:
bc:1c:cd:7b:ee:d3:ee:03:78:77:67:4f:b6:66:e8:
4d:ca:2e:e6:d5:55:d5:b3:2a:46:c1:f2:e7:b2:a0:
e8:68:55:c5:26:bd:27:de:b4:3c:91:77:a4:a3:b8:
24:9d:7c:f1:6a:9c:b1:e8:dd:2a:46:3e:99:43:be:
44:1a:a9:f4:3b:21:f1:78:07:19:42:be:96:06:8d:
22:7d:dd:4f:b8:3d:72:1e:be:34:c1:87:64:d5:a6:
0c:05:ce:89:8f:a0:b6:9e:0f:a9:9f:0d:5d:b7:5e:
54:e4:60:df:8a:63:cd:63:7a:f6:17:86:a0:93:28:
67:7b:70:2d:18:c1:28:3a:7e:16:66:b1:e5:69:4e:
99:39:e8:fc:80:1a:78:b7:cd:64:72:a1:74:04:94:
38:88:4b:68:05:c4:62:2f:62:6d:ea:19:0c:3a:11:
a7:33:06:b1:f6:83:f2:cc:81:fb:19:89:63:35:52:
f0:b6:16:a1:7d:90:b5:fd:9a:fd:df:09:4b:18:17:
62:89:7b:21:a7:2a:13:36:fb:b3:19:01:26:83:da:
af:c4:ca:b9:41:1d:26:cc:fc:9b:43:dc:3b:df:23:
f1:19:00:83:6d:fe:a2:44:fb:cd:8f:5c:5f:41:09:
c9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:60:BA:E1:83:86:B1:5B:A7:6E:56:DA:69:8D:B5:AB:50:45:CB:C1
X509v3 Authority Key Identifier:
keyid:B0:DF:AF:D3:67:30:39:6F:E3:38:E7:72:DA:DB:E4:C3:C8:5C:D9:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sN-v02cwOW_jOOdy2tvkw8hc2VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/P2C64YOGsVunblbaaY21q1BFy8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f696fd-4d9d-4e28-926e-0aa5b46bf8aa/1/sN-v02cwOW_jOOdy2tvkw8hc2VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.46.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:13:8e:91:58:7d:b9:ff:6f:2b:95:25:66:20:20:58:1c:79:
f4:9b:62:6e:c3:43:03:e6:e8:15:c4:13:7a:13:24:c4:a9:89:
8f:fc:5c:94:94:ac:c0:dc:e2:68:b7:d6:d7:e0:c6:4d:1e:9f:
5c:63:34:fe:82:a7:0b:96:7b:0c:07:be:70:a5:e4:76:90:9f:
dc:de:43:84:d0:ee:33:d0:40:98:40:e5:1a:05:ad:cc:59:08:
58:76:d7:0e:03:25:5f:8c:1d:82:a1:da:b8:9e:a5:9a:3c:ad:
08:04:fc:a7:25:fb:a9:60:77:70:2a:2c:0d:8c:72:7d:1a:62:
0c:c0:4d:1e:c6:86:a4:d1:50:d3:bf:ad:48:0e:c9:01:c6:27:
49:02:56:23:e9:ac:dc:18:bd:14:4d:56:f5:52:5c:a1:e6:93:
63:94:7a:3a:6c:12:ee:d8:80:08:06:12:e3:3e:ff:0d:c4:91:
b8:24:a9:74:2f:d5:2d:a5:df:95:3c:ad:a9:aa:44:dc:34:87:
65:1e:1c:92:9f:4f:bc:ce:6d:05:09:fe:fc:62:4d:ca:fb:fe:
09:dc:d7:9e:63:9d:63:2b:83:19:93:06:84:c2:03:2a:93:9d:
b9:11:1b:36:7a:b5:fc:0e:bf:4e:9f:51:22:cb:4f:c1:10:68:
a2:b2:97:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org