Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/K5uRFBWWOEisqjXj-zeesghdZEQ.roa
File: K5uRFBWWOEisqjXj-zeesghdZEQ.roa (raw, json)
Hash identifier: Q30k1q0F53OFulZF0wMagDnGiwqNUe5cfpI+NwfH1V8=
Subject key identifier: 2B:9B:91:14:15:96:38:48:AC:AA:35:E3:FB:37:9E:B2:08:5D:64:44
Certificate issuer: /CN=40d55b78836a93fb6f9ec9fa7a79ed9b8bea2ba1
Certificate serial: 0760797B
Authority key identifier: 40:D5:5B:78:83:6A:93:FB:6F:9E:C9:FA:7A:79:ED:9B:8B:EA:2B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNVbeINqk_tvnsn6enntm4vqK6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/K5uRFBWWOEisqjXj-zeesghdZEQ.roa
Signing time: Sat 01 Jan 2022 07:59:16 +0000
ROA not before: Sat 01 Jan 2022 07:59:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43090
IP address blocks: 45.129.192.0/24 maxlen: 24
2a0e:4dc0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123763067 (0x760797b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40d55b78836a93fb6f9ec9fa7a79ed9b8bea2ba1
Validity
Not Before: Jan 1 07:59:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b9b911415963848acaa35e3fb379eb2085d6444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:91:31:c6:19:fe:5d:a0:cf:8e:c4:9e:6e:b9:
cd:cc:84:61:62:af:a7:9f:ba:0a:7b:e8:b0:34:68:
c7:fd:34:48:aa:7a:cc:68:a5:13:d3:ff:47:e8:b2:
f5:af:16:0e:1b:2c:c3:49:f4:9a:04:8a:44:cb:38:
c6:6c:bd:55:80:c1:84:60:20:c9:23:0d:67:f8:da:
02:97:a5:15:25:b9:f4:46:64:b5:9c:f4:52:d4:24:
70:17:2b:87:03:81:e3:cc:ae:1c:fc:52:80:18:4c:
78:aa:72:79:23:71:4b:4c:15:2e:00:4e:e2:91:5c:
8e:85:1f:68:a1:64:e2:24:fe:d1:81:58:2c:37:fb:
5b:dd:ac:19:7f:41:34:e9:4c:9d:66:34:70:14:14:
49:d8:00:2e:b4:5b:f6:1d:a7:1b:e7:ad:90:e2:9a:
ab:60:48:19:ac:61:ea:0e:0a:97:42:52:7a:74:09:
15:ef:20:7d:0d:ce:ac:6e:1f:2d:1c:3e:ce:c9:bb:
93:d7:49:a1:2a:04:44:0c:44:24:fb:30:b6:33:24:
4f:ee:bc:0b:12:ba:db:0b:24:63:d4:57:28:11:0c:
45:45:1e:50:27:1a:2e:18:15:a7:4d:99:40:74:06:
f5:0f:c7:66:e7:39:a5:00:96:fa:f6:4a:e4:b0:c2:
8c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:9B:91:14:15:96:38:48:AC:AA:35:E3:FB:37:9E:B2:08:5D:64:44
X509v3 Authority Key Identifier:
keyid:40:D5:5B:78:83:6A:93:FB:6F:9E:C9:FA:7A:79:ED:9B:8B:EA:2B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNVbeINqk_tvnsn6enntm4vqK6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/K5uRFBWWOEisqjXj-zeesghdZEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c76d85-6864-4b37-bdb3-92e8be6279bb/1/QNVbeINqk_tvnsn6enntm4vqK6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.192.0/24
IPv6:
2a0e:4dc0::/29
Signature Algorithm: sha256WithRSAEncryption
89:5f:4a:fd:f6:a9:f3:29:ec:11:fe:28:fc:4a:87:fe:15:ce:
02:7b:8b:71:2e:6e:d0:25:c0:f8:4d:e5:1b:36:6e:e3:f9:96:
4f:8b:07:29:2a:05:a7:d1:4e:18:6d:48:35:29:ce:e0:78:c0:
6f:e6:a9:70:cc:8b:28:12:6b:cb:09:01:7f:77:4a:ce:97:b0:
7c:8a:88:d7:8e:95:74:bb:86:63:33:a5:b2:b8:6b:c7:96:dc:
9b:d7:72:30:36:ef:9f:cd:61:72:16:56:c8:84:27:5b:d8:84:
99:eb:4c:3d:4e:55:d6:03:e1:1a:0d:08:b9:f2:37:26:7e:3a:
42:0d:77:ea:9c:6c:c3:92:4e:30:82:a7:0a:0f:6d:e7:69:a2:
d5:9e:05:5a:c8:09:29:db:ba:cd:12:b9:44:ed:90:52:fd:ab:
e7:a0:ba:4c:74:f2:be:44:4d:bb:cd:90:9d:fb:5f:ca:35:8a:
aa:7a:d8:d9:23:60:33:e5:72:15:ce:1d:39:6c:ee:db:18:6b:
30:49:16:ed:94:05:1a:74:20:8e:28:76:73:1d:10:66:6f:46:
24:47:72:5b:75:a0:f7:4e:77:32:de:96:fb:66:c9:32:9d:de:
22:3e:c7:ff:50:c8:13:7b:b2:21:07:6b:69:f7:3a:a4:17:cb:
fc:0b:4c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:18 2024 by rpki-client on console-ams.rpki-client.org