Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/73ERyVMcj7thMCQiUI8XHx2gtX4.roa
File: 73ERyVMcj7thMCQiUI8XHx2gtX4.roa (raw, json)
Hash identifier: bHeWL/9zpgVpEcrt+CKQC6a5paNM8Hwlb+6BXUKb41I=
Subject key identifier: EF:71:11:C9:53:1C:8F:BB:61:30:24:22:50:8F:17:1F:1D:A0:B5:7E
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 0181DD9D509008A76C19286DBC2F6D31AA47
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/73ERyVMcj7thMCQiUI8XHx2gtX4.roa
Signing time: Fri 08 Jul 2022 11:41:23 +0000
ROA not before: Fri 08 Jul 2022 11:41:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204914
IP address blocks: 45.80.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dd:9d:50:90:08:a7:6c:19:28:6d:bc:2f:6d:31:aa:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Jul 8 11:41:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef7111c9531c8fbb61302422508f171f1da0b57e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:48:da:6c:0e:57:7d:48:79:09:27:88:79:b1:
67:59:5a:a9:77:40:44:25:fd:fc:2c:43:48:86:8d:
84:cc:26:86:a2:d6:c6:52:2b:fd:c1:4a:ab:22:2f:
8d:2a:9e:73:a9:33:87:1b:d1:61:7c:ad:fe:98:66:
2d:aa:ee:ce:a3:2d:a3:7c:84:a6:b8:5d:7f:7e:6a:
80:61:5d:22:c1:56:4e:0b:f4:eb:0d:c0:74:fb:1b:
89:c9:56:d3:cc:a8:d1:52:33:84:96:77:80:47:c7:
e4:9b:83:6b:60:41:00:6b:03:c2:eb:f9:75:58:3f:
51:b5:1c:55:11:ea:87:fc:e5:6f:14:69:b8:17:c8:
f1:12:f1:fe:ca:58:6b:65:cc:83:8a:ea:98:31:8b:
9f:06:6c:39:ac:57:2a:3f:b5:18:18:01:b4:b3:13:
62:ab:06:f6:fc:62:89:e5:fb:a9:28:cb:47:a5:65:
95:48:d9:83:4d:0f:90:a3:f4:49:99:1b:98:b9:2e:
8e:34:39:fd:85:f5:6c:8c:99:0e:45:6e:88:cc:8f:
84:59:ce:6f:4e:46:09:42:34:d8:7a:67:97:9f:c1:
be:dc:18:7e:45:cc:d2:97:d1:f3:2c:93:2d:e1:f2:
ec:dd:e7:fe:c4:c0:36:46:76:be:af:9c:f0:0b:56:
05:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:71:11:C9:53:1C:8F:BB:61:30:24:22:50:8F:17:1F:1D:A0:B5:7E
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/73ERyVMcj7thMCQiUI8XHx2gtX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.28.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:4b:c9:61:1d:a7:ca:b3:5b:7f:94:8a:6e:32:e6:6e:29:df:
6d:82:91:e6:43:84:62:b7:5e:bf:e7:ee:86:01:a9:e0:47:0b:
82:32:a0:f2:0e:a2:4b:fb:9b:40:9b:67:a9:0c:76:a7:e6:6c:
71:b4:13:d6:89:a8:10:ef:30:09:24:da:ef:b1:77:d2:78:91:
81:90:74:0b:b0:1e:14:4f:f6:99:21:c3:71:c1:46:a4:fb:98:
f1:b5:9c:8e:4a:c0:c4:be:79:a2:dc:9f:1b:ea:4d:1c:d7:04:
8d:07:1c:e6:b6:92:0c:12:53:c4:5f:92:f0:90:27:ba:c1:07:
fa:24:81:45:82:37:2f:a1:f3:55:59:6a:e6:e8:da:d5:81:30:
46:d6:f9:d4:dd:cf:fc:f2:7b:22:38:44:10:63:f7:f1:9e:65:
c9:4d:93:92:2a:92:98:c4:bd:f8:7d:32:ea:c9:f6:ae:67:3c:
33:eb:9c:89:b7:69:be:e3:d9:5a:60:0d:fe:a4:b0:49:d6:a2:
4e:4b:4d:1c:47:27:37:c6:f4:f5:c3:f1:e2:50:df:87:b0:40:
cb:66:31:2f:c6:7b:ea:71:e9:c2:c0:d8:0c:85:6a:3d:79:04:
c2:e2:0a:86:4e:c8:f9:bc:f4:77:ec:9b:b2:24:30:18:f5:0c:
3a:b5:65:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:12 2024 by rpki-client on console-fra.rpki-client.org