Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/70c451-876e-4581-98dd-08618e6b2c1c/1/G9ffX5ywS0zv6ex-kT5h-W9WJyY.roa
File: G9ffX5ywS0zv6ex-kT5h-W9WJyY.roa (raw, json)
Hash identifier: 7LFASRr4wBakjsCs+59jcAzZ/xYyhN8NYbFRscF/qGs=
Subject key identifier: 1B:D7:DF:5F:9C:B0:4B:4C:EF:E9:EC:7E:91:3E:61:F9:6F:56:27:26
Certificate issuer: /CN=be810fb3ce83c623c7c9894fadb595310d41818f
Certificate serial: 0184C4974E7A1FE8C6D978D041F259E0B077
Authority key identifier: BE:81:0F:B3:CE:83:C6:23:C7:C9:89:4F:AD:B5:95:31:0D:41:81:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/voEPs86DxiPHyYlPrbWVMQ1BgY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/70c451-876e-4581-98dd-08618e6b2c1c/1/G9ffX5ywS0zv6ex-kT5h-W9WJyY.roa
Signing time: Tue 29 Nov 2022 18:12:41 +0000
ROA not before: Tue 29 Nov 2022 18:12:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213373
IP address blocks: 45.141.56.0/24 maxlen: 24
45.141.58.0/24 maxlen: 24
45.141.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c4:97:4e:7a:1f:e8:c6:d9:78:d0:41:f2:59:e0:b0:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be810fb3ce83c623c7c9894fadb595310d41818f
Validity
Not Before: Nov 29 18:12:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bd7df5f9cb04b4cefe9ec7e913e61f96f562726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:08:1f:9f:22:e7:73:23:22:63:6a:b2:f7:71:
da:fb:99:fc:1d:ea:c5:af:27:ad:46:8b:20:9e:7e:
42:4c:e7:0b:a1:3b:6a:5b:72:d3:93:6a:56:ca:f9:
e9:8e:ed:41:04:31:43:9a:0f:f6:c9:7c:93:d1:d6:
3b:49:10:54:f6:38:69:e5:d2:64:e4:51:c7:cb:1d:
e6:24:15:d5:d9:cd:69:f7:9b:f8:a3:24:11:d8:06:
e2:f1:5e:46:8d:82:40:a5:f0:8d:a7:5e:5c:68:a1:
97:23:86:ac:7a:7a:d0:87:75:96:4c:9a:d8:98:f4:
19:11:f9:f4:1d:5d:a4:20:72:ff:ee:f3:4b:6b:67:
0d:f1:e8:71:e9:20:a7:f2:03:a8:58:11:0f:93:8e:
46:ef:e3:da:9b:32:f9:8d:81:ec:cb:c3:07:69:f4:
4a:9a:45:69:24:0b:cf:4d:cf:29:1c:23:2a:f9:96:
c4:08:e2:ba:4e:74:e0:c4:58:85:17:fe:eb:34:ec:
3e:9a:cf:ba:30:79:4d:68:33:aa:b7:a4:a8:e5:e0:
3f:c5:57:2c:da:25:f3:d7:c1:db:46:3d:b5:30:2c:
75:9c:27:43:9f:4c:15:23:41:a4:cf:7f:f4:4c:c0:
cc:35:13:47:76:e7:e6:9d:b8:01:cd:d9:a8:ea:0c:
fe:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D7:DF:5F:9C:B0:4B:4C:EF:E9:EC:7E:91:3E:61:F9:6F:56:27:26
X509v3 Authority Key Identifier:
keyid:BE:81:0F:B3:CE:83:C6:23:C7:C9:89:4F:AD:B5:95:31:0D:41:81:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/voEPs86DxiPHyYlPrbWVMQ1BgY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/70c451-876e-4581-98dd-08618e6b2c1c/1/G9ffX5ywS0zv6ex-kT5h-W9WJyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/70c451-876e-4581-98dd-08618e6b2c1c/1/voEPs86DxiPHyYlPrbWVMQ1BgY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.56.0/24
45.141.58.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:1f:e8:fb:a4:5f:36:de:4b:ab:bf:68:7a:87:5d:e6:10:06:
5f:e5:92:11:7e:e0:9c:ff:de:e3:cc:e2:94:23:ad:d3:5e:9a:
65:e7:a0:2a:6f:56:5d:b2:07:c8:2d:86:9a:82:d0:fc:6f:fd:
98:4d:2b:65:62:92:e4:15:ad:bc:18:a2:ce:e5:81:8f:b2:85:
ea:0d:54:b3:d8:05:f1:d4:18:0d:1d:00:31:03:6e:28:b9:a4:
7c:3b:02:d1:bb:1b:43:7b:c6:12:4a:8d:90:f1:c4:e4:82:a2:
af:5b:e9:b3:80:e4:49:a3:df:3f:f8:17:f8:22:11:39:14:3e:
fd:c9:3a:cb:5b:1d:bf:56:cf:86:1e:f2:9b:fe:fa:e9:6c:dd:
75:b6:45:b1:a7:e4:61:90:17:58:d8:37:89:28:75:cc:8e:14:
6c:90:40:ee:8b:1c:80:15:dd:9c:9f:07:ca:20:79:0f:71:22:
d2:7b:3a:f9:d9:87:96:62:da:ba:de:a2:9e:d4:c6:8a:24:c8:
10:25:32:0d:7b:69:57:1a:8c:41:7a:c0:7f:d9:b4:ac:6d:e9:
03:5c:8d:29:7f:46:2c:bb:ed:ee:ce:ff:a7:b8:17:db:d3:04:
d5:b3:16:92:c7:ed:47:55:7e:26:10:d9:5b:8b:7f:1a:47:e9:
46:93:1d:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:42 2024 by rpki-client on console-ams.rpki-client.org