Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/acfcb6-d78a-448a-a761-dd3b4f8381c4/1/qPkBVHi0HoO48mixrpFrT1si9RA.roa
File: qPkBVHi0HoO48mixrpFrT1si9RA.roa (raw, json)
Hash identifier: wRmCF+cVJOddOIxVMrJVTG08Bk8V8e41oNE/eLb93ic=
Subject key identifier: A8:F9:01:54:78:B4:1E:83:B8:F2:68:B1:AE:91:6B:4F:5B:22:F5:10
Certificate issuer: /CN=509df728d1b46634054972d2945fda58073b5762
Certificate serial: 09858EC4
Authority key identifier: 50:9D:F7:28:D1:B4:66:34:05:49:72:D2:94:5F:DA:58:07:3B:57:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJ33KNG0ZjQFSXLSlF_aWAc7V2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/acfcb6-d78a-448a-a761-dd3b4f8381c4/1/qPkBVHi0HoO48mixrpFrT1si9RA.roa
Signing time: Fri 01 Apr 2022 23:29:11 +0000
ROA not before: Fri 01 Apr 2022 23:29:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208972
IP address blocks: 45.12.55.0/24 maxlen: 24
45.12.54.0/24 maxlen: 24
2a0a:4944::/30 maxlen: 48
2a0a:4940::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159747780 (0x9858ec4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509df728d1b46634054972d2945fda58073b5762
Validity
Not Before: Apr 1 23:29:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8f9015478b41e83b8f268b1ae916b4f5b22f510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1d:b6:88:02:bf:55:37:ec:d7:53:f9:48:d4:
9b:c5:61:4c:17:90:e9:f6:4d:fb:fe:40:74:23:fb:
11:dd:6b:17:18:78:81:ed:38:ca:ed:3b:fd:f1:0f:
c0:cc:32:71:57:5d:62:e2:58:51:44:db:27:0b:be:
3e:9f:ca:8d:ea:55:c5:dc:49:b7:d2:6b:74:23:1b:
06:8a:96:ea:43:b1:ef:45:2f:df:b3:c3:d0:fb:9d:
8b:5e:31:ca:ea:81:2b:d3:a0:82:e2:1d:3e:5c:2f:
03:72:f2:5c:dc:a9:d5:9e:54:cb:a3:db:c3:f2:4c:
12:65:8e:cd:0a:e1:95:7b:b7:fb:8b:21:b8:b4:2d:
60:b6:fd:71:27:c3:ea:cd:7e:ae:4c:af:06:57:f1:
d8:11:3a:97:2d:45:b7:1d:8d:c3:9e:cf:94:8a:6b:
c7:2d:3e:72:22:c3:fe:cb:35:e1:16:01:7b:cd:cd:
92:e0:82:c6:b4:81:47:58:7f:de:17:1a:d7:aa:b3:
28:ce:4b:c3:1a:63:18:f0:6e:6c:d7:47:cf:a9:ba:
a3:c9:c9:60:a2:89:76:05:28:42:03:50:c1:46:11:
75:22:97:ea:c0:90:83:25:38:0f:80:b0:62:36:67:
98:8d:64:53:e2:23:f2:29:95:5e:a1:4c:fd:18:7c:
96:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F9:01:54:78:B4:1E:83:B8:F2:68:B1:AE:91:6B:4F:5B:22:F5:10
X509v3 Authority Key Identifier:
keyid:50:9D:F7:28:D1:B4:66:34:05:49:72:D2:94:5F:DA:58:07:3B:57:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJ33KNG0ZjQFSXLSlF_aWAc7V2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/acfcb6-d78a-448a-a761-dd3b4f8381c4/1/qPkBVHi0HoO48mixrpFrT1si9RA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/acfcb6-d78a-448a-a761-dd3b4f8381c4/1/UJ33KNG0ZjQFSXLSlF_aWAc7V2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.54.0/23
IPv6:
2a0a:4940::/29
Signature Algorithm: sha256WithRSAEncryption
9c:b6:4d:32:73:b7:b6:8d:c7:55:5e:33:6f:95:52:14:2c:2a:
7c:21:8f:ed:cf:f0:4f:a5:5f:cd:a2:f7:2d:d0:7b:16:f4:7e:
e6:c7:5f:ba:00:46:14:f8:39:74:67:59:a4:a3:61:9f:4e:ba:
1a:e3:c0:15:81:9b:cd:11:b8:00:d6:63:dc:b7:1f:83:d2:3e:
b8:65:08:74:63:1d:5e:c7:b5:dd:74:1f:59:90:96:cf:0b:76:
fc:3d:ba:16:b2:0c:96:af:70:9e:98:a3:17:62:e2:50:17:af:
b1:c7:a0:ba:c8:66:03:15:d1:d9:78:ef:55:3a:a4:bf:06:74:
21:a0:66:59:7f:e7:e7:22:eb:37:95:c8:ff:36:8b:9b:46:c5:
8e:4b:b3:fd:9a:1d:ea:40:c2:70:25:d5:ec:1a:dc:59:42:03:
3c:a6:5c:c0:7b:9f:06:f7:3f:7d:41:3a:00:51:17:4e:dd:65:
9e:08:1b:ba:1f:d3:5e:0d:b1:ce:9a:68:8a:63:66:0e:b0:76:
a8:81:25:c0:5e:ef:76:73:43:d5:f5:0d:23:3d:c6:ed:f4:94:
60:05:53:a4:e9:b6:d5:ce:d5:61:54:bb:0d:f7:0b:b3:8e:7b:
27:1e:ca:51:4b:48:24:f6:90:27:3b:db:c5:be:61:54:05:fe:
e2:f7:ed:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:09 2024 by rpki-client on console-ams.rpki-client.org