Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/dfc110-7924-49a9-8564-0bebfcbde1f3/1/sSPEG7v_RtQHXnlHv0VuQdpsPkg.roa
File: sSPEG7v_RtQHXnlHv0VuQdpsPkg.roa (raw, json)
Hash identifier: Pz+cy1GS4DfbHEWNpkptJZ5+wJAqRVuYTX+3X2L1jyI=
Subject key identifier: B1:23:C4:1B:BB:FF:46:D4:07:5E:79:47:BF:45:6E:41:DA:6C:3E:48
Certificate issuer: /CN=736d724e239efb7f2f7bea526a9e0c5e7fc89bbe
Certificate serial: 076AD48E
Authority key identifier: 73:6D:72:4E:23:9E:FB:7F:2F:7B:EA:52:6A:9E:0C:5E:7F:C8:9B:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c21yTiOe-38ve-pSap4MXn_Im74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/dfc110-7924-49a9-8564-0bebfcbde1f3/1/sSPEG7v_RtQHXnlHv0VuQdpsPkg.roa
Signing time: Sat 01 Jan 2022 03:55:03 +0000
ROA not before: Sat 01 Jan 2022 03:55:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208200
IP address blocks: 45.154.72.0/23 maxlen: 24
2a0f:b300:1000::/36 maxlen: 48
2a0f:b300::/36 maxlen: 48
2a0f:b300:b300::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124441742 (0x76ad48e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=736d724e239efb7f2f7bea526a9e0c5e7fc89bbe
Validity
Not Before: Jan 1 03:55:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b123c41bbbff46d4075e7947bf456e41da6c3e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b7:70:fe:f7:0a:a1:95:3d:d0:3a:56:81:e8:
67:6d:4b:3d:26:94:20:31:9c:0b:84:70:a3:c1:22:
cc:38:15:ed:3e:bb:44:2f:70:7f:9d:32:ef:75:e7:
5f:c8:67:22:8e:11:4a:27:26:56:17:e6:23:2a:58:
51:e9:48:90:c6:72:e2:fe:b0:0f:bd:b6:54:22:60:
84:da:79:ca:cb:ac:93:2b:78:e9:e6:81:77:3f:79:
45:a4:e2:b8:3d:d1:76:37:03:f1:08:4a:06:8a:4e:
27:af:5a:f5:8b:a4:e8:36:7d:de:0f:3c:fc:81:0c:
49:6c:54:54:54:30:6b:f1:fe:e8:c7:50:9b:87:55:
3c:32:d2:ab:9e:21:05:40:ae:fa:6c:12:bc:2c:7c:
7b:ea:b0:67:24:66:64:dc:8f:2a:12:40:02:fe:05:
8a:2f:2f:6d:e9:23:42:22:cc:ac:f4:75:bf:80:0e:
7f:f6:b2:86:2b:4d:ed:a8:31:64:47:dd:ca:58:35:
96:20:83:2d:d3:e7:9a:1c:88:85:e2:91:6d:20:f0:
31:9b:f3:28:a1:2f:8f:55:0b:84:25:30:bb:d6:b3:
43:81:4c:e3:e2:7e:26:f0:b6:84:58:3a:3f:b0:a7:
b7:68:f6:27:64:76:b0:bc:ff:e3:c3:eb:e7:a3:36:
61:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:23:C4:1B:BB:FF:46:D4:07:5E:79:47:BF:45:6E:41:DA:6C:3E:48
X509v3 Authority Key Identifier:
keyid:73:6D:72:4E:23:9E:FB:7F:2F:7B:EA:52:6A:9E:0C:5E:7F:C8:9B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c21yTiOe-38ve-pSap4MXn_Im74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dfc110-7924-49a9-8564-0bebfcbde1f3/1/sSPEG7v_RtQHXnlHv0VuQdpsPkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dfc110-7924-49a9-8564-0bebfcbde1f3/1/c21yTiOe-38ve-pSap4MXn_Im74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.72.0/23
IPv6:
2a0f:b300::/35
2a0f:b300:b300::/48
Signature Algorithm: sha256WithRSAEncryption
8f:c7:64:26:de:48:40:a7:b5:55:b4:3f:a3:0b:f0:ed:11:9a:
50:6e:ba:dd:24:0c:1a:33:d5:a7:84:3e:9b:19:7c:a0:1f:17:
fc:fd:bb:ad:ae:76:80:a4:6a:53:f0:cc:0b:b0:d7:07:b3:e7:
1a:31:8f:b2:53:05:93:64:05:02:4a:22:29:6f:15:84:16:78:
2f:03:e9:7b:49:dc:48:04:22:e3:9f:91:e3:6a:51:53:d8:57:
4b:b8:da:2c:9c:96:c1:eb:e1:c1:46:f6:8e:9f:6d:39:01:e6:
c4:5d:c0:4a:28:4a:4a:82:1f:d9:8b:de:ff:44:4e:bf:6a:97:
ab:55:c2:7d:37:73:7a:b5:fc:6b:fe:66:c9:a0:f8:b7:00:79:
1f:3b:23:29:5b:57:d7:17:46:69:7a:df:07:3b:bc:d9:08:e7:
32:54:23:03:2d:bf:b9:83:fa:88:a8:3f:df:40:13:13:5e:01:
b6:b6:d8:e1:b0:00:9d:c2:c3:eb:bb:b7:6d:7e:e0:2d:66:1b:
65:63:0f:4b:3a:c0:9e:17:a1:b2:45:0d:09:15:50:b2:9c:f2:
97:c1:58:5c:b5:91:a2:77:27:eb:7b:e0:a8:6a:a2:e9:70:8a:
e1:d1:7a:f1:07:6b:a5:84:06:76:ae:be:b4:00:9f:7c:4e:9a:
b8:cd:bd:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:34 2024 by rpki-client on console-fra.rpki-client.org