Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/8d9136-1cb2-4349-ab86-5dc392de637b/1/pLjeOai8emkA1pA8o7WnzaQDDpU.roa
File: pLjeOai8emkA1pA8o7WnzaQDDpU.roa (raw, json)
Hash identifier: fr710705GQ6Kf9YNzih8x1qiluSgNoQYTkNjBZL9xp8=
Subject key identifier: A4:B8:DE:39:A8:BC:7A:69:00:D6:90:3C:A3:B5:A7:CD:A4:03:0E:95
Certificate issuer: /CN=78356c6a831680e9b8b7c95514953007a9407e87
Certificate serial: 07572888
Authority key identifier: 78:35:6C:6A:83:16:80:E9:B8:B7:C9:55:14:95:30:07:A9:40:7E:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eDVsaoMWgOm4t8lVFJUwB6lAfoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/8d9136-1cb2-4349-ab86-5dc392de637b/1/pLjeOai8emkA1pA8o7WnzaQDDpU.roa
Signing time: Sat 01 Jan 2022 11:02:54 +0000
ROA not before: Sat 01 Jan 2022 11:02:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48596
IP address blocks: 185.181.104.0/22 maxlen: 24
45.87.156.0/22 maxlen: 24
2a0a:c980::/29 maxlen: 48
2a02:d500::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123152520 (0x7572888)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78356c6a831680e9b8b7c95514953007a9407e87
Validity
Not Before: Jan 1 11:02:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4b8de39a8bc7a6900d6903ca3b5a7cda4030e95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4a:d1:81:a7:a8:8a:54:e8:57:8e:b4:51:65:
29:36:31:81:f4:20:ee:a2:9f:41:6e:eb:66:1b:89:
b0:ed:7e:f2:4a:43:ca:f7:ee:3f:67:a3:ac:03:c8:
bc:c0:0f:b8:53:07:89:c9:27:2b:34:ca:ef:32:72:
9a:9e:c3:90:8c:28:46:75:2d:f6:65:a6:9b:7d:43:
db:cf:a8:34:36:22:9f:be:95:49:4a:84:ab:04:34:
39:d0:b8:f2:90:e9:1c:28:e7:6e:c8:64:3d:06:c2:
54:54:5e:b9:3a:8e:72:56:2d:7c:5a:1b:a3:d6:c3:
ff:2b:b3:bb:f0:a5:e9:5b:9b:ac:05:d6:73:71:86:
2e:44:d0:74:30:25:6c:10:d7:83:7d:66:3e:cc:d1:
0a:ca:71:3e:a9:34:ac:02:9e:21:9c:58:ca:d4:8e:
54:01:23:60:cb:8a:8e:40:b4:44:0f:7a:d9:8f:75:
d5:ed:61:a6:c5:ff:1a:1c:92:74:96:68:14:6b:84:
94:68:b7:49:3e:05:0a:b3:c4:c4:f3:a7:64:d3:b3:
a9:f1:90:33:d8:47:1f:12:35:b2:75:59:ab:f4:b6:
40:97:42:dd:27:a5:1e:d6:e6:72:82:11:39:ba:82:
64:54:38:fa:03:4b:aa:9b:a0:2a:64:a0:31:f3:d9:
39:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B8:DE:39:A8:BC:7A:69:00:D6:90:3C:A3:B5:A7:CD:A4:03:0E:95
X509v3 Authority Key Identifier:
keyid:78:35:6C:6A:83:16:80:E9:B8:B7:C9:55:14:95:30:07:A9:40:7E:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eDVsaoMWgOm4t8lVFJUwB6lAfoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/8d9136-1cb2-4349-ab86-5dc392de637b/1/pLjeOai8emkA1pA8o7WnzaQDDpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/8d9136-1cb2-4349-ab86-5dc392de637b/1/eDVsaoMWgOm4t8lVFJUwB6lAfoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.156.0/22
185.181.104.0/22
IPv6:
2a02:d500::/29
2a0a:c980::/29
Signature Algorithm: sha256WithRSAEncryption
0a:37:af:cc:e0:7d:06:a9:9f:37:6b:7c:83:fc:ba:55:9c:da:
49:64:a3:04:41:72:0a:0d:89:d5:f5:f9:91:8f:7b:23:20:97:
23:af:b2:4c:ba:42:3d:c9:a0:0c:c7:1e:01:ec:47:b8:c4:c3:
1b:1f:53:14:97:2a:ef:52:5c:64:c3:af:d8:6f:e3:70:85:e6:
85:5e:d8:02:d6:82:ab:09:31:17:1a:e9:d2:97:35:91:bb:1c:
61:f8:9c:63:be:e0:17:77:bf:5f:25:7e:a5:56:97:a5:de:22:
8e:25:cf:45:06:e6:a7:9f:c4:45:2c:36:d3:24:b8:aa:c4:f8:
42:3b:95:a8:3e:1d:3c:06:41:54:36:38:bc:f3:94:cd:73:46:
02:e5:ca:c2:00:6d:8c:c3:3b:d4:ca:2c:9e:a3:35:45:c4:78:
6d:fb:9e:03:df:f3:17:bc:a4:ee:8d:e5:b9:1b:81:67:1e:d6:
39:b3:90:01:29:c5:71:53:83:4b:2b:7c:dd:7d:9f:02:6f:0d:
d9:b5:8d:74:d8:e3:3b:63:30:d9:bc:f5:60:66:dc:93:df:08:
4f:c2:60:4a:bc:4a:c7:d0:32:eb:bd:9d:6c:c5:13:cf:2b:16:
9c:8c:57:49:6d:34:80:14:a4:4c:c7:19:bc:21:c2:2a:e8:f3:
c7:ae:3e:76
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:15 2024 by rpki-client on console-ams.rpki-client.org