Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f6d2dd-03a7-4f1f-b890-cd9ff0552f92/1/dfGycsNS6I8FUuF15ATxLN4NJ7k.roa
File: dfGycsNS6I8FUuF15ATxLN4NJ7k.roa (raw, json)
Hash identifier: 6oTk9sGPIKa6BlfIHpDaOlL7uZ/TC2MtQfDeUtbpQ4g=
Subject key identifier: 75:F1:B2:72:C3:52:E8:8F:05:52:E1:75:E4:04:F1:2C:DE:0D:27:B9
Certificate issuer: /CN=b9f4779575cb9bf058243287e98234deca911fc9
Certificate serial: 0184BF4A7DC2B5763B37EA6F3CF435459876
Authority key identifier: B9:F4:77:95:75:CB:9B:F0:58:24:32:87:E9:82:34:DE:CA:91:1F:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufR3lXXLm_BYJDKH6YI03sqRH8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f6d2dd-03a7-4f1f-b890-cd9ff0552f92/1/dfGycsNS6I8FUuF15ATxLN4NJ7k.roa
Signing time: Mon 28 Nov 2022 17:30:40 +0000
ROA not before: Mon 28 Nov 2022 17:30:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57935
IP address blocks: 45.89.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bf:4a:7d:c2:b5:76:3b:37:ea:6f:3c:f4:35:45:98:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f4779575cb9bf058243287e98234deca911fc9
Validity
Not Before: Nov 28 17:30:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75f1b272c352e88f0552e175e404f12cde0d27b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:2b:83:e1:48:5f:29:cb:ec:85:ce:9f:79:c2:
40:74:ad:db:dc:3b:af:e1:41:47:d2:43:39:f2:54:
79:f1:64:a2:74:fd:97:bf:96:3b:32:3a:f7:6b:80:
6f:8b:e4:af:38:b4:4c:ad:7a:f7:19:ae:f7:22:67:
25:0d:24:8d:fd:ba:a0:ce:a3:08:ae:f0:08:b4:fa:
04:7c:50:27:4b:36:84:d2:31:42:2f:78:ab:c2:40:
a2:76:2a:e7:5b:ff:9d:af:35:c5:09:92:2a:21:8c:
c5:43:62:5c:29:b7:9c:0d:58:23:14:46:07:3c:46:
a3:b2:48:cf:1f:6a:34:fe:42:72:b3:12:54:be:bb:
89:a6:31:28:37:9e:7e:fc:be:03:04:d2:91:4f:de:
dd:9a:8f:42:36:a7:24:4a:6f:e4:9b:4e:23:73:02:
b2:c2:f4:2b:a0:3e:04:04:63:e2:cf:22:eb:ff:d7:
b6:1c:77:ce:0e:99:17:c6:fd:f9:01:b8:30:3b:cb:
a9:a3:7e:ba:04:c1:d7:d0:9d:17:a7:7d:53:ad:a2:
48:31:cb:81:6c:1d:e4:9b:cb:8a:c5:8a:71:4c:ea:
82:7b:2b:e3:ae:d0:49:78:8b:a0:79:50:98:02:d8:
2b:d1:9d:0d:23:a7:c4:50:82:57:4e:29:9f:f7:db:
37:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F1:B2:72:C3:52:E8:8F:05:52:E1:75:E4:04:F1:2C:DE:0D:27:B9
X509v3 Authority Key Identifier:
keyid:B9:F4:77:95:75:CB:9B:F0:58:24:32:87:E9:82:34:DE:CA:91:1F:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufR3lXXLm_BYJDKH6YI03sqRH8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f6d2dd-03a7-4f1f-b890-cd9ff0552f92/1/dfGycsNS6I8FUuF15ATxLN4NJ7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f6d2dd-03a7-4f1f-b890-cd9ff0552f92/1/ufR3lXXLm_BYJDKH6YI03sqRH8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.136.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:2e:20:81:e7:fa:5b:e7:63:a8:75:0e:27:56:39:9b:05:c2:
c3:f4:47:06:31:35:b4:a2:92:86:91:2b:5b:a2:c6:cb:ea:e3:
3a:bc:7a:76:e5:98:ca:11:38:7a:9e:13:22:5f:fe:b5:f8:8d:
56:53:7b:6f:b5:06:48:3c:90:ba:5b:1c:b8:83:18:b5:22:23:
a5:60:16:72:96:a3:06:01:7f:cf:a2:7c:a6:8f:97:d5:03:d1:
e2:c4:ca:98:43:d8:d0:80:c5:65:88:fd:a6:5e:69:6f:58:1b:
ca:c5:5f:08:0d:50:0e:59:8e:34:67:d1:d7:e7:bd:43:7b:f9:
e5:50:cc:66:b3:97:c2:60:73:71:1d:8b:22:cc:14:77:12:ea:
f2:0b:3a:1a:a6:2f:d6:91:70:c0:dd:8e:c7:9b:77:ac:f4:27:
dc:1b:5f:2e:9e:9b:9c:99:4e:6b:58:1c:5b:31:0a:f2:a8:35:
3b:11:15:c1:ae:d9:06:fd:28:b0:32:f9:5b:d2:73:29:8b:09:
28:6d:85:53:3b:c0:8c:49:b2:f2:17:e3:20:c0:fa:35:6a:ca:
09:4a:b0:31:96:72:78:5d:6f:4d:17:48:23:50:24:9f:b5:8d:
cd:72:9b:52:e7:3e:b1:62:d7:7f:f1:3d:a5:b0:ec:4c:28:31:
12:fa:85:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:27 2024 by rpki-client on console-fra.rpki-client.org