Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/hCjdK_1vVPyE146DjDQ4CHetNRA.roa
File: hCjdK_1vVPyE146DjDQ4CHetNRA.roa (raw, json)
Hash identifier: 2Ko314fF9Z20UUsTpwUgBaUTCUwRl7cp6ZEFlEx9UeI=
Subject key identifier: 84:28:DD:2B:FD:6F:54:FC:84:D7:8E:83:8C:34:38:08:77:AD:35:10
Certificate issuer: /CN=27484956736549eab3b06e23aab89ca5993a8076
Certificate serial: 046B1385
Authority key identifier: 27:48:49:56:73:65:49:EA:B3:B0:6E:23:AA:B8:9C:A5:99:3A:80:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0hJVnNlSeqzsG4jqricpZk6gHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/hCjdK_1vVPyE146DjDQ4CHetNRA.roa
Signing time: Sat 02 Jul 2022 16:44:25 +0000
ROA not before: Sat 02 Jul 2022 16:44:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64286
IP address blocks: 45.84.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74126213 (0x46b1385)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27484956736549eab3b06e23aab89ca5993a8076
Validity
Not Before: Jul 2 16:44:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8428dd2bfd6f54fc84d78e838c34380877ad3510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:37:12:3b:2f:72:2f:d7:c7:62:73:ad:c4:c8:
aa:b0:9d:a9:03:73:7a:72:ff:e8:8b:a4:ea:e7:18:
6c:56:51:47:92:b4:46:27:4b:2e:02:d5:f7:60:32:
d9:69:ba:e6:65:75:75:d6:19:5c:c7:a9:95:d4:7e:
10:d8:ab:4d:e4:8d:71:3c:af:a0:41:94:f8:f7:5c:
3a:ce:87:21:fe:38:bf:1b:87:d4:c4:b8:dd:b6:ef:
f3:b1:df:4f:85:12:49:9e:b7:92:80:8b:06:4d:4c:
50:cd:02:ac:fd:87:30:41:c7:bc:31:ea:89:8f:ce:
8c:e2:3e:78:0f:66:08:65:69:f8:79:64:2b:f0:a2:
56:8c:42:cc:3b:63:c8:0a:f5:9e:ea:0d:56:84:90:
32:12:e7:e2:81:ad:5f:ab:a4:bd:98:6a:70:39:02:
5f:b1:80:40:bf:34:c1:f6:43:a8:e1:c3:62:0b:dc:
cf:17:cc:06:82:ec:b1:6a:21:54:5b:f9:ad:34:de:
cc:fa:c6:28:0e:81:6d:2c:39:54:f0:93:33:5c:47:
02:34:c6:4a:a0:e9:70:39:b0:44:27:09:8f:a0:34:
b8:4e:5a:3e:f6:38:4b:b9:b6:ed:59:01:9e:bf:2b:
d5:1b:d0:35:0e:69:4a:d0:a0:dd:25:2c:c9:d1:dc:
66:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:28:DD:2B:FD:6F:54:FC:84:D7:8E:83:8C:34:38:08:77:AD:35:10
X509v3 Authority Key Identifier:
keyid:27:48:49:56:73:65:49:EA:B3:B0:6E:23:AA:B8:9C:A5:99:3A:80:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0hJVnNlSeqzsG4jqricpZk6gHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/hCjdK_1vVPyE146DjDQ4CHetNRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dee578-f2c6-41c0-b728-ad163ab354c8/1/J0hJVnNlSeqzsG4jqricpZk6gHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.100.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:e6:09:8e:b5:90:08:4d:45:a4:6d:3f:55:cb:76:3e:bb:66:
a2:f2:e0:70:f7:13:b5:de:a3:e3:eb:5f:92:e6:7c:a4:c1:22:
e2:55:0f:02:4b:ab:57:66:42:35:e8:80:4c:4b:3d:4b:33:0c:
0e:70:58:28:f6:20:f9:08:c6:e5:d0:2d:1d:fc:a8:83:e1:e5:
c5:db:32:72:4a:57:d9:31:e8:2a:4e:08:93:ba:be:ff:8c:48:
ea:c4:f6:b4:8c:fd:fc:c1:50:0e:5e:12:c1:78:c9:86:7e:85:
36:e1:d1:56:92:d6:22:8e:03:8e:b9:02:e8:a3:c4:16:75:3d:
3a:1d:e8:9f:4f:23:10:42:aa:e4:da:c7:4e:a2:88:d3:6f:1b:
cb:c5:e7:5b:19:f5:df:00:be:fc:b2:4c:84:e2:9b:e8:f0:da:
cb:f4:c6:9a:62:dd:c0:f7:e7:dd:ac:a6:13:a2:88:7c:82:14:
8a:70:88:9a:20:9d:9b:fc:15:95:5f:36:de:bb:27:92:26:4a:
2e:74:5c:52:a1:0f:83:eb:ed:b0:44:3d:b8:04:5f:1a:a8:22:
91:ef:c5:bb:bc:cc:76:50:8d:90:fb:dd:c2:87:43:82:c1:7b:
ec:ce:19:49:2c:e5:f6:52:42:16:ed:16:86:13:15:30:75:82:
5d:5f:c5:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:59 2024 by rpki-client on console-ams.rpki-client.org