Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/6cf712-dd0b-4a90-958e-693bf67e61f3/1/d7xFdwxNlgguHxooNNPhQKyruz4.roa
File: d7xFdwxNlgguHxooNNPhQKyruz4.roa (raw, json)
Hash identifier: OPrA1fy36qdKazm4tkBK8ss1W+MsXzR9pdrlKyTAy3o=
Subject key identifier: 77:BC:45:77:0C:4D:96:08:2E:1F:1A:28:34:D3:E1:40:AC:AB:BB:3E
Certificate issuer: /CN=a39b4943e7d6b4b0e1de85c9bc38b857554dd47d
Certificate serial: 0188DE7CBAEAEDE94112E0A43DEC554B4E0E
Authority key identifier: A3:9B:49:43:E7:D6:B4:B0:E1:DE:85:C9:BC:38:B8:57:55:4D:D4:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o5tJQ-fWtLDh3oXJvDi4V1VN1H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/6cf712-dd0b-4a90-958e-693bf67e61f3/1/d7xFdwxNlgguHxooNNPhQKyruz4.roa
Signing time: Wed 21 Jun 2023 15:04:56 +0000
ROA not before: Wed 21 Jun 2023 15:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59877
IP address blocks: 45.67.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:de:7c:ba:ea:ed:e9:41:12:e0:a4:3d:ec:55:4b:4e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a39b4943e7d6b4b0e1de85c9bc38b857554dd47d
Validity
Not Before: Jun 21 15:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77bc45770c4d96082e1f1a2834d3e140acabbb3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0e:ea:03:4f:6e:9a:00:e2:33:05:18:02:85:
9f:62:c3:d2:7c:c9:dd:53:ad:ee:3c:46:9c:4e:8a:
30:8c:6d:87:50:09:01:81:a5:0a:c1:08:34:2e:2c:
35:2e:e0:be:7d:ae:75:91:e1:46:ac:a8:3b:31:5e:
e8:9e:aa:da:83:74:10:15:51:17:30:43:89:80:dd:
ee:e7:18:18:7e:f2:c7:dd:d8:8b:83:70:e3:50:22:
e7:8e:a9:f1:b8:b9:cb:f1:c9:13:42:60:d8:72:36:
ea:0d:87:4a:c4:07:86:a0:03:ab:65:db:23:37:8d:
fd:2f:02:19:71:5e:38:d4:20:60:e7:1e:41:47:4f:
fc:11:42:a5:f4:67:61:41:58:b0:19:49:ce:83:98:
ac:b7:a0:13:15:c5:3d:aa:17:75:04:53:9b:86:71:
da:32:39:7d:84:e2:83:3b:d4:48:d7:e5:32:46:07:
9a:52:ab:38:f3:ca:9f:f1:33:ff:1c:9f:25:eb:97:
3c:97:b9:f0:93:e2:c9:aa:88:7c:b7:d0:8c:1f:7c:
75:b8:69:c6:37:2f:55:a9:53:2c:a6:2a:e7:f7:f4:
c1:d3:18:d8:f2:5e:99:14:bb:e2:00:78:c9:a6:0b:
0d:a2:f5:cb:e2:9c:73:06:dc:19:0a:03:af:15:9e:
51:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BC:45:77:0C:4D:96:08:2E:1F:1A:28:34:D3:E1:40:AC:AB:BB:3E
X509v3 Authority Key Identifier:
keyid:A3:9B:49:43:E7:D6:B4:B0:E1:DE:85:C9:BC:38:B8:57:55:4D:D4:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o5tJQ-fWtLDh3oXJvDi4V1VN1H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cf712-dd0b-4a90-958e-693bf67e61f3/1/d7xFdwxNlgguHxooNNPhQKyruz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cf712-dd0b-4a90-958e-693bf67e61f3/1/o5tJQ-fWtLDh3oXJvDi4V1VN1H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.253.0/24
Signature Algorithm: sha256WithRSAEncryption
46:23:b6:29:55:4f:56:fc:48:f2:27:07:23:c2:5e:4d:7c:ae:
4b:b1:89:77:43:4a:12:ef:95:b5:a8:3c:3a:85:d5:e1:e1:ea:
50:c7:b9:08:52:51:ac:03:a4:9d:05:a4:df:d9:6b:14:a2:30:
09:72:68:ed:b1:20:34:b1:f6:e1:01:18:be:94:b6:65:ed:8f:
94:95:17:f3:9e:08:10:2c:1e:a2:ab:ce:75:4e:71:64:3a:98:
77:96:1e:60:2e:a6:64:99:07:12:7c:eb:36:95:a5:03:94:ca:
98:13:3c:2e:1a:dd:5d:1b:13:2d:e6:dc:ee:4c:60:f5:ed:e1:
e2:a2:98:7d:13:59:19:88:0d:ed:e5:3b:10:52:e6:a1:7f:54:
c5:d9:b9:36:32:95:78:e9:9b:cb:1f:7f:8b:98:67:28:2e:53:
7a:4c:11:90:d5:fd:0a:70:5c:9b:64:1a:f0:1b:37:42:0c:8c:
a9:f4:ea:13:3f:cf:ba:b3:15:86:69:c1:3e:c4:e6:f5:a9:63:
1e:8e:79:67:12:bf:8b:52:59:56:34:f4:43:2b:28:7d:34:3f:
9d:5e:d1:dc:68:00:7a:f5:f1:aa:ea:d7:d3:3d:19:a3:bd:53:
49:3c:95:60:f9:51:09:d1:09:b3:4f:2c:07:03:56:2e:90:13:
0a:8d:db:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:18 2025 by rpki-client