Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/6cf712-dd0b-4a90-958e-693bf67e61f3/1/rFHbfdnm-d2QmHsBtIN5KBFMcJg.roa
File: rFHbfdnm-d2QmHsBtIN5KBFMcJg.roa (raw, json)
Hash identifier: wMENMFRK6qGWkINvtWAKWvH2GKtYOZzqYIfdp0BV4CA=
Subject key identifier: AC:51:DB:7D:D9:E6:F9:DD:90:98:7B:01:B4:83:79:28:11:4C:70:98
Certificate issuer: /CN=a39b4943e7d6b4b0e1de85c9bc38b857554dd47d
Certificate serial: 01824A136D10AD8BBFFDBE09410C83ED41E5
Authority key identifier: A3:9B:49:43:E7:D6:B4:B0:E1:DE:85:C9:BC:38:B8:57:55:4D:D4:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o5tJQ-fWtLDh3oXJvDi4V1VN1H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/6cf712-dd0b-4a90-958e-693bf67e61f3/1/rFHbfdnm-d2QmHsBtIN5KBFMcJg.roa
Signing time: Fri 29 Jul 2022 13:09:23 +0000
ROA not before: Fri 29 Jul 2022 13:09:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25540
IP address blocks: 45.67.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4a:13:6d:10:ad:8b:bf:fd:be:09:41:0c:83:ed:41:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a39b4943e7d6b4b0e1de85c9bc38b857554dd47d
Validity
Not Before: Jul 29 13:09:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac51db7dd9e6f9dd90987b01b4837928114c7098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b6:bc:94:04:72:05:7c:2e:81:af:5e:87:ba:
35:12:3a:c5:91:2f:3b:0a:3f:e7:f9:3e:d4:c6:b6:
99:d7:96:3b:e9:9d:f6:e7:d0:fa:69:1b:ed:1a:5a:
48:c2:62:f6:9d:b0:9c:af:b2:bf:a9:38:c6:31:c7:
40:f9:b4:7c:9b:b6:a0:3e:fc:e6:cd:d2:0e:48:75:
40:35:35:d7:b0:cb:99:9e:5a:47:26:a9:c1:b4:5c:
f3:90:96:d6:1b:09:e7:5d:fe:11:3a:d8:00:89:6b:
59:42:de:23:3e:04:61:c9:ec:b8:6f:c6:4a:75:5c:
c3:32:d6:ba:d2:55:8c:ef:50:a8:8f:53:1d:c0:44:
3d:9b:2b:f6:8e:10:c6:59:41:ed:40:7f:4f:43:ff:
5e:42:a4:b2:72:6d:dd:bb:1f:87:53:d5:c6:7e:98:
29:71:a4:0a:70:8a:b7:83:76:82:75:19:8a:58:6f:
64:69:79:64:bd:28:88:31:30:45:12:65:1e:09:ce:
da:e0:9a:23:92:0d:3a:cb:a8:a0:8a:37:e2:b7:63:
1d:da:d5:93:89:f4:8f:a3:66:47:0c:0d:4e:96:dd:
2f:f6:ee:36:63:c3:a1:36:bd:7e:ef:84:97:65:40:
ad:9e:c5:6f:ca:15:f1:0b:de:8b:36:1d:bd:50:30:
9f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:51:DB:7D:D9:E6:F9:DD:90:98:7B:01:B4:83:79:28:11:4C:70:98
X509v3 Authority Key Identifier:
keyid:A3:9B:49:43:E7:D6:B4:B0:E1:DE:85:C9:BC:38:B8:57:55:4D:D4:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o5tJQ-fWtLDh3oXJvDi4V1VN1H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cf712-dd0b-4a90-958e-693bf67e61f3/1/rFHbfdnm-d2QmHsBtIN5KBFMcJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cf712-dd0b-4a90-958e-693bf67e61f3/1/o5tJQ-fWtLDh3oXJvDi4V1VN1H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.252.0/24
Signature Algorithm: sha256WithRSAEncryption
56:78:81:fb:37:e3:e1:a2:fd:7f:76:f3:81:0f:d2:d1:e8:09:
91:81:e7:e8:13:ad:13:bb:4a:a5:15:24:95:52:63:59:19:e8:
ac:88:24:23:bd:73:87:5c:12:e5:02:6e:e4:d4:08:60:19:50:
cb:00:78:1e:54:6a:96:20:94:56:5d:22:e7:14:67:1a:7c:09:
a5:c2:d6:f5:c1:5e:71:98:f9:ff:f3:5a:1f:9f:5f:69:be:aa:
06:b1:bd:cf:4b:90:1a:d1:26:ed:40:ba:85:0e:45:88:ad:14:
6e:6f:ca:1e:19:8f:43:0a:bb:3b:26:40:96:1b:84:fd:de:1c:
85:c7:2c:ce:a6:4a:91:2e:03:1a:26:16:27:41:cf:fb:0e:2c:
7c:a0:ba:2f:b6:73:ce:ae:76:d6:ab:46:d3:d1:aa:7c:1b:1b:
63:77:ab:36:ef:2c:de:b2:30:94:72:3b:fe:e8:64:6f:a1:56:
e5:0b:c9:85:46:bf:f0:ed:64:88:e1:b9:e4:40:db:1d:01:46:
e4:2c:1f:b5:22:d7:f7:86:be:ee:d5:60:87:01:96:24:95:4e:
9e:d4:04:85:f1:f0:55:4b:2e:75:43:48:26:66:2a:4b:60:ad:
1f:fd:1e:30:51:22:fd:87:77:b5:e7:15:9b:1f:fd:23:eb:6c:
03:1a:37:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:52 2024 by rpki-client on console-ams.rpki-client.org