Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b9467c-84af-493a-9db9-4dd59c7c6305/1/CMRNdbJ8l78fijZ4IcytWWpB-48.roa
File: CMRNdbJ8l78fijZ4IcytWWpB-48.roa (raw, json)
Hash identifier: PkaNKBhRAuHpfsGpuFAFcVwtrTYPoWzrgc+MekOYiKE=
Subject key identifier: 08:C4:4D:75:B2:7C:97:BF:1F:8A:36:78:21:CC:AD:59:6A:41:FB:8F
Certificate issuer: /CN=9eee4669fc08a4d4337509110613862b314f1ac7
Certificate serial: 018258F889D118E6CB85F0E620D43CEB95B7
Authority key identifier: 9E:EE:46:69:FC:08:A4:D4:33:75:09:11:06:13:86:2B:31:4F:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nu5GafwIpNQzdQkRBhOGKzFPGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b9467c-84af-493a-9db9-4dd59c7c6305/1/CMRNdbJ8l78fijZ4IcytWWpB-48.roa
Signing time: Mon 01 Aug 2022 10:34:19 +0000
ROA not before: Mon 01 Aug 2022 10:34:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60475
IP address blocks: 45.10.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:f8:89:d1:18:e6:cb:85:f0:e6:20:d4:3c:eb:95:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eee4669fc08a4d4337509110613862b314f1ac7
Validity
Not Before: Aug 1 10:34:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08c44d75b27c97bf1f8a367821ccad596a41fb8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e9:4e:23:02:68:22:5e:d8:78:1f:e2:6f:1c:
05:70:80:97:37:71:a5:a7:cd:35:33:d9:d8:7e:8d:
a7:6a:8d:b0:96:bb:fb:a3:a3:c8:f4:65:66:0c:88:
af:0c:dd:4d:d1:23:f1:9b:49:a5:75:be:b1:04:fa:
cd:00:84:a9:8c:46:5c:01:89:5e:f7:51:73:f9:8c:
8b:e7:e0:38:40:fb:c3:79:95:d0:b5:b3:0f:04:1f:
15:da:84:27:17:89:55:07:e9:e0:8f:df:98:d5:b0:
a8:f8:ed:7f:e0:b4:d9:3a:94:c5:40:90:66:53:d7:
3b:01:95:26:50:fb:55:6d:c8:5a:73:0b:00:e7:0f:
4e:4c:ba:88:dc:aa:d6:b9:83:40:c4:f2:2a:6c:28:
d9:ba:ac:28:aa:f3:79:e9:4e:99:27:24:6f:c3:d5:
3c:23:f3:a3:0e:bd:3b:0f:9d:cc:fa:fe:3d:e1:a4:
9d:46:64:a7:7d:bc:2b:8b:31:37:9f:77:96:bb:e2:
ab:cf:ec:48:2b:97:d7:fd:61:97:42:fc:f6:39:f0:
f6:81:8d:c5:13:63:47:19:0c:1a:86:ef:ff:ce:46:
8b:e8:9b:de:1c:9a:8c:f4:6d:4c:7e:0c:46:27:9d:
75:b3:e4:2a:ac:da:9d:9a:d0:27:d2:d2:9a:e7:67:
ed:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C4:4D:75:B2:7C:97:BF:1F:8A:36:78:21:CC:AD:59:6A:41:FB:8F
X509v3 Authority Key Identifier:
keyid:9E:EE:46:69:FC:08:A4:D4:33:75:09:11:06:13:86:2B:31:4F:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nu5GafwIpNQzdQkRBhOGKzFPGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b9467c-84af-493a-9db9-4dd59c7c6305/1/CMRNdbJ8l78fijZ4IcytWWpB-48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b9467c-84af-493a-9db9-4dd59c7c6305/1/nu5GafwIpNQzdQkRBhOGKzFPGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.84.0/22
Signature Algorithm: sha256WithRSAEncryption
51:0e:2a:9f:a4:11:92:f6:7f:03:ce:21:8f:b9:80:7c:ed:46:
04:be:ec:a5:1b:f8:88:31:49:1a:88:d1:a0:7d:43:01:f6:80:
41:ed:a3:bc:d4:bf:e5:51:cf:d7:08:62:af:36:2c:5a:a8:ed:
54:04:01:66:47:9b:e4:f4:f5:e5:f7:b6:32:28:ee:bf:55:e5:
75:23:b0:ec:de:e9:6d:01:88:ef:fa:0b:7c:cb:fe:fd:27:58:
1e:28:17:05:54:09:04:14:e0:39:df:47:95:ca:98:6b:04:9d:
d1:43:3a:11:e4:98:8b:62:81:20:f9:e5:e5:96:a0:cd:cb:ff:
df:ed:e8:52:df:75:48:40:60:03:9f:80:d2:58:35:3b:58:5c:
7d:a9:83:73:8b:6c:c9:5e:5b:3e:a7:af:0a:72:1f:56:1e:e0:
2f:97:a6:31:68:22:f8:cc:92:92:df:22:46:9d:20:8b:35:48:
a2:f5:c7:6d:50:4c:57:ad:c8:48:70:35:34:76:38:27:49:b7:
c0:89:0a:f1:a7:c4:d7:20:14:5f:7b:2f:00:05:49:2c:64:a9:
d3:88:d2:80:7d:43:ba:40:7f:1e:3f:cc:a3:df:83:55:1a:8d:
b7:66:d4:fe:56:e1:b9:7c:5f:e6:af:6a:89:8f:21:db:e1:83:
0e:74:78:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:22 2024 by rpki-client on console-fra.rpki-client.org