Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/v92KxUZvCAyZnTI8vnONmAt54uo.roa
File: v92KxUZvCAyZnTI8vnONmAt54uo.roa (raw, json)
Hash identifier: D8wZltx0k2wxaWIu8dKoHawEEpmE8v3tSYzRgE4o+i4=
Subject key identifier: BF:DD:8A:C5:46:6F:08:0C:99:9D:32:3C:BE:73:8D:98:0B:79:E2:EA
Certificate issuer: /CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Certificate serial: 07DEC26F
Authority key identifier: 0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/v92KxUZvCAyZnTI8vnONmAt54uo.roa
Signing time: Sat 01 Jan 2022 05:52:11 +0000
ROA not before: Sat 01 Jan 2022 05:52:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 45.12.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132039279 (0x7dec26f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Validity
Not Before: Jan 1 05:52:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfdd8ac5466f080c999d323cbe738d980b79e2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:73:65:c4:20:03:c1:1b:c4:4a:54:a7:9b:a0:
70:19:52:59:38:99:b2:50:25:53:88:9d:ec:a6:c2:
ad:cc:d7:5a:48:28:aa:5e:b7:e7:53:6c:2c:86:06:
2a:53:25:f0:dd:66:74:0d:53:ae:95:b3:24:cd:dd:
83:bd:25:5d:81:90:a8:27:45:91:ed:7f:5e:ed:07:
be:43:f7:7b:24:49:fe:17:b0:6d:f7:38:e6:ae:fa:
4f:87:81:d9:94:b3:cb:23:f3:c8:89:24:38:4c:9c:
1d:40:e8:4d:8f:d6:2b:f2:f5:c4:67:8a:c3:df:f2:
f8:2b:4b:ef:81:ad:ad:34:9a:56:0f:a2:03:d1:cc:
64:27:5b:59:6a:d7:28:45:6e:c9:1d:c8:5f:45:97:
a5:47:16:6f:ef:ed:72:98:8c:8c:73:91:8b:58:72:
0d:a7:51:c7:b9:65:ec:04:07:62:84:9e:2e:3f:26:
54:74:36:a6:02:de:41:17:de:e1:cb:19:da:eb:c5:
e1:93:0a:01:c9:e0:b0:4e:19:90:a8:8c:b0:64:90:
4b:91:d7:48:98:d6:f0:19:be:3c:8b:c5:59:ff:6e:
5e:38:c0:85:e6:e1:0a:ae:31:00:bd:08:c1:6b:44:
48:b5:25:9a:c8:a4:b2:e7:9e:aa:db:26:72:92:c7:
f6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:DD:8A:C5:46:6F:08:0C:99:9D:32:3C:BE:73:8D:98:0B:79:E2:EA
X509v3 Authority Key Identifier:
keyid:0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/v92KxUZvCAyZnTI8vnONmAt54uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/CjC2NdNXRo1_ky0-H1nVNzz59GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.185.0/24
Signature Algorithm: sha256WithRSAEncryption
19:4a:3d:b5:ef:cb:f2:99:c1:29:de:b4:a1:99:d2:e6:90:68:
d2:fc:79:d2:27:4f:c5:e6:db:ca:6e:96:7d:9b:e7:c2:a2:5e:
8b:b4:05:a7:75:74:1c:cb:0c:82:b6:a9:75:2a:da:b2:af:24:
4a:29:88:02:8c:2d:5b:27:9e:e2:fb:6f:5a:15:36:18:34:62:
35:9d:75:e7:3d:f0:1a:b8:06:35:26:ff:a6:71:53:e1:b0:52:
d5:1b:06:dc:f5:ff:76:66:70:d5:39:b6:5e:50:af:0b:a2:ee:
a0:3e:65:8f:77:57:e4:55:69:90:1a:22:28:33:82:6a:8c:33:
9b:4a:90:01:bf:5e:63:3d:78:cc:12:78:48:b9:54:c0:da:d9:
28:1f:aa:13:43:a8:0a:a5:5c:33:5d:39:a5:44:40:75:f4:b2:
a9:58:4d:88:5a:35:46:06:21:3d:09:3c:d7:13:b7:d2:40:32:
8e:92:87:b9:dc:65:39:82:b6:e1:01:cb:8f:98:6f:35:aa:b4:
f0:c6:99:07:c3:00:45:b9:88:a2:69:da:84:cb:54:fc:5d:6b:
b1:ec:9b:d9:b2:b9:e5:12:ed:82:f3:d3:8d:96:d1:7a:bb:8a:
de:93:ab:fc:8e:e3:cf:ab:f2:de:ad:aa:46:58:62:07:54:ec:
0b:bb:cc:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:01 2023 by rpki-client on console-fra.rpki-client.org