Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/0qW5ve8ZzKXR2M0ePyx_pymSNa8.roa
File: 0qW5ve8ZzKXR2M0ePyx_pymSNa8.roa (raw, json)
Hash identifier: v7gQge6ZMM8hsxyAOsmgd+SryDGqq+fLVKFPvMiAvPc=
Subject key identifier: D2:A5:B9:BD:EF:19:CC:A5:D1:D8:CD:1E:3F:2C:7F:A7:29:92:35:AF
Certificate issuer: /CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Certificate serial: 01841FA2C0E55AB872632096DB88644FB212
Authority key identifier: 8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/0qW5ve8ZzKXR2M0ePyx_pymSNa8.roa
Signing time: Fri 28 Oct 2022 17:27:50 +0000
ROA not before: Fri 28 Oct 2022 17:27:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197759
IP address blocks: 45.131.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1f:a2:c0:e5:5a:b8:72:63:20:96:db:88:64:4f:b2:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Validity
Not Before: Oct 28 17:27:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2a5b9bdef19cca5d1d8cd1e3f2c7fa7299235af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ea:89:85:30:d1:08:c6:18:65:ae:30:1b:fd:
9b:42:f0:bd:cd:7d:f3:13:5a:13:f7:8b:0d:09:9f:
4a:f8:9f:71:30:5d:e8:2e:9e:c4:be:a8:9e:7f:10:
fb:bb:f3:d5:1d:ae:c7:a5:a3:e2:9b:e5:6a:8e:7e:
75:0e:75:cc:30:32:8e:94:7b:39:c8:e8:f1:35:9b:
5f:95:c7:d8:e5:da:97:46:22:32:b7:8a:4a:80:0a:
a2:b9:f5:af:31:9e:16:51:5f:3f:b8:1d:6b:b4:94:
70:90:e8:33:80:ce:f2:63:00:a7:5a:08:a3:0c:ca:
31:63:12:32:23:e3:b8:59:bc:fa:5b:20:60:83:bb:
db:fe:10:7d:5f:ce:10:35:d3:2e:e2:6b:66:30:05:
66:e9:6f:2b:2f:a4:0a:ff:5a:af:73:3a:d0:1c:24:
a5:96:8f:99:e3:04:24:7c:78:c6:51:25:51:d2:5e:
0d:fb:7c:ff:9d:d1:67:4d:98:72:c1:19:97:87:e0:
d4:50:23:b5:0e:5e:dd:6b:eb:4f:1b:76:5a:61:fe:
e5:35:b9:b1:c9:dc:b0:95:9f:3f:88:bd:13:88:98:
60:8b:50:99:13:58:62:02:7a:3a:24:8b:8d:fe:57:
46:d6:22:3f:4b:32:74:9e:43:6d:68:6e:0b:69:af:
3e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A5:B9:BD:EF:19:CC:A5:D1:D8:CD:1E:3F:2C:7F:A7:29:92:35:AF
X509v3 Authority Key Identifier:
keyid:8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/0qW5ve8ZzKXR2M0ePyx_pymSNa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/j8aWRkV6i_jvlWm5tCfp8sRi5W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.78.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:39:81:d6:d9:27:2a:b1:9b:c8:76:2d:e0:0e:21:6c:9e:c3:
33:3f:5b:18:5a:51:89:76:cf:48:99:05:b4:87:ee:bf:8d:af:
c7:93:70:d5:86:ef:e0:14:a7:99:84:13:73:21:e9:fe:c8:30:
70:6d:9d:a6:84:3f:db:40:cf:42:c9:86:2e:1a:2b:3b:53:6b:
3f:df:4d:a4:34:56:4b:72:16:62:07:d8:62:ce:d8:02:4c:31:
dd:e3:90:92:6f:db:4a:16:c2:a3:1b:89:ef:de:97:83:d0:46:
02:4b:de:84:58:09:d9:bd:6e:37:8f:d5:36:fa:38:29:b3:61:
15:49:58:3c:fa:c1:53:04:06:b5:d5:06:59:b6:b4:4d:e4:ac:
2d:9d:18:ad:18:da:bf:d6:f4:c5:18:c4:36:2c:9a:2e:e5:0d:
30:f2:c1:5f:64:c0:ee:4c:9e:f3:56:aa:3a:04:02:c0:d7:da:
46:e3:ac:41:78:62:e6:08:6b:0e:15:cd:3d:15:7f:94:b0:c8:
86:a2:75:3d:19:ac:b0:00:0a:07:81:3b:27:ff:5e:c0:b2:75:
79:36:d7:fe:83:81:52:61:28:b6:3e:75:2b:f0:08:8d:2e:91:
54:08:73:56:10:fd:dc:61:b4:98:b9:15:19:4a:f1:8e:e5:38:
14:d8:43:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:29 2024 by rpki-client on console-fra.rpki-client.org