Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/fKxdjMjYit3tDeDjdlYrkIU11Sc.roa
File: fKxdjMjYit3tDeDjdlYrkIU11Sc.roa (raw, json)
Hash identifier: F85KDIE2Cqvr5Gr135RcQ67YkMdT6lhqe+vEj4cIc20=
Subject key identifier: 7C:AC:5D:8C:C8:D8:8A:DD:ED:0D:E0:E3:76:56:2B:90:85:35:D5:27
Certificate issuer: /CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Certificate serial: 02C39C1D
Authority key identifier: 8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/fKxdjMjYit3tDeDjdlYrkIU11Sc.roa
Signing time: Mon 31 Jan 2022 11:45:33 +0000
ROA not before: Mon 31 Jan 2022 11:45:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 45.157.130.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46373917 (0x2c39c1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Validity
Not Before: Jan 31 11:45:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cac5d8cc8d88added0de0e376562b908535d527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5b:59:40:87:2c:9f:45:96:ab:c1:a3:50:c4:
e3:5d:66:c7:94:d8:d0:c2:76:e4:4b:71:52:e8:18:
cb:f6:c0:cc:bc:5c:87:4a:1f:13:04:9c:a1:0b:b7:
97:c8:b3:fd:82:99:e5:de:58:95:94:b2:cd:bf:29:
93:d9:df:b9:c4:9e:c8:66:07:24:a7:e1:95:ed:8b:
96:bc:e9:d0:ba:b7:5a:03:c3:44:39:94:b8:74:0f:
42:ea:1d:9e:85:f7:be:6f:0e:6f:ea:bc:e5:80:5d:
2a:03:41:d8:9f:9e:06:66:bc:bd:33:c2:0a:f5:d5:
34:4b:1f:cf:08:e4:56:d6:03:92:03:13:2d:d9:c2:
87:12:48:33:28:c0:30:d6:f9:fe:59:cf:7b:01:38:
f6:98:ea:eb:3f:5a:42:a7:0d:de:4d:2c:e1:fe:f7:
9b:47:59:52:bf:af:39:2e:c6:d1:ae:d0:46:52:c2:
aa:8d:51:7d:d5:81:49:93:7f:98:15:25:39:df:e1:
1b:84:6f:ed:3b:92:9d:ff:ce:c2:b1:8d:3b:9d:a4:
1e:64:b4:00:6f:6b:1b:e9:40:53:8c:c3:39:42:8d:
fe:bf:3f:3b:ca:30:8f:3e:07:36:4a:2c:77:2c:ea:
7b:9d:28:cf:92:07:dc:9e:b2:16:7d:97:e8:03:75:
db:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:AC:5D:8C:C8:D8:8A:DD:ED:0D:E0:E3:76:56:2B:90:85:35:D5:27
X509v3 Authority Key Identifier:
keyid:8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/fKxdjMjYit3tDeDjdlYrkIU11Sc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/j8aWRkV6i_jvlWm5tCfp8sRi5W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.130.0/23
Signature Algorithm: sha256WithRSAEncryption
60:e5:55:6f:a8:31:eb:4c:20:71:b1:bb:7a:cf:2c:a3:b2:b5:
be:11:d7:5f:41:f2:76:45:72:a3:d2:8d:57:ec:13:61:32:d4:
b7:10:ec:af:18:ca:fe:7f:19:16:3b:15:3c:77:ae:39:f1:00:
22:36:6a:30:47:46:de:24:85:19:8a:ac:f5:fe:98:c3:ea:f6:
aa:fb:9a:f5:e6:33:25:51:ad:bb:19:54:06:d8:9e:b9:42:0f:
65:0b:c2:13:d8:71:fc:c3:f8:9e:98:18:bc:8a:36:e4:43:a0:
76:14:95:b9:e1:92:50:90:d2:34:28:fa:2a:cf:58:b1:0d:40:
7b:7e:78:4f:45:2c:ef:b3:ec:f3:cd:1c:19:0e:37:81:bb:7e:
4c:fe:1e:9c:d1:c9:48:d0:01:c6:c1:60:5e:12:98:cc:9a:9a:
c6:e4:63:d0:c5:6b:bc:27:39:bd:51:b8:4a:b9:ec:f3:ab:d0:
74:ac:a2:70:01:fc:49:d4:d0:0f:d0:b8:c2:ed:ed:95:cc:e2:
af:e3:d4:ec:32:49:a0:43:3f:6a:a4:59:b4:02:28:72:a8:a7:
15:35:f8:b2:1b:a3:09:97:c9:20:6c:80:8a:3a:a3:e1:51:4b:
b9:e8:9d:91:2e:9f:42:a9:c6:ec:ae:de:53:f5:98:7f:44:b7:
33:70:8b:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:37 2024 by rpki-client on console-ams.rpki-client.org