Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/Q5ocUmDR-w56Uy-H-nwCmS_F_Jk.roa
File: Q5ocUmDR-w56Uy-H-nwCmS_F_Jk.roa (raw, json)
Hash identifier: HbasQfdCNPXcUQNjSOJUg0GOiECFUELsK/QcFTU6nPI=
Subject key identifier: 43:9A:1C:52:60:D1:FB:0E:7A:53:2F:87:FA:7C:02:99:2F:C5:FC:99
Certificate issuer: /CN=304e59a223f4bcb823492fb1096c3a82310c03da
Certificate serial: 09B7A903
Authority key identifier: 30:4E:59:A2:23:F4:BC:B8:23:49:2F:B1:09:6C:3A:82:31:0C:03:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/Q5ocUmDR-w56Uy-H-nwCmS_F_Jk.roa
Signing time: Sun 17 Apr 2022 12:42:13 +0000
ROA not before: Sun 17 Apr 2022 12:42:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59808
IP address blocks: 45.151.212.0/24 maxlen: 24
2a0e:b580::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163031299 (0x9b7a903)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=304e59a223f4bcb823492fb1096c3a82310c03da
Validity
Not Before: Apr 17 12:42:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=439a1c5260d1fb0e7a532f87fa7c02992fc5fc99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e6:26:b7:a2:2a:ac:93:6e:a3:bc:cb:81:f9:
2e:50:9f:50:28:1c:a3:a3:bc:0f:8a:42:d6:c5:2a:
9b:3f:19:5d:e0:25:93:5d:84:3c:d2:76:d8:0b:0c:
fe:ae:31:41:da:9a:0c:94:25:f5:df:2e:ba:0f:d0:
b9:ff:74:00:e6:0f:38:8c:ff:8d:2c:41:31:10:a0:
40:6d:9f:45:48:d2:49:27:c6:82:8d:b2:4d:8c:7b:
7b:1c:bf:c7:c6:a5:c9:bb:d9:fd:2a:ad:64:6d:98:
81:27:9d:e9:66:7a:e1:64:10:45:bf:6e:a2:b5:a2:
7a:19:27:94:d9:62:5f:24:43:83:ac:ae:72:67:0c:
d6:9b:fc:d0:15:be:fe:17:8f:9f:ac:0e:81:2b:dc:
2a:46:8e:07:d4:10:99:b7:95:4b:f1:67:f1:16:f2:
8c:d7:ac:cf:ed:d3:d0:7d:58:bd:34:99:ef:7b:f7:
be:54:16:12:f3:12:db:57:cc:14:70:fe:ae:cb:62:
a8:ee:1f:13:3d:15:27:93:91:a7:78:2e:90:9f:7c:
f2:aa:27:1b:d4:5b:05:60:3b:5f:74:09:07:4a:bc:
e6:39:58:42:de:36:2d:99:e6:46:3d:69:f0:4e:57:
23:de:76:76:6e:5e:6b:de:56:2e:d9:28:b7:85:e5:
08:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9A:1C:52:60:D1:FB:0E:7A:53:2F:87:FA:7C:02:99:2F:C5:FC:99
X509v3 Authority Key Identifier:
keyid:30:4E:59:A2:23:F4:BC:B8:23:49:2F:B1:09:6C:3A:82:31:0C:03:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/Q5ocUmDR-w56Uy-H-nwCmS_F_Jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/f536cd-943f-4554-9f17-344cc502f1bd/1/ME5ZoiP0vLgjSS-xCWw6gjEMA9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.212.0/24
IPv6:
2a0e:b580::/29
Signature Algorithm: sha256WithRSAEncryption
99:7c:1f:e9:7b:a5:88:9f:7e:0e:c7:22:81:d3:a4:90:cf:c3:
5f:56:2d:37:fc:0d:47:68:e0:8c:6a:b4:53:bb:d9:3c:10:cf:
be:10:12:d7:a4:5b:00:24:25:70:ef:d9:a3:1f:fd:71:da:0f:
b9:9f:76:18:b5:3f:22:af:ec:78:ee:37:84:e1:53:ab:66:05:
fe:b0:64:d7:96:1d:45:83:ba:8d:55:3a:61:78:40:c3:1a:af:
07:0d:e2:05:9e:b6:ad:dd:2b:99:32:1b:75:d8:5f:d7:c1:b0:
bb:f9:46:dc:8f:69:e9:a3:a3:4a:e1:e0:b5:2f:1e:9d:19:68:
35:4f:55:19:2c:fc:94:dd:94:d9:4c:16:e7:ef:8b:d3:0d:a3:
46:1a:13:e7:71:86:4d:ed:92:86:56:6a:2c:b2:1d:ce:93:4d:
62:c3:8b:1a:97:4b:5e:1c:6e:3b:59:ef:61:91:82:1b:30:07:
bc:b2:bd:8d:82:84:c8:3e:cd:f6:15:ca:b9:47:23:8e:37:ab:
2d:99:9f:34:01:55:ba:dd:9c:61:29:ae:5c:52:12:58:22:35:
63:c5:b8:32:12:36:f2:f2:0b:1f:0b:a9:3a:1f:a7:20:33:7f:
c2:05:1c:39:39:29:43:b3:77:35:72:40:cb:97:63:61:5f:f6:
21:6a:3a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:43 2024 by rpki-client on console-fra.rpki-client.org