Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8af8e6-19c1-4be1-af23-19916a4aeeb3/1/sRNdxLrNslpIny1WSy3gPHYAaXY.roa
File: sRNdxLrNslpIny1WSy3gPHYAaXY.roa (raw, json)
Hash identifier: Ne7HUuqzeRv3vfDMXrLzAIklQGMeJvq7Ewr4AGZ4VNs=
Subject key identifier: B1:13:5D:C4:BA:CD:B2:5A:48:9F:2D:56:4B:2D:E0:3C:76:00:69:76
Certificate issuer: /CN=7a7cf1a2aa83b126ff4ceef473a47397abf8ff0d
Certificate serial: 03991CE7
Authority key identifier: 7A:7C:F1:A2:AA:83:B1:26:FF:4C:EE:F4:73:A4:73:97:AB:F8:FF:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/enzxoqqDsSb_TO70c6Rzl6v4_w0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8af8e6-19c1-4be1-af23-19916a4aeeb3/1/sRNdxLrNslpIny1WSy3gPHYAaXY.roa
Signing time: Sat 01 Jan 2022 07:54:46 +0000
ROA not before: Sat 01 Jan 2022 07:54:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201150
IP address blocks: 46.249.120.0/21 maxlen: 24
45.84.156.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60366055 (0x3991ce7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a7cf1a2aa83b126ff4ceef473a47397abf8ff0d
Validity
Not Before: Jan 1 07:54:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1135dc4bacdb25a489f2d564b2de03c76006976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2a:9f:6b:b9:df:27:63:34:d2:30:4c:88:82:
94:bf:46:04:92:1a:de:27:6c:c8:1c:c4:a2:58:85:
8b:cc:d4:1a:5e:9e:5f:ea:92:57:dc:6f:24:bb:7f:
ec:04:98:ae:07:6c:36:ec:8e:d7:c6:33:74:bc:f7:
72:05:2d:dc:72:51:dc:9f:eb:6a:2a:32:0c:b8:87:
56:d4:f9:81:15:62:e4:7b:34:96:18:5a:1d:80:75:
4b:37:10:54:09:3a:88:a1:a5:20:0e:58:81:d1:e7:
15:98:cb:55:5a:00:93:9e:55:02:f9:97:9d:a8:18:
ad:91:3d:92:69:f5:34:93:91:71:71:0f:e2:7f:49:
14:a3:e1:54:92:a6:47:8c:c2:9b:4a:26:91:b8:a7:
af:0f:9d:1d:c1:05:ef:b0:3a:e2:f2:f3:32:42:f5:
df:c5:61:66:af:50:9c:18:bf:30:41:b4:59:d3:f1:
a7:ab:18:15:58:9a:4b:42:f6:bc:22:46:d6:a6:bb:
b1:a7:32:b7:88:7d:0f:85:8c:d9:6d:b4:3a:b2:5e:
eb:ed:70:73:91:5a:d8:44:fa:45:ca:f7:26:c2:75:
d7:f1:52:ed:e7:61:40:79:2e:3e:ae:a2:fc:1d:b7:
1a:b4:35:86:82:40:62:f8:49:cd:a0:f2:9b:82:e2:
b7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:13:5D:C4:BA:CD:B2:5A:48:9F:2D:56:4B:2D:E0:3C:76:00:69:76
X509v3 Authority Key Identifier:
keyid:7A:7C:F1:A2:AA:83:B1:26:FF:4C:EE:F4:73:A4:73:97:AB:F8:FF:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/enzxoqqDsSb_TO70c6Rzl6v4_w0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8af8e6-19c1-4be1-af23-19916a4aeeb3/1/sRNdxLrNslpIny1WSy3gPHYAaXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8af8e6-19c1-4be1-af23-19916a4aeeb3/1/enzxoqqDsSb_TO70c6Rzl6v4_w0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.156.0/22
46.249.120.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:93:3f:ef:3d:1c:63:a5:f7:19:36:0d:82:29:f6:33:34:4c:
85:e9:64:be:72:8a:05:11:e4:21:d0:8a:5e:40:c9:ad:14:c2:
12:22:8e:d3:b3:ee:a5:24:b6:b5:96:a6:eb:ec:cd:70:13:b9:
a2:b5:dc:81:9f:ff:09:6c:e3:69:97:a2:70:ad:1b:66:d8:13:
99:26:e4:fc:14:6e:69:97:50:b5:5a:2d:3a:48:2d:10:9a:bb:
1b:0f:07:02:03:31:f0:09:5c:56:1d:4d:8a:45:b9:ee:29:d1:
2c:16:f4:50:6d:b5:09:46:2f:d9:e1:d5:25:ef:f1:f0:27:e6:
b6:7a:83:f4:a7:1a:89:62:80:0c:0b:83:d4:7d:dc:5c:bf:0e:
de:00:00:99:7e:a1:ec:76:2c:17:38:16:55:f9:a3:1d:21:93:
2d:dd:fb:5a:a3:de:fa:6c:0e:46:8e:5b:40:5b:49:d3:a4:68:
1b:de:37:9c:f3:13:03:75:ed:d9:b9:ae:76:d3:14:1a:47:48:
e8:a7:d0:c4:39:c5:3d:5a:b7:0f:d8:82:d2:a8:94:e9:7a:db:
3e:b9:57:93:98:ce:08:46:7c:30:f7:a3:ee:4a:3f:10:e0:6e:
08:72:a4:c8:cb:fe:c1:94:cb:46:dc:12:5a:a0:9e:cf:a8:26:
53:c8:1b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:08 2024 by rpki-client on console-fra.rpki-client.org