Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/f21WM8HVlT0tbLrxZndeaYxZATs.roa
File: f21WM8HVlT0tbLrxZndeaYxZATs.roa (raw, json)
Hash identifier: 5GRcrhUK4uk0ilLTG/kXA+QQKzuwWxmm+tWVDU5YChw=
Subject key identifier: 7F:6D:56:33:C1:D5:95:3D:2D:6C:BA:F1:66:77:5E:69:8C:59:01:3B
Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a
Certificate serial: 082DAB4C
Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/f21WM8HVlT0tbLrxZndeaYxZATs.roa
Signing time: Sat 01 Jan 2022 05:06:14 +0000
ROA not before: Sat 01 Jan 2022 05:06:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205909
IP address blocks: 45.92.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137210700 (0x82dab4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a
Validity
Not Before: Jan 1 05:06:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f6d5633c1d5953d2d6cbaf166775e698c59013b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f4:8d:02:c1:e5:99:75:85:b4:cf:44:17:2c:
bf:05:61:3c:30:fe:3a:71:a4:27:d3:5c:40:10:9c:
57:12:dc:82:b7:71:06:a2:db:04:c4:d9:2e:a0:47:
6a:ab:f5:09:40:3f:65:f0:c0:e0:cd:5f:11:44:b6:
b1:31:04:db:9c:42:6e:b5:02:13:46:46:7c:4d:3f:
84:de:a2:3b:75:cb:d3:b0:e5:d7:c8:0b:e8:a8:e7:
72:d6:a4:3d:ad:cc:1b:4d:b8:d3:83:84:a7:78:a2:
c9:8a:b2:d5:50:8b:7d:bc:e3:62:8b:3f:de:17:c0:
ee:a9:1b:ca:4e:ac:e3:2a:ce:7d:38:ef:04:44:bd:
dc:74:a3:5e:80:b0:86:88:b8:4b:af:41:7b:7c:a4:
e6:ab:64:c7:d4:91:31:df:d7:33:55:99:4d:c5:bb:
06:5e:90:9b:a8:06:b7:a4:6c:d7:0e:83:a1:cb:23:
4b:f1:a9:bc:0d:3f:1e:6e:77:72:a9:77:3d:9d:9d:
37:63:c1:45:d2:c4:62:96:f8:eb:ba:ad:16:92:f5:
74:0d:4d:b5:0a:b5:f6:9b:9e:5f:44:8d:57:42:92:
6d:d8:ac:53:f7:27:ac:bf:b4:e6:96:77:25:22:a3:
d1:89:1a:e3:f0:e7:e0:36:80:72:90:db:fe:a5:81:
b1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:6D:56:33:C1:D5:95:3D:2D:6C:BA:F1:66:77:5E:69:8C:59:01:3B
X509v3 Authority Key Identifier:
keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/f21WM8HVlT0tbLrxZndeaYxZATs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.41.0/24
Signature Algorithm: sha256WithRSAEncryption
13:0e:8b:a0:83:45:8a:dd:86:78:f9:9e:65:6c:c6:a7:91:5e:
0d:11:93:bc:0b:0a:af:ee:05:31:c8:a8:a1:60:2c:8d:b8:03:
ad:51:66:71:92:af:6c:8f:d8:35:50:60:d6:17:9a:33:74:4f:
88:64:63:ca:d1:e9:41:41:1c:3c:8c:f8:36:fd:57:16:f7:d0:
d1:72:10:ea:81:63:c8:ea:cd:5b:c2:04:51:88:b8:c4:b8:4b:
2b:67:d1:09:ce:3e:27:a1:08:32:52:42:4d:7e:07:15:7b:d9:
1c:58:3b:16:96:bf:03:a4:fd:cd:c8:c7:55:1d:0a:b0:08:2b:
79:2f:0f:cb:4a:9f:08:ca:a9:1d:67:04:e8:7e:18:1e:84:33:
5f:01:e8:1f:a2:9b:43:b7:09:e3:f8:8e:24:e9:50:75:11:5f:
9d:43:cf:80:37:f9:af:3a:be:a0:a1:3e:5a:79:b5:c0:c2:87:
86:68:3d:79:e1:ab:b1:4f:e9:ef:20:dc:18:59:79:d8:8a:d8:
5b:3a:75:38:62:e4:9c:37:b7:6e:a5:49:aa:c9:c9:9b:9a:b6:
28:c7:68:32:ff:e6:56:83:f4:14:17:d7:dd:b3:b4:9c:f0:d7:
b5:c0:88:3a:a0:17:86:bf:3f:64:f9:79:eb:92:b8:5f:b0:52:
72:78:d0:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:37 2024 by rpki-client on console-ams.rpki-client.org