Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/cb8265-c632-4813-b858-def386743f32/1/5k6YQ-Bg6QXDq_vR7Gxbj3ylFCE.roa
File: 5k6YQ-Bg6QXDq_vR7Gxbj3ylFCE.roa (raw, json)
Hash identifier: 0PITmAcyu5kjFvj2GjuvGHxgwQAp7k3KKyy+FK3dI8E=
Subject key identifier: E6:4E:98:43:E0:60:E9:05:C3:AB:FB:D1:EC:6C:5B:8F:7C:A5:14:21
Certificate issuer: /CN=4e78b6d00614f5565d9d8af8247cc72ea9b8833d
Certificate serial: 01841913E89A97F99503EAB6E034D9483C86
Authority key identifier: 4E:78:B6:D0:06:14:F5:56:5D:9D:8A:F8:24:7C:C7:2E:A9:B8:83:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tni20AYU9VZdnYr4JHzHLqm4gz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/cb8265-c632-4813-b858-def386743f32/1/5k6YQ-Bg6QXDq_vR7Gxbj3ylFCE.roa
Signing time: Thu 27 Oct 2022 10:54:05 +0000
ROA not before: Thu 27 Oct 2022 10:54:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203976
IP address blocks: 45.88.37.0/24 maxlen: 24
45.88.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:19:13:e8:9a:97:f9:95:03:ea:b6:e0:34:d9:48:3c:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e78b6d00614f5565d9d8af8247cc72ea9b8833d
Validity
Not Before: Oct 27 10:54:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e64e9843e060e905c3abfbd1ec6c5b8f7ca51421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:46:87:b5:ab:15:81:7a:a1:8b:27:e9:74:31:
f6:fb:88:c2:d4:46:c8:2e:02:c1:6a:dd:0d:e6:d0:
34:30:66:85:e8:77:4c:47:83:87:c5:08:32:7f:2a:
de:38:36:4e:08:61:ed:96:55:97:fd:8d:fa:c8:36:
ee:6a:dc:8c:b5:7d:bb:f9:3c:16:93:ff:36:e8:3a:
a9:44:f6:32:e1:73:8f:0d:95:b2:c1:ea:4b:d8:e0:
3e:46:e4:ea:ca:32:2a:d6:0d:c7:7b:d3:4b:2f:c6:
00:7d:e9:f2:98:27:29:ce:a8:d2:3d:fe:4b:24:b6:
ac:07:26:1b:1e:38:51:93:bc:cb:29:3f:9a:f7:cf:
d0:f0:d5:c1:b3:ab:db:1c:f5:75:18:a8:d4:72:e8:
3c:c7:49:ce:28:a4:b3:e3:c5:ee:b6:83:f0:3e:2f:
ff:0e:1f:75:56:2e:1f:8f:f4:40:f1:8f:61:c2:b1:
d3:2b:56:08:4b:f8:eb:9c:2e:04:79:ef:7e:83:3c:
f7:c4:23:d3:ed:aa:ac:a9:6e:45:c3:e2:0b:42:ef:
48:56:59:b8:52:2d:5c:f7:47:2b:c2:f5:67:18:7d:
b1:5e:b5:58:99:96:07:18:ac:24:b7:aa:e5:00:14:
5a:0d:07:af:31:3b:b9:ce:bd:ee:8e:f4:0d:22:06:
1c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:4E:98:43:E0:60:E9:05:C3:AB:FB:D1:EC:6C:5B:8F:7C:A5:14:21
X509v3 Authority Key Identifier:
keyid:4E:78:B6:D0:06:14:F5:56:5D:9D:8A:F8:24:7C:C7:2E:A9:B8:83:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tni20AYU9VZdnYr4JHzHLqm4gz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/cb8265-c632-4813-b858-def386743f32/1/5k6YQ-Bg6QXDq_vR7Gxbj3ylFCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/cb8265-c632-4813-b858-def386743f32/1/Tni20AYU9VZdnYr4JHzHLqm4gz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.36.0/23
Signature Algorithm: sha256WithRSAEncryption
08:72:9f:03:39:54:29:c9:d0:0a:78:87:cc:f1:97:6e:85:e6:
f9:ba:5d:9d:81:d6:42:ea:db:ae:9f:85:a8:1d:6a:e6:c1:bc:
02:39:4d:63:85:68:d3:02:a2:7e:f3:0b:4a:4e:b1:ba:6d:76:
a2:08:9d:54:40:e0:5f:6d:74:ae:59:74:d7:eb:f7:5f:16:ba:
a7:6d:09:2b:cb:de:53:4d:5c:4c:b6:28:af:bb:ef:a3:8a:11:
26:f2:d5:19:64:8d:ee:5c:6b:61:b1:54:9a:fe:c1:d8:76:93:
95:e9:c8:46:13:ff:34:0a:56:6e:a9:8c:1e:f8:c4:30:a8:cc:
12:cb:4b:d5:b4:e5:30:16:51:57:3b:3b:2e:14:6a:58:00:70:
63:fd:88:ef:42:2b:22:82:bc:03:21:17:f1:60:40:53:b2:b2:
65:28:e0:7b:07:99:bd:e2:02:a6:a4:01:ae:86:48:9d:37:2f:
bd:03:8a:05:1e:6d:96:e7:55:8d:59:21:23:ef:a1:b7:7f:32:
cc:e1:f6:01:7b:cb:08:88:42:fd:bd:5f:6a:f2:c1:9f:19:78:
17:0a:8d:bf:1a:9c:d5:87:3c:bd:bf:0a:39:93:3f:2f:60:85:
20:0a:7d:81:98:37:c4:62:7d:51:22:2b:02:b4:43:92:0a:91:
f2:7a:ab:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:06 2024 by rpki-client on console-ams.rpki-client.org