Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/3qDEFgLcr8Ppmzzp-SHREddDRMA.roa
File: 3qDEFgLcr8Ppmzzp-SHREddDRMA.roa (raw, json)
Hash identifier: MtuGPzwsPvMt5iYYmAy7Vbi+KHvd3ofwMSziRA7Oi30=
Subject key identifier: DE:A0:C4:16:02:DC:AF:C3:E9:9B:3C:E9:F9:21:D1:11:D7:43:44:C0
Certificate issuer: /CN=9f284111700492ab0be110e821a1bce73f80a565
Certificate serial: 038A456C
Authority key identifier: 9F:28:41:11:70:04:92:AB:0B:E1:10:E8:21:A1:BC:E7:3F:80:A5:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/3qDEFgLcr8Ppmzzp-SHREddDRMA.roa
Signing time: Sat 01 Jan 2022 15:02:51 +0000
ROA not before: Sat 01 Jan 2022 15:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212327
IP address blocks: 45.9.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59393388 (0x38a456c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f284111700492ab0be110e821a1bce73f80a565
Validity
Not Before: Jan 1 15:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dea0c41602dcafc3e99b3ce9f921d111d74344c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b4:a9:32:a5:61:22:9c:c8:02:03:ac:77:cc:
db:ee:da:4a:1f:e3:d1:76:b1:8a:d8:60:32:b0:37:
6c:44:10:9e:36:58:78:c6:0d:f3:91:21:15:1a:e1:
a2:88:ba:5b:19:70:d8:93:79:46:bb:dc:6a:8c:ae:
56:60:c4:b9:ae:0e:6a:64:a8:f0:db:59:38:fd:d3:
6b:9b:e6:a3:a7:53:c6:9d:94:6a:9f:bb:2a:49:a9:
e4:18:ac:cf:51:76:6f:54:d6:64:24:95:a7:8a:e4:
ce:46:06:9b:00:7d:03:00:aa:13:6a:90:85:17:19:
14:88:75:da:59:1f:24:2a:95:ce:c3:a1:13:12:73:
5e:c7:20:e3:97:6f:d7:bc:fe:11:d5:db:de:10:78:
26:91:3b:68:a7:b5:d7:31:3c:85:d6:9d:96:7b:b8:
96:63:24:c8:98:cc:1c:72:6d:5d:b4:f4:99:4f:fc:
99:e6:94:5e:5e:e4:56:49:bc:c3:9f:4f:6b:81:9d:
9f:88:66:59:bb:6a:90:8f:ec:20:ea:96:18:1a:f3:
5d:38:05:62:39:81:44:b3:23:db:b1:bb:76:34:2d:
3f:aa:8e:91:6d:44:24:e5:bf:38:7c:07:f1:dc:f2:
2f:3b:33:85:27:b9:c1:45:bf:33:3f:58:c5:56:04:
fb:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A0:C4:16:02:DC:AF:C3:E9:9B:3C:E9:F9:21:D1:11:D7:43:44:C0
X509v3 Authority Key Identifier:
keyid:9F:28:41:11:70:04:92:AB:0B:E1:10:E8:21:A1:BC:E7:3F:80:A5:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/3qDEFgLcr8Ppmzzp-SHREddDRMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.136.0/22
Signature Algorithm: sha256WithRSAEncryption
83:de:82:04:2f:a2:8e:7e:07:bf:5e:98:3d:31:08:84:79:c4:
03:01:6a:41:12:0a:b4:db:7f:6c:9d:5b:81:a0:13:c5:7d:76:
c7:86:ef:85:5b:55:11:fc:46:52:0e:f2:36:b4:3e:fa:23:a3:
0c:78:ab:ef:64:1a:cb:ef:f1:73:f7:0f:c6:d3:51:e7:83:e4:
46:91:16:43:c5:f0:56:0b:7f:64:81:f1:2c:1f:3d:49:10:b2:
02:96:f4:27:bc:d0:49:9a:19:66:d9:6c:68:bf:f0:b6:02:2b:
a9:c5:9a:08:b0:e4:b4:13:ff:d4:49:1a:f5:e4:63:49:e7:46:
74:c0:dd:06:af:94:b2:65:3c:d9:04:6b:63:f5:c9:62:08:a4:
7a:4b:a2:22:cb:23:4b:83:7e:99:31:97:43:ae:c8:a9:60:ea:
a3:8d:2c:c3:2b:41:d9:5b:09:64:1b:47:3c:fd:1c:6e:f1:71:
1c:69:59:77:bb:a9:47:b8:e8:9a:d9:c8:14:9a:1e:38:29:3a:
aa:0e:52:75:f5:92:27:80:28:d8:f4:c0:11:23:6a:a2:f1:b3:
a2:1d:21:a0:a1:14:35:63:e7:5a:e6:5a:44:09:3e:f1:d3:80:
2a:4b:f3:a5:f6:36:0d:66:ae:67:b6:ab:62:e0:a2:c1:d9:56:
27:35:b1:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:36 2024 by rpki-client on console-fra.rpki-client.org