Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/b03rJJTMqKS9wBDUUi153xFAZTY.roa
File: b03rJJTMqKS9wBDUUi153xFAZTY.roa (raw, json)
Hash identifier: euciSZbKqrGGv9BAz0r5ZWQxnqB/Z7gZq9f9R+i6AEc=
Subject key identifier: 6F:4D:EB:24:94:CC:A8:A4:BD:C0:10:D4:52:2D:79:DF:11:40:65:36
Certificate issuer: /CN=58ee47d32a599341f5ff1a88bf142e1538da40ea
Certificate serial: 088CC5E5
Authority key identifier: 58:EE:47:D3:2A:59:93:41:F5:FF:1A:88:BF:14:2E:15:38:DA:40:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WO5H0ypZk0H1_xqIvxQuFTjaQOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/b03rJJTMqKS9wBDUUi153xFAZTY.roa
Signing time: Sat 01 Jan 2022 00:55:15 +0000
ROA not before: Sat 01 Jan 2022 00:55:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 45.15.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143443429 (0x88cc5e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ee47d32a599341f5ff1a88bf142e1538da40ea
Validity
Not Before: Jan 1 00:55:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f4deb2494cca8a4bdc010d4522d79df11406536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e8:2f:fa:a1:f4:50:f9:1a:08:79:2c:a8:2c:
3d:61:88:ce:2c:00:8d:97:6d:bc:a2:ae:44:8e:b4:
db:21:df:d5:6b:06:0f:6b:e4:45:0e:8d:f9:83:e7:
12:7b:ce:4c:2c:d6:df:0d:2d:79:93:20:37:20:9f:
6c:87:44:7a:07:30:86:ab:ec:13:e1:44:34:36:05:
a9:cb:68:9b:5c:d8:f3:cd:58:94:ed:4c:88:84:28:
69:b1:e9:a9:62:77:ad:b9:94:b4:f3:1f:07:16:9d:
15:ae:bf:0d:ab:0f:01:bc:95:d6:e7:68:be:91:74:
8d:a5:bc:d0:21:84:77:fc:64:10:62:d2:68:bc:56:
c7:c6:8f:18:be:9c:4b:09:b6:f7:e5:1e:b3:e6:eb:
fc:e6:f2:8c:c5:2b:ce:ff:84:90:3e:e4:f8:61:18:
06:5e:7f:ec:fd:e3:5e:36:c3:af:42:4c:6e:79:4e:
4b:b3:c8:55:1b:59:b9:4a:f3:87:be:1e:3d:43:d1:
f0:f8:c3:0d:29:5a:5e:02:1d:af:cd:9a:9d:ac:3c:
66:85:15:0e:eb:e4:a9:8d:5d:37:9a:a9:71:f5:cc:
b3:d9:10:59:47:a2:fa:88:20:af:aa:e5:30:b4:fc:
e4:b0:06:67:10:ea:6a:1c:71:f1:d1:09:be:2c:0d:
14:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:4D:EB:24:94:CC:A8:A4:BD:C0:10:D4:52:2D:79:DF:11:40:65:36
X509v3 Authority Key Identifier:
keyid:58:EE:47:D3:2A:59:93:41:F5:FF:1A:88:BF:14:2E:15:38:DA:40:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WO5H0ypZk0H1_xqIvxQuFTjaQOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/b03rJJTMqKS9wBDUUi153xFAZTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a42699-1d3f-4a70-83ce-c564b40eca05/1/WO5H0ypZk0H1_xqIvxQuFTjaQOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.4.0/22
Signature Algorithm: sha256WithRSAEncryption
09:c8:4d:39:57:7f:bd:16:e0:9f:e1:50:92:7d:9c:b6:d6:c2:
26:a9:56:74:8a:08:74:e0:80:1a:47:e5:d3:bc:5d:45:b5:95:
e9:84:53:5b:a8:72:57:47:e8:8c:2c:a5:35:0c:aa:66:db:6e:
c6:4d:bc:c9:27:da:c7:ff:ab:39:0a:64:da:75:ae:5f:a8:1a:
f4:4d:8c:40:66:fb:a4:fb:36:a8:4a:56:e0:53:7e:63:20:66:
46:ef:7d:02:84:43:ac:24:56:47:75:1b:75:02:25:c9:ac:e1:
d7:3b:17:16:4f:e3:2c:ef:fb:b1:42:a0:79:33:84:87:19:7e:
63:95:5b:ec:4e:7b:69:7f:59:a3:e5:5c:5c:b8:1c:63:6e:f1:
b6:ee:9d:af:61:38:d2:ec:a2:1e:7d:4e:e4:05:2e:60:07:83:
87:4f:0f:54:6d:25:8c:37:59:48:67:15:38:dc:64:e8:24:ed:
73:1b:54:5e:16:d7:5c:4d:12:e9:8c:ac:af:e5:3c:a1:08:b5:
f3:16:1b:23:cc:37:b0:55:dc:43:0e:1f:22:ce:af:ce:07:a6:
02:8a:ad:26:2b:36:05:09:ba:a5:ee:b5:3c:0f:7c:92:58:b1:
cd:42:da:4b:af:6e:af:0f:92:be:3f:85:b1:04:04:41:49:93:
4e:cf:e7:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:47 2024 by rpki-client on console-ams.rpki-client.org