Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/vFnZW2ceXHHIM63Bfm5jtiEnovQ.roa
File: vFnZW2ceXHHIM63Bfm5jtiEnovQ.roa (raw, json)
Hash identifier: wij6soB/tI/U46Y+GMYnRZMdzvLlLuftTZi91LxgorU=
Subject key identifier: BC:59:D9:5B:67:1E:5C:71:C8:33:AD:C1:7E:6E:63:B6:21:27:A2:F4
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: FF1A8C
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/vFnZW2ceXHHIM63Bfm5jtiEnovQ.roa
Signing time: Sat 01 Jan 2022 13:01:01 +0000
ROA not before: Sat 01 Jan 2022 13:01:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211252
IP address blocks: 45.136.140.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16718476 (0xff1a8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: Jan 1 13:01:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc59d95b671e5c71c833adc17e6e63b62127a2f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:70:5f:ce:3b:b3:16:5d:c5:18:11:34:27:75:
44:09:0a:62:d0:d3:68:ec:3f:a4:15:9f:b7:b5:dd:
22:e4:5e:84:0e:a7:2b:6a:a6:87:7b:b0:f3:5f:c2:
b3:ff:74:f3:1c:be:13:57:55:a5:7c:b5:d2:17:0b:
f1:b8:6f:1a:94:e7:d4:af:b8:f5:2b:9d:c5:16:77:
cd:86:8c:7a:c4:2e:12:cb:7c:8d:e5:63:ba:4a:73:
76:ec:02:96:5d:00:05:2f:e3:e8:63:92:b6:14:82:
0f:5e:91:d9:10:78:4d:2b:14:64:b0:66:88:dd:25:
7b:07:2f:40:84:b6:2c:07:ed:94:a1:3c:e7:60:52:
73:ae:ed:d0:b5:7e:51:3c:f2:f2:28:7b:87:7a:6e:
1e:fc:35:91:57:a9:08:1f:b6:1f:e0:8f:ed:94:07:
7c:e8:03:12:03:6a:48:63:03:19:86:47:5b:d5:0a:
e8:c5:b5:f4:59:ed:5b:5b:36:0e:6d:ed:f5:50:87:
3d:0b:4a:c7:52:4c:82:69:e6:06:20:65:25:25:82:
9a:16:0d:c5:b6:66:45:0c:59:ad:65:37:c0:b9:25:
42:82:ed:a3:be:e6:63:3b:5c:f0:22:3d:cc:77:ed:
2f:1c:29:a4:1e:8f:e6:99:24:47:e0:af:27:d6:35:
e2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:59:D9:5B:67:1E:5C:71:C8:33:AD:C1:7E:6E:63:B6:21:27:A2:F4
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/vFnZW2ceXHHIM63Bfm5jtiEnovQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.140.0/23
Signature Algorithm: sha256WithRSAEncryption
87:75:3f:bb:6d:b9:0e:28:83:6f:bf:1d:3e:0e:2a:07:81:fb:
36:d3:7d:3d:11:63:a2:80:44:a7:f4:2b:34:3f:fc:cb:3c:60:
6e:d8:33:94:07:1e:b2:6f:c3:c3:10:ba:3f:65:f9:73:1c:a9:
d0:be:c6:09:05:2a:8b:c7:eb:25:a8:85:cb:26:50:7e:a8:ef:
5f:05:ed:9f:a4:7d:d3:bb:bd:93:46:01:ca:b8:39:db:63:87:
aa:b7:b5:0c:6f:76:31:84:92:3a:3c:bc:f1:ed:55:49:12:19:
d5:ce:a1:bf:5f:d4:09:78:32:f3:cf:eb:35:64:68:f9:31:a3:
a3:10:6d:1c:b1:11:b6:46:bf:9b:09:2b:5a:05:00:1d:57:c3:
52:9d:9c:e8:b0:20:56:78:c2:69:17:d1:91:6c:28:22:e5:30:
33:ac:94:2f:db:53:6e:ee:60:53:85:62:2e:ef:87:ae:0a:0e:
b1:2c:87:27:d3:6e:be:73:7b:2c:35:46:25:7b:10:31:39:48:
a8:84:86:d2:98:a9:cf:c2:f2:87:39:3f:10:a6:ed:31:3a:f8:
cc:62:86:96:55:5b:62:de:06:5e:8d:6f:8b:ed:e2:0d:3c:20:
81:2b:26:cc:9b:ab:50:3d:a1:c6:3a:c7:1c:07:92:ab:ec:aa:
6f:c8:b3:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:17 2023 by rpki-client on console-fra.rpki-client.org