Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/efDNkbY0fmcKSh2ifWVKKcIMIIk.roa
File: efDNkbY0fmcKSh2ifWVKKcIMIIk.roa (raw, json)
Hash identifier: l2ZbGeq/qcruxigYFbhdXfRwuLqiY3v0Gl06z++EfD8=
Subject key identifier: 79:F0:CD:91:B6:34:7E:67:0A:4A:1D:A2:7D:65:4A:29:C2:0C:20:89
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 0581C826
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/efDNkbY0fmcKSh2ifWVKKcIMIIk.roa
Signing time: Sat 01 Jan 2022 06:04:25 +0000
ROA not before: Sat 01 Jan 2022 06:04:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 45.11.90.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92391462 (0x581c826)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Jan 1 06:04:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79f0cd91b6347e670a4a1da27d654a29c20c2089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:36:b0:87:44:44:1c:7e:32:3a:cd:7b:ba:81:
44:b6:c0:27:f0:8e:e3:aa:c9:ae:89:3e:97:78:42:
f7:86:e2:30:2b:c6:94:ee:e5:c3:b6:76:02:3f:dd:
eb:ef:b5:6d:f9:88:3d:a4:33:bb:68:c3:d5:ee:ba:
3a:64:f7:2a:92:dc:a9:67:2e:01:7d:2e:72:a1:48:
71:49:0c:81:50:75:0f:1c:6c:53:eb:49:ef:6f:b4:
cf:01:93:c5:b6:2d:15:a9:83:6c:9b:82:18:6b:f7:
b2:52:66:f7:1a:57:54:49:87:b0:f1:1a:88:7b:93:
a2:cf:d7:12:54:44:4d:20:b6:8b:53:b0:c7:ee:c8:
9c:58:ec:b4:f5:ef:96:64:c3:f7:40:0e:5a:b2:9e:
71:63:7b:ee:3a:09:02:57:2b:1e:71:54:88:35:f5:
53:7d:8f:23:d0:dc:5b:ea:96:75:0b:6a:43:b4:94:
ab:42:64:5c:72:06:ff:63:a7:ad:06:ce:12:77:09:
c4:da:ef:12:50:0e:e6:e5:b0:c0:52:38:70:bc:d4:
a3:bb:01:f9:71:3c:70:04:bd:98:46:e4:4b:ba:ea:
85:8b:7a:9c:f2:81:63:7e:a7:9b:d0:9a:a2:44:f2:
0e:3d:bf:f7:51:96:44:72:bd:06:6e:47:0e:96:86:
50:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F0:CD:91:B6:34:7E:67:0A:4A:1D:A2:7D:65:4A:29:C2:0C:20:89
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/efDNkbY0fmcKSh2ifWVKKcIMIIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.90.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:e2:a4:1e:42:70:00:a8:5b:09:04:d6:d5:40:ac:71:e3:3f:
b1:3b:ef:20:b0:2a:c7:22:66:29:e4:8a:6b:7e:8a:80:59:59:
04:a8:4d:b9:28:a3:15:74:2b:18:c4:92:9b:b7:37:d9:a4:9b:
70:6d:8f:96:9b:55:de:a5:ff:79:dc:d1:82:bc:70:19:7f:71:
8a:7a:07:81:31:50:59:8f:74:4f:ae:af:24:49:dc:f3:76:3a:
fb:8b:ad:6a:da:25:c2:b5:65:f5:39:40:94:73:a2:e9:79:0c:
33:ef:50:38:8f:41:89:34:75:49:cd:2b:d4:b7:8d:4c:7f:a9:
e4:2b:a1:c4:09:fc:50:a0:fb:92:ab:5f:ab:e6:fd:1c:ce:6d:
8d:6d:b7:ae:b9:c6:40:e8:75:a3:5e:0e:ed:0e:12:3e:b8:8d:
45:79:6f:5c:56:77:59:52:39:5b:af:cb:dd:57:75:08:55:1c:
c5:6d:0f:0a:6c:4c:0f:4d:13:4c:e5:05:79:c7:7a:27:79:03:
06:f0:5c:e9:5c:13:eb:75:9f:79:08:0a:4b:0d:0e:b9:a1:1f:
d4:19:dc:2e:cf:88:28:e3:5a:2f:00:72:38:86:7a:bd:ad:e4:
e7:98:3e:74:f0:85:ea:31:0e:ab:3f:8a:ea:ff:b8:2e:d6:e2:
52:fb:2a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org