Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/k9nfZUwpPlpV6yT-iLmPJCsLKtg.roa
File: k9nfZUwpPlpV6yT-iLmPJCsLKtg.roa (raw, json)
Hash identifier: f2rGm19SgDwViZxmhwehogbn81JOSe+efUn46ruRAmM=
Subject key identifier: 93:D9:DF:65:4C:29:3E:5A:55:EB:24:FE:88:B9:8F:24:2B:0B:2A:D8
Certificate issuer: /CN=f97fdecadb3261334387cf091d02e0713b781d31
Certificate serial: 0889D6A5
Authority key identifier: F9:7F:DE:CA:DB:32:61:33:43:87:CF:09:1D:02:E0:71:3B:78:1D:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-X_eytsyYTNDh88JHQLgcTt4HTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/k9nfZUwpPlpV6yT-iLmPJCsLKtg.roa
Signing time: Sat 01 Jan 2022 15:58:07 +0000
ROA not before: Sat 01 Jan 2022 15:58:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51185
IP address blocks: 45.13.144.0/23 maxlen: 23
45.13.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143251109 (0x889d6a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f97fdecadb3261334387cf091d02e0713b781d31
Validity
Not Before: Jan 1 15:58:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93d9df654c293e5a55eb24fe88b98f242b0b2ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fd:8b:46:73:68:6a:66:f8:a4:7f:aa:18:3d:
e3:05:57:14:8f:3b:e4:c0:85:2e:c2:25:22:dc:ed:
38:cc:b2:65:0e:2e:ab:b7:74:3d:ec:88:9e:05:41:
e7:2d:a8:53:5f:cc:54:f1:87:d1:ff:1f:27:08:c9:
c1:e0:3f:2e:2f:54:5e:bf:28:fb:14:9f:94:d0:36:
c7:49:0d:2e:b3:b7:96:f5:73:3f:c0:a6:44:80:05:
40:a2:e9:45:ef:6f:26:dc:3a:fa:2c:79:72:30:c5:
89:48:e3:4e:b1:c0:7d:74:bc:65:e2:07:02:59:c9:
fb:5f:ec:9b:8a:5e:a5:23:34:86:01:91:e4:50:42:
de:38:25:a1:38:19:15:67:07:14:a1:4c:7d:c1:e8:
f7:08:d1:a3:5e:59:79:2f:3c:9f:c9:69:dc:8a:28:
52:9b:42:59:02:11:33:32:9e:5f:1d:40:16:e2:af:
7b:eb:cb:6c:ac:75:fb:e8:fa:8e:d2:1b:46:b7:a7:
e4:a1:7b:ba:7b:56:8b:16:e4:07:ab:02:a4:a8:bb:
63:21:7e:6c:35:97:65:4b:44:14:89:5b:13:f9:7c:
5c:4d:4e:1a:3d:88:e7:b0:6c:8f:24:4c:a1:6a:3a:
f0:e8:94:d4:fb:ab:dd:b7:85:2f:93:d3:c5:ec:bf:
6a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D9:DF:65:4C:29:3E:5A:55:EB:24:FE:88:B9:8F:24:2B:0B:2A:D8
X509v3 Authority Key Identifier:
keyid:F9:7F:DE:CA:DB:32:61:33:43:87:CF:09:1D:02:E0:71:3B:78:1D:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-X_eytsyYTNDh88JHQLgcTt4HTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/k9nfZUwpPlpV6yT-iLmPJCsLKtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/1-X_eytsyYTNDh88JHQLgcTt4HTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.144.0/22
Signature Algorithm: sha256WithRSAEncryption
20:4e:ee:7f:5b:a5:4d:ff:2d:65:79:42:38:c4:6c:48:92:96:
ff:63:05:87:42:18:02:7e:95:fa:d2:4b:39:92:98:ea:f2:3e:
01:72:e4:e0:9d:c6:b1:92:f1:7c:7b:af:3f:d0:6f:43:e8:6f:
c1:fb:ae:7f:95:a2:65:7b:cf:35:06:b3:0f:1c:26:c9:1d:1c:
8c:f3:54:5c:f3:ae:a4:bc:e6:6a:c0:33:ce:57:b4:c0:a0:b3:
81:0c:05:36:1e:2b:47:dc:50:eb:0f:dd:81:51:20:32:89:ce:
47:3f:45:5c:c5:cf:bb:49:cf:7a:f8:e4:05:88:26:a2:f8:2b:
6e:26:ac:51:4e:2a:b4:67:e7:fe:82:c1:63:c5:74:43:b4:70:
53:d8:2d:8f:b5:81:91:75:4f:d0:e5:d1:f4:0a:13:c1:c9:14:
de:e5:c6:93:06:18:8b:51:93:dd:f8:51:7d:7b:9c:e0:a6:47:
2e:d6:c0:4b:3e:f9:2c:3c:86:ec:40:08:d8:4a:52:d4:75:2a:
88:09:4e:61:4e:db:c4:cd:15:0a:e1:9d:1d:92:fa:6e:0a:93:
be:7f:7b:46:e7:4f:68:1d:65:28:56:87:2a:b7:d7:8e:f3:8a:
db:b5:8d:1f:09:1f:06:57:b5:f2:58:fd:99:f3:7a:1c:7d:8e:
75:20:81:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:12 2024 by rpki-client on console-fra.rpki-client.org