Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/SdvDfxr_9WW6bsRtZiAaen-joPw.roa
File: SdvDfxr_9WW6bsRtZiAaen-joPw.roa (raw, json)
Hash identifier: ZHwxOythBnMyPyacE58GRwZq3xiXSmtXIMW7gSZU9BI=
Subject key identifier: 49:DB:C3:7F:1A:FF:F5:65:BA:6E:C4:6D:66:20:1A:7A:7F:A3:A0:FC
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 01F2DBEE
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/SdvDfxr_9WW6bsRtZiAaen-joPw.roa
Signing time: Sat 01 Jan 2022 15:06:18 +0000
ROA not before: Sat 01 Jan 2022 15:06:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 27323
IP address blocks: 45.14.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32693230 (0x1f2dbee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 1 15:06:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49dbc37f1afff565ba6ec46d66201a7a7fa3a0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c0:56:0d:6a:b8:3b:76:da:b9:cc:31:a1:f1:
8d:58:57:bf:b4:89:de:86:45:ee:3b:9c:f6:2c:26:
3b:85:d7:1b:81:f3:8f:66:e7:70:b0:fa:4e:bb:bc:
f0:c5:7e:d4:89:0a:90:23:5d:ec:8a:fe:3e:0a:33:
f7:47:bb:23:df:0a:04:54:30:0a:d4:23:54:c5:f4:
47:8a:34:24:2a:82:71:e3:46:f1:bc:ec:1c:8d:92:
1f:4f:6e:f0:f7:4b:46:7d:0d:d9:6a:27:21:89:56:
eb:c2:fb:e2:65:23:e6:b5:2e:00:68:25:91:5d:5c:
14:b6:94:17:ba:35:d2:3c:b6:35:03:a4:78:da:ca:
96:22:02:0b:d0:0f:2b:d2:96:e5:8f:05:bb:1f:dc:
a0:74:10:63:1b:37:0a:df:2b:f6:a3:91:b1:aa:c7:
17:8a:77:be:91:30:61:7f:d4:b8:80:65:62:b2:93:
e8:aa:c7:0b:9a:14:e8:13:14:c7:33:a0:58:bd:de:
59:bf:82:a2:7f:78:45:51:92:91:8f:5c:a4:64:c3:
bc:a1:44:d1:8e:dc:7e:4b:dc:80:21:4f:90:82:95:
c8:46:91:87:32:eb:6f:56:29:fa:ea:39:10:cf:dc:
b1:1d:40:07:e7:ae:d0:6e:5f:b5:17:ec:e0:35:f6:
cf:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DB:C3:7F:1A:FF:F5:65:BA:6E:C4:6D:66:20:1A:7A:7F:A3:A0:FC
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/SdvDfxr_9WW6bsRtZiAaen-joPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.115.0/24
Signature Algorithm: sha256WithRSAEncryption
53:0b:30:52:7d:7c:3f:83:94:6a:75:18:cf:a3:a9:67:32:c6:
fd:e4:2b:95:9f:1c:b3:4e:7e:49:66:d1:ea:a1:8e:fc:20:de:
dd:71:7c:71:69:a1:cf:fc:39:d9:63:f7:5f:11:0c:30:0d:34:
ff:0a:04:c7:f9:87:c0:62:5b:ed:00:cf:ec:21:9f:97:fb:6e:
50:8a:ca:72:ac:d3:35:28:bb:f0:81:cd:fe:38:ac:bc:20:c7:
f7:12:6e:16:d6:14:1c:67:b2:32:62:ad:97:ea:08:97:93:70:
b2:a7:66:e9:05:b5:2d:ea:05:87:ac:a1:45:43:15:01:3c:d0:
6c:e1:9e:44:b3:a6:50:0c:bf:cc:99:06:5b:ed:62:4c:6e:bb:
9e:00:b9:da:c2:d7:7a:d9:eb:de:db:61:60:80:99:c7:34:da:
f1:d5:f4:ed:d0:c4:b4:0c:41:4e:80:a3:df:dd:bd:81:3e:f6:
47:fc:fa:b4:42:18:a3:d4:a5:8d:e9:c5:f3:77:5f:bb:c8:28:
47:cf:d2:8e:f7:3b:b2:64:f1:8d:97:a3:3a:a1:dd:ac:2a:b7:
67:27:45:c9:70:8e:5b:b2:52:3c:15:2e:7b:e9:fd:7f:60:9d:
12:97:ca:c3:46:8e:c5:65:e9:6e:5f:46:a4:8a:ad:43:d7:f6:
64:63:1b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:08 2024 by rpki-client on console-ams.rpki-client.org