Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f3695c-e340-4e2f-afeb-6b95d3c89c91/1/EX-e9cReHhK_muNWwIS35dKEtBA.roa
File: EX-e9cReHhK_muNWwIS35dKEtBA.roa (raw, json)
Hash identifier: /9/J71pI16bejm9cCy0ic3Uzi7kSnEkpoM1+xzrvojQ=
Subject key identifier: 11:7F:9E:F5:C4:5E:1E:12:BF:9A:E3:56:C0:84:B7:E5:D2:84:B4:10
Certificate issuer: /CN=4caf11150ce5fe9f70f36c9806747bb682b1ca21
Certificate serial: 054A403D
Authority key identifier: 4C:AF:11:15:0C:E5:FE:9F:70:F3:6C:98:06:74:7B:B6:82:B1:CA:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK8RFQzl_p9w82yYBnR7toKxyiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f3695c-e340-4e2f-afeb-6b95d3c89c91/1/EX-e9cReHhK_muNWwIS35dKEtBA.roa
Signing time: Sat 01 Jan 2022 15:56:21 +0000
ROA not before: Sat 01 Jan 2022 15:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50628
IP address blocks: 45.67.64.0/22 maxlen: 22
2a09:7140::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88752189 (0x54a403d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4caf11150ce5fe9f70f36c9806747bb682b1ca21
Validity
Not Before: Jan 1 15:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=117f9ef5c45e1e12bf9ae356c084b7e5d284b410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:01:15:c1:0d:e8:2d:4b:2a:0c:ee:f2:29:f8:
b8:59:cd:d3:9f:4c:3d:3d:96:03:38:8b:d0:a2:55:
bc:e3:43:f2:55:52:e6:d5:a6:df:66:86:0a:c7:7e:
65:91:39:48:71:58:4a:6a:a0:bf:e3:51:4c:0e:dd:
ef:e8:3f:58:e3:22:bc:55:1e:11:a5:ee:dd:49:88:
50:f2:70:01:09:38:a6:f0:9d:3e:2b:bf:82:9c:a4:
c0:c9:91:85:1c:77:2b:87:ad:80:73:57:91:27:ea:
10:8b:56:c8:00:82:67:1f:6a:eb:c1:33:7c:b5:cf:
74:40:f2:34:4e:a9:f8:76:d1:45:34:cc:62:46:87:
01:ba:5b:a0:fc:2a:79:9f:12:92:5b:ec:53:f8:37:
b8:ca:b0:5f:72:e5:d4:11:e9:97:c7:4f:68:c0:b8:
b7:b1:81:8e:02:ad:91:da:43:90:fd:25:c6:9e:5d:
77:dd:51:d9:df:b0:a9:1d:be:86:91:8b:3c:82:a6:
e5:3e:0f:28:51:4c:5a:b6:29:80:a2:fa:2f:e7:d9:
a0:91:d1:5a:22:a8:c0:e8:d1:c6:5b:5a:e0:05:ea:
8c:cb:5c:53:e5:b3:21:1a:b5:07:fd:90:5e:70:5c:
9d:94:8a:c1:43:72:1a:e2:bc:0e:eb:15:1d:67:4c:
70:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:7F:9E:F5:C4:5E:1E:12:BF:9A:E3:56:C0:84:B7:E5:D2:84:B4:10
X509v3 Authority Key Identifier:
keyid:4C:AF:11:15:0C:E5:FE:9F:70:F3:6C:98:06:74:7B:B6:82:B1:CA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK8RFQzl_p9w82yYBnR7toKxyiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f3695c-e340-4e2f-afeb-6b95d3c89c91/1/EX-e9cReHhK_muNWwIS35dKEtBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f3695c-e340-4e2f-afeb-6b95d3c89c91/1/TK8RFQzl_p9w82yYBnR7toKxyiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.64.0/22
IPv6:
2a09:7140::/29
Signature Algorithm: sha256WithRSAEncryption
41:29:18:a8:80:4d:32:bf:60:0d:45:e6:c1:13:01:a7:d1:ae:
a7:94:9e:8a:28:11:82:6e:bd:8b:8d:8e:bb:cf:28:57:55:f8:
71:fe:97:c7:90:bf:c0:8b:c6:5e:7c:c5:e6:68:6f:81:f7:1d:
70:e5:16:10:9c:5c:57:bd:50:45:f3:eb:d9:8b:d3:12:ea:4f:
e3:73:8c:65:be:2e:28:99:f7:2b:63:4f:49:b9:49:a8:aa:49:
97:3a:1d:6c:e0:28:aa:2b:61:0f:d7:a3:bb:66:4f:a5:5e:f5:
60:44:e4:80:92:a7:ed:f8:11:6a:df:84:d9:b0:5d:ae:67:4b:
fb:31:25:59:62:c4:e1:b4:6e:5b:0d:24:0e:7b:65:f7:c5:f4:
5d:7b:45:6e:a3:72:ad:eb:71:45:67:b7:77:78:e6:15:6e:cd:
6d:99:b0:c9:05:47:38:2b:bb:6e:bc:1d:8d:22:6b:06:c9:bf:
e7:95:4b:18:e5:69:8b:7f:c3:42:4f:48:08:38:4c:82:5f:4b:
b2:56:35:88:b2:9b:be:86:93:d3:2d:f6:54:f9:a3:a6:67:8d:
c8:06:50:2e:99:35:8f:49:6a:e0:81:7e:28:c5:3a:26:4b:27:
4a:8b:9c:16:f2:15:2b:1f:11:d9:a7:cd:4f:12:8e:3d:f6:4d:
1d:b2:74:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:41 2025 by rpki-client