Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f3695c-e340-4e2f-afeb-6b95d3c89c91/1/dOZBDOkWrLy8k5oFLnbK5ggxnVo.roa
File: dOZBDOkWrLy8k5oFLnbK5ggxnVo.roa (raw, json)
Hash identifier: KrJySKzMX615uCfUV+FopCTG2hhaMj4993dQ+7reg/c=
Subject key identifier: 74:E6:41:0C:E9:16:AC:BC:BC:93:9A:05:2E:76:CA:E6:08:31:9D:5A
Certificate issuer: /CN=4caf11150ce5fe9f70f36c9806747bb682b1ca21
Certificate serial: 06B355FD
Authority key identifier: 4C:AF:11:15:0C:E5:FE:9F:70:F3:6C:98:06:74:7B:B6:82:B1:CA:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK8RFQzl_p9w82yYBnR7toKxyiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f3695c-e340-4e2f-afeb-6b95d3c89c91/1/dOZBDOkWrLy8k5oFLnbK5ggxnVo.roa
Signing time: Wed 08 Jun 2022 09:34:02 +0000
ROA not before: Wed 08 Jun 2022 09:34:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35453
IP address blocks: 45.67.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112416253 (0x6b355fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4caf11150ce5fe9f70f36c9806747bb682b1ca21
Validity
Not Before: Jun 8 09:34:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74e6410ce916acbcbc939a052e76cae608319d5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bc:eb:8a:02:44:36:08:5a:7e:b4:4d:bf:9c:
09:d9:f1:d4:8b:8d:56:0b:1d:8c:a7:98:ba:27:c6:
b7:53:72:22:d2:8d:80:f2:0d:6a:aa:d5:05:5f:54:
43:bc:67:2a:3a:ef:9c:67:bf:1f:27:1a:85:f7:bf:
7e:ec:23:75:61:ba:6a:ad:7a:40:a2:db:b1:a4:f7:
71:1f:05:48:bf:fd:2a:92:36:38:c3:ba:d7:0a:08:
f9:78:a8:f5:a3:a2:bf:fd:5d:25:ff:29:e3:21:cb:
32:af:8a:da:65:ff:8e:fd:28:f1:39:49:96:f2:84:
7e:55:1c:14:01:d1:81:6e:20:b5:62:a1:42:52:bf:
5c:bf:f1:fd:80:b6:92:ed:92:bd:d3:5d:eb:32:60:
2b:32:cf:2a:a6:ed:b5:ce:57:0d:13:3d:a1:91:65:
ff:df:33:59:90:d3:01:19:42:8c:07:3a:31:51:8d:
41:f2:c7:37:a8:99:1d:79:ec:ce:82:ce:f4:3f:68:
a3:0b:e9:13:92:0c:23:e9:3e:92:47:df:44:92:1e:
b1:cd:04:58:6c:22:9e:a8:f2:c8:92:75:a0:f6:a6:
96:0c:40:72:3e:9f:bb:61:3b:12:45:bb:c2:38:8a:
90:e4:45:bc:ad:84:25:d4:c1:d9:e0:ce:7f:51:ca:
f9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E6:41:0C:E9:16:AC:BC:BC:93:9A:05:2E:76:CA:E6:08:31:9D:5A
X509v3 Authority Key Identifier:
keyid:4C:AF:11:15:0C:E5:FE:9F:70:F3:6C:98:06:74:7B:B6:82:B1:CA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK8RFQzl_p9w82yYBnR7toKxyiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f3695c-e340-4e2f-afeb-6b95d3c89c91/1/dOZBDOkWrLy8k5oFLnbK5ggxnVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f3695c-e340-4e2f-afeb-6b95d3c89c91/1/TK8RFQzl_p9w82yYBnR7toKxyiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.64.0/22
Signature Algorithm: sha256WithRSAEncryption
25:df:19:df:8e:ff:fe:f7:9d:7c:08:8e:a9:11:09:ef:d9:36:
74:1e:0e:8d:58:7a:82:35:a6:33:7f:7c:8f:a1:38:af:fc:b1:
fd:5e:20:53:5b:e5:c8:bb:dd:7d:3f:ba:5f:9f:cd:49:29:6b:
5f:9e:6d:b6:1b:1f:37:95:10:50:96:07:0c:6d:86:4b:d1:7f:
5a:16:47:08:4f:73:52:e3:1c:3e:99:aa:78:f7:aa:c4:78:c0:
0a:63:6b:e5:be:75:90:9c:bb:bd:e1:90:9f:20:9a:14:c4:d1:
86:a0:07:fb:26:e1:6b:46:65:ff:02:f4:e3:da:eb:5b:21:fb:
8f:e2:28:8c:1a:d7:e2:82:03:7b:2d:a8:96:21:3d:6b:9e:99:
98:76:a0:38:f8:68:f1:25:47:82:b1:d7:c3:4c:e9:f6:1e:3d:
46:b1:1a:67:59:15:f4:64:ea:d6:22:36:15:cd:9f:6a:36:31:
ff:99:af:95:f2:01:34:f8:71:12:c4:2b:4b:c5:4a:2c:f7:9e:
c2:05:cb:28:ba:9d:5e:7b:2b:e2:ad:02:d8:d5:dc:a6:ba:3e:
bd:c3:86:de:9a:85:8e:0a:e2:01:15:d1:d1:06:60:46:50:1b:
c4:66:26:af:65:f4:ec:f9:ce:58:e5:ca:ac:07:ed:c0:19:e7:
43:64:d5:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:54 2024 by rpki-client on console-fra.rpki-client.org