Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/8zUhp8JaqsXOgTdLVBbgM92yEmQ.roa
File: 8zUhp8JaqsXOgTdLVBbgM92yEmQ.roa (raw, json)
Hash identifier: sbG4zMHKR0w2FxOvGF6RWrlrchIpyZbXPh7Edx/N8q0=
Subject key identifier: F3:35:21:A7:C2:5A:AA:C5:CE:81:37:4B:54:16:E0:33:DD:B2:12:64
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 15695508
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/8zUhp8JaqsXOgTdLVBbgM92yEmQ.roa
Signing time: Sat 01 Jan 2022 11:55:42 +0000
ROA not before: Sat 01 Jan 2022 11:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400040
IP address blocks: 45.95.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359224584 (0x15695508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 11:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f33521a7c25aaac5ce81374b5416e033ddb21264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:18:9c:4a:6b:b8:46:90:ba:e8:1b:47:20:92:
cc:cd:cf:48:2c:50:fb:64:d5:b0:01:77:88:e3:3a:
9b:74:f1:57:ec:34:59:46:bf:51:89:f7:c3:83:e5:
49:d1:fa:a8:9d:86:ad:f6:33:dc:33:a7:15:2b:1c:
95:88:4c:d6:73:d5:17:0e:42:66:06:11:16:5f:31:
fc:cb:96:99:79:8f:8b:d7:79:3a:2a:52:a5:88:6f:
91:eb:8d:f3:5b:eb:7a:7d:70:9a:d0:e2:10:c7:d6:
6e:b9:e2:b8:2e:08:17:3a:7e:d1:2d:0f:b8:12:4e:
83:7f:be:8a:a9:9d:fd:ac:01:b0:50:f1:47:1d:df:
04:15:ff:c8:50:0c:a9:57:fc:b6:39:93:a3:a9:e6:
aa:44:09:4d:a6:4f:e2:91:d0:e2:67:eb:1c:59:36:
8c:04:91:49:6d:f8:2f:f5:07:d3:72:21:55:ec:5c:
77:7b:48:0f:ca:ef:ac:64:5f:03:ae:01:16:b7:2b:
1a:be:a1:3d:6c:52:84:cf:90:83:03:45:f6:45:71:
7d:1c:e2:2b:49:c1:96:84:f2:a7:1f:ca:47:4e:38:
b7:b4:a8:d8:09:91:f6:47:b9:4d:77:64:de:a2:f2:
4d:47:41:40:2e:44:2e:38:29:67:e9:88:aa:69:30:
98:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:35:21:A7:C2:5A:AA:C5:CE:81:37:4B:54:16:E0:33:DD:B2:12:64
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/8zUhp8JaqsXOgTdLVBbgM92yEmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.35.0/24
Signature Algorithm: sha256WithRSAEncryption
18:73:91:b0:7b:0d:2d:fe:33:b7:7e:c3:19:d0:c7:91:4e:eb:
b8:b5:bd:07:8d:ca:7b:87:01:27:31:13:22:dd:de:54:8b:cc:
c5:19:4e:86:f5:3b:11:de:3c:32:0b:e4:1f:cb:31:83:85:3b:
dc:c2:3f:51:51:d6:84:05:54:f8:59:db:5d:2f:bd:12:79:a1:
1d:a1:4b:84:58:05:4a:c5:32:2d:30:eb:6a:2c:98:6a:1a:92:
61:fd:20:fe:a4:c3:9d:43:d3:3c:25:40:0e:b1:83:2b:af:95:
da:87:e9:c3:a8:08:bf:97:ca:55:a1:b4:69:ea:70:d4:92:77:
0d:d5:56:69:c8:34:7c:e4:39:df:37:a2:69:b9:99:20:dd:34:
63:3b:b7:ec:f9:07:c4:7e:d3:d4:29:66:70:f0:cd:37:23:bf:
fc:b9:ed:7b:83:83:df:67:fc:58:ea:41:a3:0a:c9:3d:e3:5b:
95:af:49:3a:4e:59:7b:25:da:f8:33:7d:24:5d:4a:f0:d9:0f:
79:2b:38:3d:a6:b7:4f:2c:8d:13:f0:d5:01:bb:00:f5:a7:b3:
62:0d:7f:82:42:0e:c2:04:83:62:65:27:75:08:9d:32:8f:c3:
29:f0:cc:53:b9:24:ee:b5:66:c6:4f:f6:d7:ea:bb:35:de:ac:
1b:a5:34:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-fra.rpki-client.org