Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DUirsjnvwGjJiiV9_4jIDl2Sk-U.roa
File: DUirsjnvwGjJiiV9_4jIDl2Sk-U.roa (raw, json)
Hash identifier: G/KMuuHjkN2rMXRSQP0H68vu4HRpVMTx5rtj+wmGY/U=
Subject key identifier: 0D:48:AB:B2:39:EF:C0:68:C9:8A:25:7D:FF:88:C8:0E:5D:92:93:E5
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0184F0B7620423673B15A14204190581B31E
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DUirsjnvwGjJiiV9_4jIDl2Sk-U.roa
Signing time: Thu 08 Dec 2022 07:51:00 +0000
ROA not before: Thu 08 Dec 2022 07:51:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36351
IP address blocks: 45.128.198.0/24 maxlen: 24
2a0f:2740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f0:b7:62:04:23:67:3b:15:a1:42:04:19:05:81:b3:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Dec 8 07:51:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d48abb239efc068c98a257dff88c80e5d9293e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5e:cf:28:fe:08:d1:db:bf:3d:0c:07:95:16:
95:b2:aa:4d:b2:e9:16:48:b5:28:60:82:a1:67:94:
d7:3e:c6:54:24:52:92:81:f9:56:f6:e4:3f:c2:c8:
a6:a2:6e:fe:59:1e:e5:0c:c0:d1:ba:65:96:10:6c:
fa:53:5d:01:ca:af:e6:e0:99:fe:9c:ee:b1:d5:33:
de:ca:05:d6:99:ef:b4:6f:90:f2:e9:9f:03:dc:1b:
98:5e:0f:da:66:0c:49:83:46:15:2e:06:4d:0d:66:
5e:fd:4d:fa:28:f8:40:5c:48:6d:6b:05:7f:4e:d0:
24:69:39:cc:ef:05:51:66:85:0f:f7:19:46:f8:4f:
4c:ed:0c:d5:85:4b:99:78:79:51:1a:2b:df:33:3d:
96:b0:e3:04:e7:bd:ac:65:7e:bf:1b:3c:7a:1e:73:
f0:90:55:67:1f:c0:00:3d:69:67:01:a1:26:44:02:
6c:9f:25:d2:e0:02:88:e9:e1:bb:9b:ef:88:b1:ba:
7c:78:af:bb:cd:e5:3f:9b:7c:1c:3e:2c:dd:ba:90:
b9:c6:7e:d8:65:58:fa:fa:c9:71:85:a3:b9:8c:90:
30:2c:44:94:05:ec:8e:6f:9c:6e:78:b3:e1:a8:f8:
02:9d:07:7c:2e:5d:ee:8e:a1:7d:47:4c:7f:75:06:
7b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:48:AB:B2:39:EF:C0:68:C9:8A:25:7D:FF:88:C8:0E:5D:92:93:E5
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/DUirsjnvwGjJiiV9_4jIDl2Sk-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.198.0/24
IPv6:
2a0f:2740::/29
Signature Algorithm: sha256WithRSAEncryption
60:43:1a:75:97:85:a8:13:5e:da:92:9b:c7:56:ba:87:e3:7d:
76:59:5a:17:58:9e:e1:31:af:78:b3:14:08:ec:67:d7:10:28:
94:27:7b:83:8c:a5:81:42:e5:b9:37:a2:21:3a:6c:fc:7f:4e:
d0:93:42:f9:b3:ee:86:3a:d8:95:33:b5:45:70:63:b6:c8:17:
4c:6f:3b:c4:09:2a:e4:8c:81:9d:41:a6:d2:28:e5:a3:23:6a:
d1:14:17:29:66:8e:81:35:87:40:bf:b8:1f:0d:c8:be:09:f2:
83:69:6f:1c:1e:b7:c3:3c:79:21:36:fa:fd:79:6b:12:31:fb:
16:34:c3:2b:07:4b:44:ac:37:96:1b:9c:04:da:d5:95:92:f2:
ed:43:ef:80:c9:8a:16:10:39:0a:3d:49:26:54:35:76:08:fe:
ae:2d:d8:92:4a:cf:d1:aa:e5:3c:80:78:7c:f0:6f:6d:0e:ac:
f9:eb:c6:ef:97:9f:cb:17:8e:72:c9:2c:84:b2:6b:8f:e4:79:
8c:78:7e:cd:36:92:f0:0b:ad:a2:dd:2b:be:27:9e:9c:f5:a6:
37:bd:59:dd:1d:da:17:1d:ae:52:e3:52:88:6b:59:b6:83:33:
60:2c:7f:ec:13:4a:ed:80:73:a1:48:39:dc:49:95:2f:d3:4e:
a1:28:cb:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org