Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/4cb1b1-701b-4e42-8b05-2cbc40e5fe62/1/gHhW_pWRY1YNzNhbUJQp0p80aKQ.roa
File: gHhW_pWRY1YNzNhbUJQp0p80aKQ.roa (raw, json)
Hash identifier: PNq/1FLH0MfHqGP3jl/e0SoRbMq7WuJh3hxKZNk8bnc=
Subject key identifier: 80:78:56:FE:95:91:63:56:0D:CC:D8:5B:50:94:29:D2:9F:34:68:A4
Certificate issuer: /CN=7728052ae7d10fd2261a2248fc00d202b0f25574
Certificate serial: 085E6FF9
Authority key identifier: 77:28:05:2A:E7:D1:0F:D2:26:1A:22:48:FC:00:D2:02:B0:F2:55:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dygFKufRD9ImGiJI_ADSArDyVXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/4cb1b1-701b-4e42-8b05-2cbc40e5fe62/1/gHhW_pWRY1YNzNhbUJQp0p80aKQ.roa
Signing time: Sat 01 Jan 2022 12:57:01 +0000
ROA not before: Sat 01 Jan 2022 12:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208981
IP address blocks: 45.12.124.0/24 maxlen: 24
45.12.125.0/24 maxlen: 24
45.12.127.0/24 maxlen: 24
45.12.126.0/24 maxlen: 24
2a0e:a900::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140406777 (0x85e6ff9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7728052ae7d10fd2261a2248fc00d202b0f25574
Validity
Not Before: Jan 1 12:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=807856fe959163560dccd85b509429d29f3468a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bb:c5:98:23:36:f9:e1:a5:11:4b:43:d7:1a:
97:8e:cb:5b:94:49:2e:3a:40:f9:8c:be:b6:50:7d:
f0:c5:d5:f4:c7:e2:41:14:47:9a:85:fa:29:be:d7:
f9:ac:82:02:2b:84:01:14:e6:28:f4:e5:c6:e6:1c:
fd:78:c0:03:75:9d:e6:8c:e6:86:76:4b:22:86:c1:
59:d7:27:9a:00:57:6d:f0:65:78:a5:cf:0b:5d:2b:
53:64:ad:21:f4:9c:8c:29:de:24:4f:64:db:27:a8:
74:e5:12:3d:56:9d:49:4f:99:ec:aa:d5:09:d8:0a:
08:11:6b:2a:f8:c6:e7:73:86:7a:16:ee:2a:1e:8e:
13:e2:e3:36:43:9a:03:94:4a:2f:01:50:bb:58:fd:
7e:c9:fa:55:74:d2:65:ed:4e:23:3a:8f:ff:90:d7:
48:73:bc:ba:88:27:2f:a8:c4:80:f6:65:7f:ff:24:
d0:45:e8:28:26:1d:21:f6:f4:a1:a9:a4:94:fa:ea:
a2:0d:03:4f:66:6b:16:33:98:f7:27:38:6c:aa:d8:
fa:02:2d:ba:91:e7:10:ba:96:c5:d3:52:4e:6b:5d:
b7:dd:ec:66:1f:ce:b5:0b:d3:ca:8f:3a:99:11:cc:
79:f2:9f:04:ba:73:85:da:a7:6e:b5:90:79:5d:48:
13:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:78:56:FE:95:91:63:56:0D:CC:D8:5B:50:94:29:D2:9F:34:68:A4
X509v3 Authority Key Identifier:
keyid:77:28:05:2A:E7:D1:0F:D2:26:1A:22:48:FC:00:D2:02:B0:F2:55:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dygFKufRD9ImGiJI_ADSArDyVXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4cb1b1-701b-4e42-8b05-2cbc40e5fe62/1/gHhW_pWRY1YNzNhbUJQp0p80aKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4cb1b1-701b-4e42-8b05-2cbc40e5fe62/1/dygFKufRD9ImGiJI_ADSArDyVXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.124.0/22
IPv6:
2a0e:a900::/29
Signature Algorithm: sha256WithRSAEncryption
31:e4:e3:9c:24:6c:d7:f2:da:71:44:d0:4b:45:8c:61:9c:c7:
a7:c9:c3:aa:53:76:6f:ba:40:44:cf:c7:11:34:92:ea:81:ce:
a1:17:22:01:bf:a0:1e:bf:9e:44:90:46:db:1b:1c:be:0b:3c:
04:e6:d9:20:96:8f:07:86:b5:72:59:76:fc:7d:6c:5b:00:32:
00:a9:a1:c5:ce:b4:65:e4:6f:8e:d7:2e:62:5e:7a:10:ac:0a:
75:b1:88:6f:de:3f:6e:bf:66:48:ab:7f:15:95:fa:79:7f:f2:
4e:ad:29:6b:ab:10:d8:03:5a:25:05:8e:ac:19:23:aa:1f:a6:
e7:94:7d:fa:e3:55:69:f9:e6:e9:ea:05:82:41:42:cf:93:3b:
0a:2c:bf:a3:70:7c:21:06:d0:86:58:28:6c:7d:5d:33:88:41:
8e:d5:57:03:c9:a0:73:63:2f:f3:ce:13:f7:fa:83:90:af:50:
07:63:b2:bf:95:c1:d5:67:97:c1:ed:8d:8c:7f:83:b0:f7:41:
08:c8:66:08:3e:f2:7c:4f:ac:84:80:a6:c2:56:7c:bd:43:89:
2e:0c:2f:9b:06:97:e5:5a:33:15:4e:a5:da:9e:5d:04:d2:1d:
9c:e5:8c:c8:dd:c5:ce:f0:8f:de:0f:89:e1:41:0d:82:b1:64:
d9:40:1f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:55 2024 by rpki-client on console-fra.rpki-client.org