Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/848274-493f-484d-9c48-a8ef33ff5bb0/1/I7X0US9ysV2UbWvPDsVlEUqqrTo.roa
File: I7X0US9ysV2UbWvPDsVlEUqqrTo.roa (raw, json)
Hash identifier: 0VFpo2mTUVV3tyHaLewdepTqR5w7zmDMYsBOz0TtkBc=
Subject key identifier: 23:B5:F4:51:2F:72:B1:5D:94:6D:6B:CF:0E:C5:65:11:4A:AA:AD:3A
Certificate issuer: /CN=7994a43de69d14fb1447424e2cade54f9922baaf
Certificate serial: 017ACD
Authority key identifier: 79:94:A4:3D:E6:9D:14:FB:14:47:42:4E:2C:AD:E5:4F:99:22:BA:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZSkPeadFPsUR0JOLK3lT5kiuq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/848274-493f-484d-9c48-a8ef33ff5bb0/1/I7X0US9ysV2UbWvPDsVlEUqqrTo.roa
Signing time: Tue 26 Apr 2022 15:06:38 +0000
ROA not before: Tue 26 Apr 2022 15:06:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209311
IP address blocks: 45.132.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96973 (0x17acd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7994a43de69d14fb1447424e2cade54f9922baaf
Validity
Not Before: Apr 26 15:06:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23b5f4512f72b15d946d6bcf0ec565114aaaad3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:61:03:b3:10:e7:35:f9:90:b0:95:78:28:3a:
dc:fe:dd:4e:1b:2c:7f:58:fd:8d:42:25:99:c4:d9:
bb:01:00:2a:00:18:fc:12:f6:d4:a8:28:0f:26:00:
0b:58:58:f0:0f:dc:ae:ee:3d:31:65:98:52:f1:c3:
27:c9:3d:dc:3b:28:f1:8a:02:de:a8:52:8f:ca:31:
6e:a7:d9:c0:ec:25:bf:09:5c:8e:0c:c9:e5:f6:89:
38:07:cf:07:03:2e:bd:61:be:62:32:40:d5:73:1b:
ec:25:47:24:9f:3a:78:e3:89:c9:37:d0:11:b3:35:
11:4b:d9:7c:99:b7:a6:9a:83:2d:ae:ac:b7:42:22:
d0:81:ee:0a:74:b3:d2:6b:e6:27:f0:24:de:d3:9b:
d4:9b:e5:68:67:c2:ac:c5:82:de:8d:3f:2f:e0:8c:
f0:19:8a:0c:3c:a5:c9:3a:33:38:25:29:88:8f:1f:
76:fe:7e:41:cf:7b:09:53:6e:62:ad:74:2a:f6:64:
64:83:f9:1c:74:a6:2b:2a:7a:78:50:c7:65:98:cb:
a9:3f:d0:d5:33:56:ac:e1:2f:ca:8f:75:3d:84:8a:
e2:21:72:fa:47:43:1c:cc:8f:a2:ba:08:2f:41:e8:
fe:53:b3:b8:7b:dd:3e:aa:42:07:ec:8a:fa:3d:4a:
17:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B5:F4:51:2F:72:B1:5D:94:6D:6B:CF:0E:C5:65:11:4A:AA:AD:3A
X509v3 Authority Key Identifier:
keyid:79:94:A4:3D:E6:9D:14:FB:14:47:42:4E:2C:AD:E5:4F:99:22:BA:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZSkPeadFPsUR0JOLK3lT5kiuq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/848274-493f-484d-9c48-a8ef33ff5bb0/1/I7X0US9ysV2UbWvPDsVlEUqqrTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/848274-493f-484d-9c48-a8ef33ff5bb0/1/eZSkPeadFPsUR0JOLK3lT5kiuq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.2.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:28:b5:e9:ef:f2:4d:9f:04:3f:8d:8e:a0:fa:0a:ac:a1:10:
05:56:95:54:65:35:78:13:31:05:ca:b9:bd:11:56:17:d7:19:
de:70:eb:8c:f9:bf:79:eb:99:14:48:17:b0:d8:4d:1c:a7:b2:
9d:cb:e3:a6:e0:3b:de:c1:b5:f7:5c:4c:61:85:cd:7a:ea:2a:
5c:4e:b8:b0:42:2d:8f:c5:51:ce:1d:4f:ca:4e:01:92:bb:84:
a7:5b:0b:b5:82:a7:bd:ac:14:8e:d4:bb:3f:a1:2a:a3:54:2e:
31:2a:96:c7:25:2b:59:10:8a:02:5a:b5:67:ec:53:90:23:c3:
d4:21:ff:b6:91:ac:fe:28:f3:2a:5c:50:56:04:3e:82:04:1a:
d0:61:0d:67:c3:e2:95:2c:9d:d8:f1:60:36:5e:9c:bc:0a:87:
3f:d1:a4:ad:0e:21:34:d7:80:dc:fd:35:85:bb:ee:45:2c:c4:
08:8e:ba:c5:76:5b:af:25:5c:2f:51:65:18:82:13:5f:b6:e0:
f9:94:3a:54:b0:3c:64:06:46:4c:63:54:e3:22:20:e1:a9:92:
2b:bd:b0:e5:9b:b2:71:8a:60:fc:98:2d:18:58:0f:13:27:3c:
dd:27:4a:48:dc:7d:a4:15:7f:7f:f8:61:72:6f:3b:a6:6e:95:
fe:8b:10:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:38 2024 by rpki-client on console-fra.rpki-client.org