Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/TiCMJyjuoJ8dEswYVehUvpzn0eM.roa
File: TiCMJyjuoJ8dEswYVehUvpzn0eM.roa (raw, json)
Hash identifier: TA5oSeSH/obPgQ3aI2A5ZMim3vclNrT4XCtSfRAD+Yo=
Subject key identifier: 4E:20:8C:27:28:EE:A0:9F:1D:12:CC:18:55:E8:54:BE:9C:E7:D1:E3
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 018389DE98DA5323D16D0637A4F1DE6EC954
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/TiCMJyjuoJ8dEswYVehUvpzn0eM.roa
Signing time: Thu 29 Sep 2022 15:30:10 +0000
ROA not before: Thu 29 Sep 2022 15:30:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34827
IP address blocks: 45.158.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:89:de:98:da:53:23:d1:6d:06:37:a4:f1:de:6e:c9:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Sep 29 15:30:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e208c2728eea09f1d12cc1855e854be9ce7d1e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:9a:3a:1c:a9:c3:d6:d5:fa:02:61:fb:e1:08:
74:b7:69:38:4e:0c:ea:9b:be:50:72:56:26:c2:ac:
95:f2:c5:4c:05:15:c5:2e:a3:d0:2f:de:8c:23:38:
2d:38:4e:b1:0c:9a:e1:fa:14:7d:0a:d5:57:f3:cf:
30:5f:3c:fd:48:84:43:56:cf:78:d2:22:95:11:b6:
b6:19:d9:1a:0c:7a:72:2a:d3:bc:e0:da:3c:d1:45:
04:f9:74:c6:7c:e5:c2:d8:73:eb:4c:88:7a:41:38:
57:6d:70:22:df:2c:4b:54:da:f2:89:39:0c:b6:f0:
12:83:fb:4e:56:04:46:de:52:f7:1b:70:4b:1c:bc:
3e:e1:ef:40:f6:93:89:b5:39:1b:45:4b:f1:32:20:
b2:5d:9c:e4:94:97:cd:4f:83:ff:54:1c:ae:c7:e8:
e0:39:4a:98:c1:50:b8:03:9f:26:da:d6:97:7a:8c:
df:a4:34:ff:7b:e4:4b:b5:11:22:6f:64:d9:c2:0c:
91:cb:be:e5:c9:b4:0c:8e:70:a1:f3:75:ac:9f:76:
1c:66:78:bd:8b:bc:4e:e9:94:0b:a0:09:2d:8a:f1:
1c:69:73:3c:1d:0e:cc:ab:20:69:68:d1:e9:9c:4b:
b1:8a:39:cc:56:fe:f6:59:81:26:a6:54:af:55:d5:
53:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:20:8C:27:28:EE:A0:9F:1D:12:CC:18:55:E8:54:BE:9C:E7:D1:E3
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/TiCMJyjuoJ8dEswYVehUvpzn0eM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.124.0/24
Signature Algorithm: sha256WithRSAEncryption
75:03:80:8e:11:17:79:45:ed:21:96:45:b1:5a:25:ed:c4:d5:
19:cb:49:4b:8a:b2:37:33:5e:54:bb:01:21:11:a6:0f:34:ce:
4b:8d:77:ee:5c:65:91:3b:db:97:a0:2f:e9:2d:a5:fb:34:ec:
2e:70:fe:cf:b7:6c:b8:8e:40:f8:60:88:4a:3a:9f:28:71:4a:
f6:1b:49:ef:e4:b0:a6:75:a6:12:39:ae:af:34:50:25:44:03:
dd:8a:c3:be:13:d2:df:ab:5d:8d:53:28:5e:31:62:61:cc:a9:
0c:1c:5b:ef:20:cd:d6:06:19:9e:e9:62:7a:6a:3e:30:6c:8a:
3f:78:c8:09:09:01:f7:f7:50:b2:5d:63:55:10:99:4e:42:ac:
c1:07:bc:41:81:0a:c9:ef:87:ed:37:8e:5c:2c:c8:89:7f:ad:
13:ad:21:4d:c8:c4:d1:f1:e0:a1:3b:d8:0d:35:8e:69:d9:c3:
a2:ed:1b:09:ee:da:e7:55:bf:d6:3a:5b:d8:75:74:68:62:70:
eb:cd:a4:56:ff:19:02:7e:2f:8a:f5:36:14:d0:95:d4:0c:16:
ab:25:52:ab:d3:a4:88:8d:70:7f:a8:59:b6:41:27:28:f4:31:
84:df:10:5a:6f:68:27:f3:55:26:87:1d:96:4c:51:13:0b:12:
f9:b4:fa:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:45 2024 by rpki-client on console-fra.rpki-client.org