Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/URo68EAZscpf2EbgV4Zqb5zNt7w.roa
File: URo68EAZscpf2EbgV4Zqb5zNt7w.roa (raw, json)
Hash identifier: NvjguDmi6+ii4Kh5CGgmZBsWoHZE6J1TMDLoQycRtxc=
Subject key identifier: 51:1A:3A:F0:40:19:B1:CA:5F:D8:46:E0:57:86:6A:6F:9C:CD:B7:BC
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 01842811939CBD56176506055E6BF620B9A0
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/URo68EAZscpf2EbgV4Zqb5zNt7w.roa
Signing time: Sun 30 Oct 2022 08:45:51 +0000
ROA not before: Sun 30 Oct 2022 08:45:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52202
IP address blocks: 45.86.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:28:11:93:9c:bd:56:17:65:06:05:5e:6b:f6:20:b9:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Oct 30 08:45:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=511a3af04019b1ca5fd846e057866a6f9ccdb7bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f2:47:b4:4d:29:23:60:6b:8e:b1:4b:1f:fa:
47:43:2d:a0:bd:15:17:7c:15:35:2f:52:46:95:7d:
d4:e7:cf:88:02:52:78:34:c1:1d:44:4a:25:e4:79:
60:a8:e6:35:22:93:38:af:85:9d:40:a0:b3:b6:b6:
00:00:4b:cb:ed:c9:1a:69:44:e3:af:c7:2d:d1:f3:
a9:23:80:6f:5e:c6:d9:a7:53:99:41:a4:42:03:bd:
b4:34:e1:a8:6a:c6:88:84:e5:e0:ee:bb:b1:63:a5:
02:6a:90:4f:c5:06:77:14:fc:ee:58:d1:46:3e:ca:
e4:96:8a:d4:93:15:2f:5d:58:5c:3d:eb:49:b7:1b:
5e:e0:77:10:8e:89:09:7a:a8:fb:78:b3:be:d1:f2:
a6:40:b7:7d:fe:66:61:ac:e2:bf:29:91:cc:3a:2f:
ed:51:ea:6a:57:49:dd:e3:7c:9c:ab:58:56:49:f0:
88:8b:e0:62:00:05:64:e5:68:ab:12:4f:54:06:ef:
ee:e2:4e:c2:89:9b:4c:b7:98:d5:07:f1:e1:c9:c3:
6f:ee:86:8b:d1:89:9c:9f:2f:46:87:0d:97:74:22:
71:51:9a:af:58:d3:c9:c1:c1:82:49:b6:91:af:5c:
66:1f:00:08:50:8d:85:53:e3:2b:07:12:bd:22:97:
2a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:1A:3A:F0:40:19:B1:CA:5F:D8:46:E0:57:86:6A:6F:9C:CD:B7:BC
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/URo68EAZscpf2EbgV4Zqb5zNt7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.241.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:54:aa:6d:6d:56:8c:5d:3e:18:65:05:49:9f:20:13:ed:87:
66:6d:b2:f0:52:36:9f:6c:b4:c7:d8:bc:a1:be:5b:5a:23:4e:
77:36:21:df:9d:ca:84:52:37:a4:cc:ea:3a:82:22:22:30:98:
de:ac:40:2d:83:76:ea:68:44:3d:79:2e:a3:dc:5f:32:69:19:
d1:a5:28:62:de:22:5a:a8:16:41:cb:b6:3a:e4:e0:04:9a:a8:
d3:62:27:9d:bb:0c:3e:e7:ea:4b:84:c7:1e:0e:55:a0:f2:cf:
53:65:d1:51:4f:73:50:15:fb:9e:32:e5:72:0b:17:6f:f1:21:
8f:94:5a:22:7e:43:43:fa:7f:e6:10:4c:32:0a:f6:cf:f3:c3:
6d:a2:35:05:16:a1:94:54:35:c0:82:72:1a:c2:70:5d:b8:25:
bb:a1:b3:73:29:d1:90:f3:17:cf:a2:95:70:ae:ef:d6:5a:20:
c5:3e:d1:8f:eb:b0:48:e0:26:69:44:58:8f:a8:e1:82:30:cd:
79:6e:a8:76:a1:7e:d6:1e:9a:b2:96:b3:02:8a:d4:7a:d5:28:
95:ae:a3:47:55:09:c2:4b:70:43:87:1d:fd:27:47:a4:97:7f:
df:4f:ec:ef:81:97:5b:bb:93:f7:f7:99:5b:73:ca:94:26:20:
2b:4e:ae:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:12 2024 by rpki-client on console-ams.rpki-client.org