Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/h1wYd0VybymGmoVWw_oj4ifEgEE.roa
File: h1wYd0VybymGmoVWw_oj4ifEgEE.roa (raw, json)
Hash identifier: m2Bgj+zzDPq4hmt2aX6mK6Hq3UNksaNGd1ncO5YJy8w=
Subject key identifier: 87:5C:18:77:45:72:6F:29:86:9A:85:56:C3:FA:23:E2:27:C4:80:41
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 05999967
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/h1wYd0VybymGmoVWw_oj4ifEgEE.roa
Signing time: Sat 01 Jan 2022 07:03:58 +0000
ROA not before: Sat 01 Jan 2022 07:03:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35711
IP address blocks: 45.14.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93952359 (0x5999967)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 07:03:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=875c187745726f29869a8556c3fa23e227c48041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3f:ac:5a:b9:b8:96:ed:3c:93:ce:c5:22:f0:
3f:89:d3:61:86:06:bd:6c:c9:33:64:f7:9a:31:69:
1c:d8:75:33:f1:f9:a4:54:10:68:8a:1d:e1:17:b9:
4e:45:c4:88:69:68:81:a8:15:0d:ff:93:d3:30:4e:
d1:52:89:19:24:8e:7d:a0:15:f6:05:68:f0:b6:88:
3d:47:b1:3c:00:ae:5c:77:d0:43:57:7f:28:98:78:
47:3f:3e:aa:34:44:74:78:6f:d6:b6:d9:a9:e3:8d:
e8:44:5e:c6:a6:06:71:68:c2:3b:44:d6:e5:fb:23:
53:50:9a:e0:9d:35:63:3c:eb:3a:05:8c:0f:70:ca:
b5:a0:9a:e3:58:6d:0d:4f:63:a2:64:5c:b0:d9:83:
9b:c1:83:04:81:8e:cb:50:d4:a5:01:1b:fe:26:8e:
46:96:e4:fe:b2:8c:1e:1a:ef:58:0e:3b:ac:99:72:
1c:ba:8d:1f:88:e5:97:e4:b8:cc:17:fd:bc:a3:30:
ee:d5:61:65:d5:ce:09:bc:3f:be:31:3a:2b:99:bf:
18:94:7c:09:10:23:4b:42:25:76:c2:06:f5:80:c6:
dc:aa:98:ae:e3:ae:87:ff:6d:1b:3e:c2:8b:67:8c:
5c:02:bb:09:ee:11:98:67:49:c2:06:29:ce:38:a8:
c7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:5C:18:77:45:72:6F:29:86:9A:85:56:C3:FA:23:E2:27:C4:80:41
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/h1wYd0VybymGmoVWw_oj4ifEgEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.236.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:f0:2d:2f:0a:8f:6e:8e:b5:2b:9e:9e:ff:ef:ef:95:13:f9:
75:74:11:fe:9c:6b:b7:03:1e:3c:3b:42:26:78:43:41:3b:ea:
74:7e:a6:02:f2:d3:88:4e:d1:26:bd:ae:2f:4b:d3:73:d6:af:
03:70:16:ae:d2:21:28:8c:c9:5e:0d:dc:5b:8c:43:74:88:a0:
44:27:1c:fd:b4:ed:6e:2b:55:ca:db:55:8f:58:c7:7c:62:df:
36:aa:7a:8a:71:e3:e0:49:06:da:98:8e:ce:3e:b1:a9:40:67:
9d:ae:32:01:d6:8d:a2:89:ca:8d:c9:61:30:7e:be:dd:9e:39:
8a:78:3a:9c:a8:f0:f3:23:9a:ec:e5:c1:a6:a6:3d:ea:9e:fa:
51:81:5b:ff:c9:e1:37:98:a5:d2:18:cb:6d:a4:2a:c0:f4:17:
17:eb:b1:fc:00:47:64:cc:5a:68:a9:0a:db:18:94:63:9a:fa:
b8:bb:40:a6:6d:b5:bf:70:03:3a:30:bd:19:36:9b:fb:eb:8d:
d0:23:6f:15:4d:cb:4d:8b:92:0e:df:d1:85:96:38:5f:68:d6:
13:90:95:75:bc:0c:b9:22:12:29:f4:4e:f1:dd:34:99:0f:0f:
f9:b8:cb:26:d4:8a:3f:f9:db:7d:5f:ad:6c:fd:0e:9c:d0:38:
13:e4:08:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:14 2024 by rpki-client on console-fra.rpki-client.org