Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/1-dmGmniSHLTzZEv2-qmCwfY-1lo.roa
File: 1-dmGmniSHLTzZEv2-qmCwfY-1lo.roa (raw, json)
Hash identifier: XNn3ynxaJgy4H+NmsTCzNQaF2xryj8BN1a9XLUnI3c8=
Subject key identifier: F9:D9:86:9A:78:92:1C:B4:F3:64:4B:F6:FA:A9:82:C1:F6:3E:D6:5A
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0183D24B57C410926B6CC83A174443B51B0B
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/1-dmGmniSHLTzZEv2-qmCwfY-1lo.roa
Signing time: Thu 13 Oct 2022 17:01:36 +0000
ROA not before: Thu 13 Oct 2022 17:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 45.8.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d2:4b:57:c4:10:92:6b:6c:c8:3a:17:44:43:b5:1b:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Oct 13 17:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9d9869a78921cb4f3644bf6faa982c1f63ed65a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d2:81:e0:c7:e2:a0:1d:ff:9d:b4:fd:67:4a:
25:a5:a5:1e:d3:09:08:a1:71:c6:af:87:3c:62:7a:
2f:df:4b:dd:b3:d3:cc:11:8b:56:d2:90:21:f2:41:
e0:d9:69:bb:2d:11:36:10:1a:ab:09:ec:7e:7b:dc:
09:39:34:d8:ea:00:0f:6e:dc:74:85:ea:64:ab:6a:
db:ec:7f:c2:83:a5:fa:11:b3:d1:0e:89:3d:be:ad:
0b:20:aa:ae:f4:77:9b:ee:4e:fe:74:ac:1f:85:41:
5f:1a:e7:0a:d8:a4:ae:03:e4:a9:ce:d2:8b:10:01:
59:b4:83:01:32:18:3d:68:67:5a:cc:30:5c:57:2b:
4b:e3:12:31:77:e0:1a:18:6c:b6:a6:cc:ef:84:f4:
71:d9:02:ec:d0:91:0a:40:c9:28:f7:07:9a:07:0c:
d6:63:84:a0:09:9e:f3:93:17:22:ae:1e:1e:68:93:
e2:d1:14:eb:3e:eb:60:31:98:b7:80:c6:45:63:39:
c1:4a:2e:dd:01:17:49:2a:65:fe:51:66:24:97:10:
ac:d1:50:80:cb:be:62:77:b4:82:9c:1a:80:8d:1e:
4a:78:13:26:fa:61:eb:2b:4b:df:e9:53:a8:f5:f8:
0c:cb:f0:30:db:75:a7:7c:97:1d:f0:58:1b:ba:77:
dd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D9:86:9A:78:92:1C:B4:F3:64:4B:F6:FA:A9:82:C1:F6:3E:D6:5A
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/1-dmGmniSHLTzZEv2-qmCwfY-1lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.207.0/24
Signature Algorithm: sha256WithRSAEncryption
63:4e:dd:42:45:87:9c:2b:ca:03:0f:e9:eb:f7:11:57:a1:ff:
4e:9e:df:c0:fd:2e:64:d1:5e:da:ac:68:e2:3d:33:b8:e1:d5:
08:3a:42:16:1d:3c:10:df:ab:16:b9:33:16:01:83:dd:28:c7:
3c:c0:2c:d8:63:8f:7c:37:4c:3d:ca:a3:a0:b0:62:5f:b0:87:
dd:35:30:2e:b8:68:f0:b6:13:3c:02:88:3d:24:f2:ce:5f:65:
3b:7b:ed:03:96:1b:36:b5:70:58:af:27:b0:ce:f6:81:38:3e:
8e:70:48:39:92:6d:90:0f:04:1f:44:9e:b6:05:29:6e:8b:a4:
7c:d7:54:a9:2c:55:2a:ee:2a:9d:f8:db:76:a6:3e:ae:21:59:
79:a7:09:03:8d:06:41:b4:16:1a:5c:89:85:d5:3d:e3:a2:16:
3e:04:da:47:34:b4:57:20:f8:b0:0e:77:72:31:9f:b3:b8:43:
bc:a4:bc:14:30:e7:b5:63:36:44:ac:cd:eb:34:e7:70:e0:4f:
50:34:bf:a7:7d:03:48:75:cb:d0:bc:9b:8f:d2:5a:e8:18:f7:
4b:45:ca:89:fd:dd:b7:58:1e:68:3e:5a:c8:79:4d:5c:a3:f0:
49:af:56:f4:b9:f8:1c:ef:f7:de:cd:0b:c9:a5:20:52:ef:fc:
24:e5:d8:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:28 2023 by rpki-client on console-fra.rpki-client.org