Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/PQ0IuDT8uONPzstihbkNexqXIHA.roa
File: PQ0IuDT8uONPzstihbkNexqXIHA.roa (raw, json)
Hash identifier: 3woRmRDMkISnhrhpCm18m0nm0rjfSRWL1yfaQ3ie1ZE=
Subject key identifier: 3D:0D:08:B8:34:FC:B8:E3:4F:CE:CB:62:85:B9:0D:7B:1A:97:20:70
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0183ECFC2886CA3BC8BA52ADF9218CD8F5BD
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/PQ0IuDT8uONPzstihbkNexqXIHA.roa
Signing time: Tue 18 Oct 2022 21:24:51 +0000
ROA not before: Tue 18 Oct 2022 21:24:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398304
IP address blocks: 45.8.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ec:fc:28:86:ca:3b:c8:ba:52:ad:f9:21:8c:d8:f5:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Oct 18 21:24:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d0d08b834fcb8e34fcecb6285b90d7b1a972070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:96:c8:54:d7:d3:5d:96:11:05:44:0a:5e:13:
7b:83:ba:8b:bd:f9:11:26:1a:a1:d9:2a:ac:3a:a6:
90:4d:8d:ab:b0:77:99:1c:ed:40:db:ad:80:81:2d:
47:4b:da:4e:5d:bc:3b:fc:09:00:32:66:e9:66:11:
47:b3:38:cd:a4:8d:cc:fa:cf:f4:12:89:92:e5:e7:
46:20:68:44:0f:70:21:ab:5d:ed:15:dd:d4:7b:8d:
8a:d6:60:cc:da:56:2a:05:67:ae:41:c2:a3:ad:28:
65:75:23:70:d9:fc:4e:84:c4:fc:81:19:2c:4b:93:
41:91:02:82:95:55:f0:01:0e:cf:1b:2c:21:fd:ad:
99:4c:ce:13:c5:74:41:00:1c:54:17:c5:2a:e5:1d:
85:a1:77:1b:be:61:0c:a0:2b:7e:4a:0a:df:4e:01:
c5:2a:1b:ad:c3:b5:30:16:9a:4a:c6:47:58:70:0c:
8d:5d:19:75:9e:60:59:f4:e8:41:eb:3b:21:d5:3d:
87:f5:96:b3:3d:46:4f:03:57:a6:70:2f:ad:03:3d:
79:fb:b7:df:1c:46:f3:24:4d:ae:d1:2a:f4:c9:41:
a7:ee:0f:d5:00:da:34:a3:9e:1b:ef:36:5b:24:48:
0b:fb:2d:a9:97:49:2a:94:e8:f8:f6:c2:54:3f:25:
6e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:0D:08:B8:34:FC:B8:E3:4F:CE:CB:62:85:B9:0D:7B:1A:97:20:70
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/PQ0IuDT8uONPzstihbkNexqXIHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.204.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:b6:37:d7:4b:7f:fc:2d:23:5f:c8:56:7e:d7:4e:3e:57:75:
b4:a9:3f:38:33:b7:33:f8:26:a4:4e:cd:61:1c:a9:1f:1f:aa:
5b:04:a0:88:cc:53:8e:5e:35:94:25:fc:69:00:e7:0d:65:ff:
28:69:46:ea:c2:e7:f1:86:56:40:bb:76:61:87:db:af:6b:1a:
61:04:f5:1e:ea:3e:a6:d7:51:d6:ab:2b:37:16:6a:5c:19:c1:
12:bd:62:2d:a9:f2:86:e6:bb:70:5f:37:5f:42:2c:a9:88:d0:
85:56:a6:6b:0b:8d:59:42:7a:51:b6:4f:1b:d2:58:ff:9c:af:
dc:e8:d9:35:ae:5a:39:48:66:e0:4d:6e:44:9d:7f:53:88:8f:
9f:70:61:19:32:93:f9:3e:3c:ad:5b:dd:84:ef:86:25:d2:e6:
c4:1a:5d:a8:ba:15:ff:a3:2f:d1:1f:bd:55:89:51:f8:a4:30:
0a:62:6d:8a:bd:1c:08:6f:ca:eb:28:f8:ad:65:c5:ca:76:36:
3a:07:8f:8e:e4:05:c4:2d:81:18:d4:db:f6:ee:d0:32:fa:5b:
9e:f6:0f:92:71:5e:f7:10:44:aa:1c:3d:b4:d7:8d:b2:d5:b2:
ce:70:02:4e:ec:24:1e:45:31:f7:be:29:7f:bc:b1:78:7f:9f:
4e:2c:cc:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org