Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/eMH6XSTDHhvJCaCPqRwJ9etvVrs.roa
File: eMH6XSTDHhvJCaCPqRwJ9etvVrs.roa (raw, json)
Hash identifier: 6EaLdipH+0WQWrT8Vd5RWi/2aUmXrMAdMuEOqRRpIBg=
Subject key identifier: 78:C1:FA:5D:24:C3:1E:1B:C9:09:A0:8F:A9:1C:09:F5:EB:6F:56:BB
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018476B54D2D86D08BB593DCB4B39A9A02A1
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/eMH6XSTDHhvJCaCPqRwJ9etvVrs.roa
Signing time: Mon 14 Nov 2022 15:15:04 +0000
ROA not before: Mon 14 Nov 2022 15:15:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147287
IP address blocks: 45.8.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:76:b5:4d:2d:86:d0:8b:b5:93:dc:b4:b3:9a:9a:02:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Nov 14 15:15:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78c1fa5d24c31e1bc909a08fa91c09f5eb6f56bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5b:58:fa:92:d4:cc:e9:82:3d:9b:2f:e7:72:
da:32:22:79:39:a4:cd:b6:a5:35:c7:0a:f7:6e:d0:
53:9f:c3:ec:3a:75:47:8a:56:39:b5:c9:e8:25:2b:
da:90:0f:c8:9e:0d:1a:d7:60:f9:b8:33:af:16:88:
0e:fb:a3:a4:b6:8b:2a:7d:9b:e7:ef:d3:5e:d4:d8:
69:7f:f5:f0:06:6f:b0:87:14:a4:a2:39:c8:06:a7:
92:9f:86:d0:13:84:80:48:ca:e1:80:58:6a:dd:1c:
6e:55:15:d4:4e:5a:22:d2:d6:ba:7e:5f:6b:0e:11:
cb:ee:ae:13:f0:54:02:6a:76:c2:9c:d2:c0:e4:0d:
3a:4b:f8:ed:15:02:23:66:8e:9f:9d:28:b0:3c:23:
9a:41:92:7d:9e:60:68:ba:a0:43:27:4e:b0:b5:60:
41:1b:d6:96:4d:db:06:31:fe:ca:17:43:59:f7:f5:
6a:64:07:8a:27:ce:66:cd:5f:24:9f:2b:f1:54:a2:
c0:1b:e1:08:aa:c8:2b:09:3a:df:3c:1e:e3:a3:15:
89:42:76:c1:57:58:48:0d:b4:c4:21:02:b5:e6:3a:
0f:01:a2:bf:c8:87:af:c4:1e:f0:2f:86:51:bd:b6:
db:c4:d5:f5:46:f7:3a:42:0a:23:b1:80:9b:5f:09:
ac:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C1:FA:5D:24:C3:1E:1B:C9:09:A0:8F:A9:1C:09:F5:EB:6F:56:BB
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/eMH6XSTDHhvJCaCPqRwJ9etvVrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.207.0/24
Signature Algorithm: sha256WithRSAEncryption
99:30:8f:8e:80:66:93:23:0f:40:8a:30:8e:6f:c4:88:3f:a8:
11:6f:a6:eb:04:9e:4a:d5:61:6c:df:d5:6e:67:78:4b:bf:83:
5b:1c:fd:ad:b7:2f:f5:0c:ea:4f:58:97:11:79:07:82:e0:41:
43:73:aa:6d:f7:f1:69:b9:fd:32:25:21:4e:f0:87:de:56:a3:
35:88:8c:31:ac:82:e6:34:0f:85:fc:83:0a:ef:6c:42:81:59:
42:99:ac:3b:25:a1:af:f3:a5:eb:32:dd:8e:07:5d:6b:df:fb:
4b:e7:26:49:b6:8e:49:8d:1c:9f:df:f3:3c:fd:eb:11:d2:c8:
2d:df:2b:26:54:0e:33:c4:e1:d0:98:c3:b1:c9:b1:27:02:1a:
e4:a4:86:df:ae:01:69:c1:7c:23:a0:de:5f:e5:b7:9f:e0:56:
0a:04:61:7e:80:25:37:8e:d4:6f:fa:d3:72:a5:3b:07:29:c2:
ff:93:8c:ae:52:5b:76:b0:94:13:79:1d:3b:02:83:69:e4:3b:
f7:45:c2:ca:6f:f9:29:81:8c:67:b1:20:3f:bd:88:8e:48:e6:
20:a7:58:37:57:87:26:4d:af:10:34:39:9b:2a:09:ca:25:44:
63:fd:94:9c:26:d0:4b:10:3b:b2:9a:5d:9d:8f:48:70:69:f3:
4f:90:28:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:25 2024 by rpki-client on console-fra.rpki-client.org