Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/810b0e-10de-43d2-9d27-4c26ca4c77b8/1/TAcTVHAxfZelfMh002bjMoZy-ds.roa
File: TAcTVHAxfZelfMh002bjMoZy-ds.roa (raw, json)
Hash identifier: L5PvyY/JXRPkKCfLFLRkQSWZ4cDmqDQ01ETHlrYJZWA=
Subject key identifier: 4C:07:13:54:70:31:7D:97:A5:7C:C8:74:D3:66:E3:32:86:72:F9:DB
Certificate issuer: /CN=fb357f291af4a4c6747b3e4fbe61181d357c8bcc
Certificate serial: 0416C2D3
Authority key identifier: FB:35:7F:29:1A:F4:A4:C6:74:7B:3E:4F:BE:61:18:1D:35:7C:8B:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-zV_KRr0pMZ0ez5PvmEYHTV8i8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/810b0e-10de-43d2-9d27-4c26ca4c77b8/1/TAcTVHAxfZelfMh002bjMoZy-ds.roa
Signing time: Sat 01 Jan 2022 11:03:22 +0000
ROA not before: Sat 01 Jan 2022 11:03:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200424
IP address blocks: 45.92.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68600531 (0x416c2d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb357f291af4a4c6747b3e4fbe61181d357c8bcc
Validity
Not Before: Jan 1 11:03:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c07135470317d97a57cc874d366e3328672f9db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fd:01:80:1f:14:e4:df:43:65:d7:bb:4c:60:
b6:7a:26:ac:b0:e0:91:8c:cb:6c:ab:0f:d0:8d:17:
9b:81:cd:5d:09:d8:92:a5:f7:04:26:d3:30:c7:e3:
ba:33:ad:11:ae:70:e3:14:ed:75:59:c5:ed:36:2a:
36:22:9f:c4:25:21:0e:8e:b3:a5:18:04:86:7b:b0:
41:f0:73:48:c2:61:13:34:63:e7:a5:c0:7d:42:95:
d0:02:67:42:7d:c9:ae:e7:a0:13:a7:d9:a0:8f:2b:
ad:ad:af:4a:33:96:38:7c:50:d6:ef:cf:c7:35:33:
66:d8:f2:87:0e:15:aa:16:e6:d9:b2:d1:16:96:1c:
0f:51:8e:bc:d8:77:74:92:10:d7:f1:cb:72:55:5c:
0f:34:ce:cd:04:c1:b7:0e:e8:d7:ea:b8:3d:02:78:
f6:2b:b7:fc:ac:37:95:a6:61:e4:d8:40:bc:5e:38:
0f:94:5f:14:5d:e7:03:cc:df:7a:03:7c:b9:e6:c6:
96:df:05:19:c4:c9:e8:56:71:67:58:9c:a3:06:88:
f6:39:e7:3b:f9:3e:6d:0f:a5:45:24:7b:d1:b1:f8:
e6:e7:69:01:35:f8:0a:3f:a4:10:7e:19:74:7c:74:
c2:3e:f1:f0:18:dd:15:9b:67:18:ce:a5:92:fb:9e:
c1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:07:13:54:70:31:7D:97:A5:7C:C8:74:D3:66:E3:32:86:72:F9:DB
X509v3 Authority Key Identifier:
keyid:FB:35:7F:29:1A:F4:A4:C6:74:7B:3E:4F:BE:61:18:1D:35:7C:8B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-zV_KRr0pMZ0ez5PvmEYHTV8i8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/810b0e-10de-43d2-9d27-4c26ca4c77b8/1/TAcTVHAxfZelfMh002bjMoZy-ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/810b0e-10de-43d2-9d27-4c26ca4c77b8/1/1-zV_KRr0pMZ0ez5PvmEYHTV8i8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.56.0/22
Signature Algorithm: sha256WithRSAEncryption
72:d4:16:0d:38:f8:3a:bf:bf:26:8b:28:1b:d4:75:44:0c:ee:
94:50:c9:c3:2e:b7:ff:9c:64:c6:2f:11:e5:04:67:0a:02:14:
3f:51:08:f8:b6:51:db:ab:bc:e4:de:fe:6e:01:b5:30:3a:6b:
76:fb:c8:99:c7:a7:12:2b:3d:12:8b:b8:fa:c2:27:1e:7d:a2:
c4:aa:d5:3e:62:fe:28:00:13:6f:0d:90:9f:5b:e1:8c:1d:73:
18:b8:0b:5f:74:92:70:c2:82:17:ae:de:3b:cf:56:7e:95:56:
2b:9e:f1:9e:ad:74:c3:77:e2:0d:7c:ee:7a:78:60:a4:6a:00:
60:ad:45:4f:1c:dd:a5:8d:44:bd:5b:76:67:7a:59:06:0c:a2:
6f:89:07:5f:f6:d4:2a:7f:e9:8d:3e:ee:68:3a:0c:59:a2:dc:
20:c0:1e:d5:0a:42:75:7e:6b:b2:40:0f:c5:0f:c3:a8:eb:c5:
c4:65:c1:90:08:62:ea:67:f7:5e:77:24:78:35:d8:58:c7:7e:
ba:f2:0d:d5:bb:94:ee:c5:95:18:b3:ed:33:7c:10:c1:16:1d:
ef:f9:c8:5a:a1:2e:dc:a9:93:40:ee:1c:b0:79:a3:37:5e:bf:
cd:05:ff:b9:f0:71:a1:b6:24:7e:fa:72:33:a2:cf:15:0b:5b:
32:dc:0b:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org