Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/666e67-1546-413c-b6a1-5a78ba6091c1/1/3g8YYYUu8r5di9Ndm3fnS13Du0Q.roa
File: 3g8YYYUu8r5di9Ndm3fnS13Du0Q.roa (raw, json)
Hash identifier: Xacj9gyvWXOrmH3siwhDXh5kWdcH4/1C8vvKULIndi0=
Subject key identifier: DE:0F:18:61:85:2E:F2:BE:5D:8B:D3:5D:9B:77:E7:4B:5D:C3:BB:44
Certificate issuer: /CN=b3040c7f451c614d7eeba82c32a398e87de3b8c9
Certificate serial: 9AC0
Authority key identifier: B3:04:0C:7F:45:1C:61:4D:7E:EB:A8:2C:32:A3:98:E8:7D:E3:B8:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swQMf0UcYU1-66gsMqOY6H3juMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/666e67-1546-413c-b6a1-5a78ba6091c1/1/3g8YYYUu8r5di9Ndm3fnS13Du0Q.roa
Signing time: Wed 04 May 2022 17:40:07 +0000
ROA not before: Wed 04 May 2022 17:40:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35122
IP address blocks: 45.146.140.0/22 maxlen: 22
85.255.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39616 (0x9ac0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3040c7f451c614d7eeba82c32a398e87de3b8c9
Validity
Not Before: May 4 17:40:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de0f1861852ef2be5d8bd35d9b77e74b5dc3bb44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:67:9d:cc:f8:20:05:77:a7:fa:96:8b:80:e7:
be:31:0c:8f:a7:d8:82:5e:42:74:06:1a:9f:3d:f2:
78:c5:24:8d:7b:7c:f0:25:cf:49:88:62:69:d9:68:
02:c3:f8:d3:be:02:66:fe:e8:f2:bd:5f:dd:1a:ed:
c1:1d:59:52:21:05:54:9c:c0:b7:aa:2e:25:34:23:
cb:de:0b:78:8d:59:e3:1f:06:4e:c7:a7:78:e0:1b:
9b:ff:41:3f:83:b4:8f:ed:77:87:bb:cc:18:22:8a:
0c:75:fd:ce:ae:11:30:37:0e:0d:6f:23:49:f8:88:
6f:27:f0:bf:4a:08:90:51:48:5f:22:20:f5:52:da:
4d:89:02:47:1a:48:53:80:da:de:da:c9:3d:43:73:
98:a2:90:82:78:f6:29:13:43:dd:e6:da:f1:2a:30:
f6:ae:33:f9:6b:75:e3:be:d3:56:83:8b:9f:85:f3:
cc:71:df:50:bc:f9:83:92:6f:ec:fa:83:c7:68:62:
77:c2:95:8c:0d:c2:43:c3:9d:e0:3c:dd:83:37:56:
5f:1b:f8:19:40:01:dd:22:f0:a6:34:10:44:0d:6b:
a2:0f:84:47:03:49:69:53:ca:0a:24:ef:52:6f:81:
ae:3f:a9:0f:93:6d:e6:ab:b6:25:37:f5:f2:37:a7:
bd:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:0F:18:61:85:2E:F2:BE:5D:8B:D3:5D:9B:77:E7:4B:5D:C3:BB:44
X509v3 Authority Key Identifier:
keyid:B3:04:0C:7F:45:1C:61:4D:7E:EB:A8:2C:32:A3:98:E8:7D:E3:B8:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swQMf0UcYU1-66gsMqOY6H3juMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/666e67-1546-413c-b6a1-5a78ba6091c1/1/3g8YYYUu8r5di9Ndm3fnS13Du0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/666e67-1546-413c-b6a1-5a78ba6091c1/1/swQMf0UcYU1-66gsMqOY6H3juMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.140.0/22
85.255.160.0/20
Signature Algorithm: sha256WithRSAEncryption
72:3b:83:a4:66:b0:62:e2:12:f6:c6:e6:01:f8:57:e9:ad:2c:
ff:6f:07:bd:f5:03:f7:ee:90:e9:b4:49:8b:f1:34:37:bd:0b:
4d:80:87:bc:59:f2:6c:a8:ab:ff:9a:5b:96:14:71:ae:45:f7:
3d:a2:7c:43:8f:86:ee:45:5d:13:50:8b:67:fd:be:37:7d:87:
03:d1:9f:2d:e4:10:0b:d3:26:12:4b:8c:a5:b5:5f:8e:bb:3d:
46:03:ee:29:33:37:49:68:80:19:3c:9b:2e:ad:e7:f9:57:e1:
f2:5b:6a:a0:36:f1:0f:d0:96:01:3d:c4:90:95:4e:c8:76:45:
53:e7:0d:b1:5e:0d:d5:54:b1:f2:30:80:31:eb:fb:a1:c9:ed:
af:bc:6b:bd:bf:01:d1:1c:81:3d:50:ab:35:76:1e:37:bd:a0:
17:2d:80:1c:b2:96:66:12:14:a0:23:f4:89:02:38:c3:fe:22:
13:d1:0a:57:f3:76:44:e8:7c:70:b8:e7:f1:03:8b:45:a2:60:
3d:6a:f2:62:78:7a:4f:3d:8d:00:ab:24:02:54:b0:00:bd:6c:
58:de:e8:8f:85:97:ca:5a:e4:b1:5a:d2:8f:fa:75:22:62:74:
7a:b7:8f:9e:27:0d:e5:8d:02:b2:27:98:63:dd:52:2d:71:71:
e2:8a:3f:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:49 2024 by rpki-client on console-ams.rpki-client.org