Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e7549e-5b25-4200-88b9-4e4a35dd3677/1/OpjtTLpglz13yZCAzCp9YH0wrKg.roa
File: OpjtTLpglz13yZCAzCp9YH0wrKg.roa (raw, json)
Hash identifier: MyfteeesIGfpqo9xkOzxM0Jl/fh4y1xu68dj5FBkDqo=
Subject key identifier: 3A:98:ED:4C:BA:60:97:3D:77:C9:90:80:CC:2A:7D:60:7D:30:AC:A8
Certificate issuer: /CN=8c060040ef3a0823aa973f0d0592b1dda808f782
Certificate serial: 07BDD36F
Authority key identifier: 8C:06:00:40:EF:3A:08:23:AA:97:3F:0D:05:92:B1:DD:A8:08:F7:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jAYAQO86CCOqlz8NBZKx3agI94I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/e7549e-5b25-4200-88b9-4e4a35dd3677/1/OpjtTLpglz13yZCAzCp9YH0wrKg.roa
Signing time: Sat 01 Jan 2022 03:53:34 +0000
ROA not before: Sat 01 Jan 2022 03:53:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204835
IP address blocks: 45.11.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129880943 (0x7bdd36f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c060040ef3a0823aa973f0d0592b1dda808f782
Validity
Not Before: Jan 1 03:53:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a98ed4cba60973d77c99080cc2a7d607d30aca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:d3:10:b4:c6:19:d5:45:42:32:b8:dc:28:42:
dd:09:ca:b2:e4:09:5e:06:7b:6e:27:4d:e0:6b:c5:
29:e5:9b:88:75:41:64:b2:50:54:67:ec:b4:30:85:
d1:f0:88:ec:e0:4e:bd:14:dc:d7:a7:8f:14:3c:97:
be:b1:15:64:1f:95:93:36:24:8a:ca:3d:6b:f1:63:
0a:a6:c9:95:5b:d4:e5:5f:5e:eb:6f:0d:0d:c8:3c:
5d:7f:c8:b4:74:ca:4a:05:9a:a8:ab:37:3d:10:d0:
88:c5:fd:3a:7b:e3:40:36:cf:d0:32:58:47:57:02:
90:f4:36:4f:9c:24:83:d9:60:9e:be:a0:6c:01:a0:
94:b7:89:57:ac:63:ab:27:2a:cd:3c:94:db:61:49:
ad:76:44:db:7f:b8:7e:74:b5:fd:84:20:16:51:d0:
fb:97:99:96:ca:54:2c:df:e9:69:9d:0c:53:ed:32:
0d:a1:fd:28:3c:ba:d8:28:02:d6:80:a8:86:39:a2:
b5:68:46:2e:1e:f4:68:66:c3:2c:de:7e:4c:e8:67:
cc:4c:c0:ae:6b:55:69:ce:a2:72:ca:62:a6:f8:96:
6d:9d:8b:26:23:ed:37:31:1e:15:0f:01:83:0b:76:
67:be:53:26:ae:a0:87:7a:33:41:01:99:e8:31:71:
c9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:98:ED:4C:BA:60:97:3D:77:C9:90:80:CC:2A:7D:60:7D:30:AC:A8
X509v3 Authority Key Identifier:
keyid:8C:06:00:40:EF:3A:08:23:AA:97:3F:0D:05:92:B1:DD:A8:08:F7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jAYAQO86CCOqlz8NBZKx3agI94I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7549e-5b25-4200-88b9-4e4a35dd3677/1/OpjtTLpglz13yZCAzCp9YH0wrKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e7549e-5b25-4200-88b9-4e4a35dd3677/1/jAYAQO86CCOqlz8NBZKx3agI94I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.208.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:9b:9f:16:ab:b0:50:26:3e:27:55:39:1f:12:ba:4c:fb:44:
9d:c2:e3:34:e1:4f:2b:41:e4:40:ad:17:f9:a1:41:52:9f:2a:
71:5f:03:c0:78:3b:33:9a:15:d0:5b:18:3c:2c:49:e4:54:58:
06:88:5c:17:0d:f8:32:5e:4f:b4:44:73:f9:a4:33:b0:cc:ff:
6e:28:d5:26:38:2e:95:b0:3d:20:0a:6e:69:39:c5:8b:19:c7:
f0:89:22:2c:b9:a4:b0:a6:08:c5:f3:53:3c:5b:44:e2:c8:ff:
65:55:90:5e:f2:13:6c:15:e4:07:f2:f3:fb:76:bd:bb:a5:f5:
97:69:7c:e6:dc:24:fd:f4:1a:83:11:75:d8:dd:46:2e:06:1a:
e0:28:9d:94:bd:37:80:59:28:e8:31:ed:6e:7b:69:15:7d:09:
a4:b7:fc:76:97:6c:ef:fb:12:3c:13:82:e6:30:fe:9c:e6:67:
c1:1e:4e:8c:0b:c4:e6:4c:33:c0:ee:cc:66:8f:1f:a4:56:c6:
f3:ec:a3:0e:5f:6b:5d:ce:73:88:28:10:99:a7:f0:22:18:1a:
ef:bb:82:c7:bc:83:bd:ea:1e:72:b9:2f:d4:d0:ca:1a:31:e6:
02:61:45:59:68:42:dd:74:8e:ae:b0:a5:a1:55:fd:ac:3e:d9:
d6:91:ea:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:20 2024 by rpki-client on console-fra.rpki-client.org