Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/I_uP_MgdTGeHVjhwlUevTG7Td_w.roa
File: I_uP_MgdTGeHVjhwlUevTG7Td_w.roa (raw, json)
Hash identifier: 3gGiiVL0XG9x67YHMR28t9hlOINxdYVNDeSiZq0XODU=
Subject key identifier: 23:FB:8F:FC:C8:1D:4C:67:87:56:38:70:95:47:AF:4C:6E:D3:77:FC
Certificate issuer: /CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Certificate serial: 028DA7E7
Authority key identifier: 66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/I_uP_MgdTGeHVjhwlUevTG7Td_w.roa
Signing time: Sat 01 Jan 2022 07:03:50 +0000
ROA not before: Sat 01 Jan 2022 07:03:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41019
IP address blocks: 45.84.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42837991 (0x28da7e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66d5e5cd7d0375de252740546412b88ba5bcfa7a
Validity
Not Before: Jan 1 07:03:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23fb8ffcc81d4c67875638709547af4c6ed377fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:18:20:69:13:10:43:3e:b1:87:52:35:05:6e:
30:a7:4d:13:54:0f:dd:97:b8:2f:69:20:53:7b:e6:
50:6d:04:2d:c6:38:d9:cc:38:3a:5d:d5:93:e2:d0:
5a:66:9a:20:58:6f:67:4c:d8:12:90:4e:3e:6d:1e:
c0:55:2e:6b:7a:d3:c3:fe:cb:50:ed:c5:f9:d9:ac:
6b:32:d3:24:3b:c7:09:32:02:78:9f:72:51:b2:31:
cd:27:3e:82:f4:c7:18:58:bc:2a:0c:6a:bb:05:90:
4b:e2:08:c3:22:fd:dc:ab:5f:50:56:1a:0a:b0:09:
30:95:28:04:6d:90:47:ca:4a:35:35:10:c1:89:7b:
13:e2:5f:7d:ae:b8:23:97:6a:97:ce:f4:d1:81:f4:
20:af:da:d4:65:db:5b:2f:dd:69:73:87:54:1d:77:
5f:ce:ce:d4:be:99:8a:de:5f:7c:d4:8a:81:b6:db:
4c:df:e9:13:e3:85:5b:85:c3:0a:60:48:ff:a4:42:
88:45:dc:89:2e:c8:72:43:c5:b0:3c:76:9d:d4:f2:
98:08:8f:fd:f7:e5:90:dc:b8:94:44:9b:31:b7:a3:
4e:12:dd:b3:b9:1e:38:9e:d8:f2:9b:30:15:82:d1:
13:67:4d:33:ee:cd:ea:e2:d4:a2:51:84:6d:b0:f1:
06:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:FB:8F:FC:C8:1D:4C:67:87:56:38:70:95:47:AF:4C:6E:D3:77:FC
X509v3 Authority Key Identifier:
keyid:66:D5:E5:CD:7D:03:75:DE:25:27:40:54:64:12:B8:8B:A5:BC:FA:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/I_uP_MgdTGeHVjhwlUevTG7Td_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3db8d3-3404-45ef-8409-86b90f197ede/1/ZtXlzX0Ddd4lJ0BUZBK4i6W8-no.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.184.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:ef:99:f2:b6:7d:4c:7e:05:53:33:5a:b9:03:10:14:8f:7e:
18:eb:b6:46:3b:23:68:62:7f:d1:df:27:3e:74:34:7a:39:8a:
56:09:f7:5e:be:7b:ea:1f:3a:a7:9b:7f:e1:37:7d:f9:d0:05:
a7:4f:fd:f3:48:2d:e2:a0:34:1b:b7:19:57:02:01:d3:e0:a5:
28:84:d8:5a:7c:09:d0:9c:6b:1c:dd:44:72:6d:81:93:71:82:
b8:3d:65:58:d8:7e:13:52:e2:ed:72:4b:f7:1a:be:d0:af:b9:
f7:d4:10:50:54:03:7b:2d:f7:39:e1:f8:21:84:2e:dc:d2:38:
9d:90:02:23:c2:f5:55:cc:36:37:30:95:f4:61:0b:3c:8e:fe:
41:e3:c3:e1:c2:ca:ff:35:6e:40:5f:77:e9:81:ec:34:05:e5:
d4:96:57:25:9a:64:fc:7e:fb:4a:52:6d:fb:c4:f3:ae:c1:15:
22:4b:31:a4:87:21:dc:42:4d:fe:6b:9a:03:28:07:98:bc:50:
a7:5b:fd:7e:8c:e6:54:ec:20:b7:09:63:b3:66:df:dc:05:4d:
d0:c1:a9:5b:28:7e:f8:25:31:e9:c1:58:9e:d9:75:8c:be:0f:
a0:c9:68:2b:8f:7d:99:9d:75:d6:2c:3e:ab:2e:06:8d:de:4d:
7b:31:77:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:04 2024 by rpki-client on console-ams.rpki-client.org