Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/0oTl1ktEW2mf36zMtDwIhyPcBSY.roa
File: 0oTl1ktEW2mf36zMtDwIhyPcBSY.roa (raw, json)
Hash identifier: KflyWpV1gkQnyUPhWbLJ3WHljIZmO6X3ROAJm5qEmpI=
Subject key identifier: D2:84:E5:D6:4B:44:5B:69:9F:DF:AC:CC:B4:3C:08:87:23:DC:05:26
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0D790638
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/0oTl1ktEW2mf36zMtDwIhyPcBSY.roa
Signing time: Mon 07 Mar 2022 06:19:38 +0000
ROA not before: Mon 07 Mar 2022 06:19:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137409
IP address blocks: 194.5.82.0/24 maxlen: 24
194.5.83.0/24 maxlen: 24
45.133.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226035256 (0xd790638)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Mar 7 06:19:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d284e5d64b445b699fdfacccb43c088723dc0526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:09:e7:79:18:89:8e:20:86:6d:d1:7e:56:79:
82:05:b0:f4:4c:47:59:86:ee:48:82:a1:13:55:ac:
59:5d:8d:67:17:db:ba:25:9b:68:fb:58:19:04:32:
4f:d0:3b:de:ec:1f:9f:c8:1b:5a:bb:88:1d:40:bf:
b4:99:8d:fc:e6:53:b5:f1:f8:f4:b9:93:bb:9e:92:
0d:b9:37:e6:ad:ee:52:8f:a8:d8:a4:c1:79:de:0b:
69:6a:7c:d2:6c:1f:7d:1b:0e:40:64:8b:40:dc:d7:
b0:20:f7:96:a6:45:9b:8f:06:f8:36:ae:c2:5e:07:
61:4a:02:ca:74:d8:44:e4:6c:4d:0d:53:ee:67:08:
06:64:99:38:78:e7:34:75:fb:d0:db:c1:2f:c6:fe:
1e:07:0f:e7:b8:51:65:ed:50:40:d1:d9:0e:de:a0:
db:8c:76:82:cb:3b:5a:a1:d7:b5:81:6f:47:9c:95:
d9:2b:52:aa:73:e5:48:c8:55:d2:f5:a9:3b:c4:3d:
d2:ef:e1:62:2e:6f:df:85:2f:5f:65:42:00:b5:b4:
d2:87:92:58:d1:27:af:ab:c9:3c:87:61:a9:a1:24:
65:50:1c:4c:a7:96:1f:af:ad:78:26:ab:a8:a2:8e:
67:a3:f3:97:7c:67:d3:22:e1:a1:c0:07:7a:96:c5:
69:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:84:E5:D6:4B:44:5B:69:9F:DF:AC:CC:B4:3C:08:87:23:DC:05:26
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/0oTl1ktEW2mf36zMtDwIhyPcBSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.5.0/24
194.5.82.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:d7:2a:75:df:a3:c3:ee:46:c8:67:cd:7b:4e:89:0c:cd:c3:
65:6d:d3:68:e4:b5:60:a7:18:98:44:6b:36:54:50:6e:14:42:
0e:03:49:2c:99:a9:b3:48:56:9f:b8:f5:0a:df:5c:0f:f8:2c:
0e:61:2d:6b:a7:ee:f7:b4:2b:e8:13:a9:d2:dd:c7:42:a6:89:
18:aa:5f:b8:d4:ff:7a:c8:41:d5:e0:82:89:5e:6e:67:fc:88:
dd:c4:39:37:91:66:95:77:a5:39:ac:f1:6f:26:4a:7f:f5:12:
f8:3a:c2:20:5d:e3:33:07:5c:66:a1:d2:cc:e9:f7:cd:1f:08:
c6:2d:b9:e7:10:51:58:29:ec:34:bc:72:aa:3c:b6:0a:e6:57:
71:b1:f2:d5:ac:9b:dc:ae:1a:51:5d:ac:e1:ef:d1:ab:2f:37:
21:0e:36:e2:4d:03:19:e5:2a:13:b0:d7:a3:35:97:e8:1a:cb:
b4:b0:da:9a:ef:91:6a:00:ec:41:f2:11:38:11:12:6d:b2:3c:
24:e4:8c:e4:7e:1b:47:0f:7f:6b:59:44:8e:5d:90:93:66:98:
95:3d:63:bb:87:10:36:9c:f4:80:f7:6f:74:4b:cf:04:50:2e:
ad:75:81:b9:32:e7:0b:6d:6a:0e:f9:5f:14:57:4c:d0:c9:09:
e2:21:62:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:43 2024 by rpki-client on console-fra.rpki-client.org