Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/80qhZ0eK9P6BPC51_AU6ybmO1gM.roa
File: 80qhZ0eK9P6BPC51_AU6ybmO1gM.roa (raw, json)
Hash identifier: d0xZnXnxJxT3XfUekAtltTSdkk/O12CuKrNMWzjTeag=
Subject key identifier: F3:4A:A1:67:47:8A:F4:FE:81:3C:2E:75:FC:05:3A:C9:B9:8E:D6:03
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0E755FD3
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/80qhZ0eK9P6BPC51_AU6ybmO1gM.roa
Signing time: Thu 16 Jun 2022 11:57:44 +0000
ROA not before: Thu 16 Jun 2022 11:57:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211112
IP address blocks: 45.92.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242573267 (0xe755fd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jun 16 11:57:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f34aa167478af4fe813c2e75fc053ac9b98ed603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d6:04:42:bc:57:61:7c:a7:bf:21:7d:8c:e4:
a8:e5:47:e8:76:62:e4:5c:e0:4b:c0:47:0b:c6:b5:
94:40:cc:ac:6c:77:e5:d9:73:d2:72:4a:66:b2:49:
2e:3a:dc:dc:ce:21:d2:20:82:e5:39:d3:89:f9:38:
78:f4:a6:88:4b:47:50:be:a3:77:b9:3d:8d:a3:74:
b2:b7:95:6f:b0:1c:33:3e:94:c7:2a:47:24:02:8d:
51:0c:9b:e1:93:da:ad:14:94:7b:0f:db:bf:1a:27:
43:67:cd:f2:40:f7:62:ef:e1:58:6f:d7:7a:8e:0d:
37:b7:6d:03:ee:f7:d2:8b:60:c4:be:5a:0a:24:33:
e4:fd:ed:5d:a1:0f:0c:bf:c2:49:03:35:f5:41:0f:
07:2d:b2:8f:52:f8:7c:76:a9:c1:cc:f1:a1:c5:46:
2a:2d:3e:27:13:28:ab:3b:26:63:38:36:c6:d1:c3:
e0:d0:5a:d7:02:86:72:26:8a:32:04:d4:47:b5:19:
b4:39:ec:70:89:79:db:cf:4b:52:c9:52:54:e2:92:
13:4d:91:25:8f:66:de:22:c4:b8:f4:53:4b:52:fd:
54:0d:ac:dd:69:a5:ab:b6:5a:04:0d:a5:b2:b5:2c:
58:ce:f2:64:92:c7:d5:9a:93:de:49:8b:9e:6f:50:
0f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:4A:A1:67:47:8A:F4:FE:81:3C:2E:75:FC:05:3A:C9:B9:8E:D6:03
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/80qhZ0eK9P6BPC51_AU6ybmO1gM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.0.0/24
Signature Algorithm: sha256WithRSAEncryption
86:a8:34:c1:ba:ad:7d:ae:80:05:01:40:29:7c:39:3d:79:0f:
3f:e5:d6:50:42:5b:67:5e:96:c5:dd:9e:b1:25:ad:7b:a5:e0:
d1:b8:41:c2:9f:9a:13:54:32:12:06:91:b0:98:fc:50:ea:0e:
97:9b:43:80:18:92:79:a4:d1:52:67:aa:92:1e:62:41:20:d0:
d5:4f:78:67:63:33:57:30:2b:84:02:6e:1d:73:0a:5d:38:90:
23:7f:a2:e6:2a:03:11:f7:35:a8:c4:2d:39:7a:13:b2:14:66:
03:66:5d:9e:b0:c2:8a:3a:ff:4e:9d:1c:a9:d5:a9:02:48:6e:
83:79:99:da:d5:32:ba:57:a8:35:15:27:07:ab:78:c8:62:5d:
53:a7:4b:37:69:84:ac:57:cc:2c:03:50:ac:39:91:26:49:68:
45:8d:ca:4c:6a:c3:95:39:42:55:d7:6c:a0:37:b1:52:55:ed:
7b:36:2c:df:a6:0e:22:74:f8:7e:9f:86:2b:77:01:4b:71:1e:
11:cc:9f:fe:97:d4:81:55:53:95:50:4d:2e:8d:39:3d:ef:f3:
1f:3b:a3:0d:15:78:04:a6:a8:6d:09:ee:83:d6:ba:1c:2b:af:
fa:e3:c7:33:aa:97:b1:d9:8c:86:3e:e1:f9:52:b9:94:a5:b2:
dd:91:1d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:57 2023 by rpki-client on console-fra.rpki-client.org