Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/_EIVBkbCq-ifM7G3B5HuioPt9SQ.roa
File: _EIVBkbCq-ifM7G3B5HuioPt9SQ.roa (raw, json)
Hash identifier: 3KjeiIw11NhWCQv3efNWSqMs/A/HhcSHvHGoTDUl3Z8=
Subject key identifier: FC:42:15:06:46:C2:AB:E8:9F:33:B1:B7:07:91:EE:8A:83:ED:F5:24
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0CC1B015
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/_EIVBkbCq-ifM7G3B5HuioPt9SQ.roa
Signing time: Sat 01 Jan 2022 05:05:05 +0000
ROA not before: Sat 01 Jan 2022 05:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206238
IP address blocks: 45.83.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214020117 (0xcc1b015)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 05:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc42150646c2abe89f33b1b70791ee8a83edf524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ab:80:74:71:ac:cd:b5:e3:4e:94:0c:bb:8a:
51:5a:06:7d:13:59:94:00:f1:87:17:51:c6:2e:0c:
32:42:bf:f3:17:00:47:f3:0f:be:06:25:54:03:ba:
ff:a5:2a:c1:c2:48:0b:d3:6e:07:35:1b:89:fe:f9:
6d:93:b1:01:8d:cf:96:7c:84:27:13:d8:12:17:d0:
a5:46:0f:0a:4d:b5:e3:f1:7d:5e:a3:62:38:2b:c7:
5c:e6:33:9a:3b:1c:68:57:c5:c0:b7:b4:95:10:f0:
9a:79:f7:cc:bd:27:0f:9d:7e:f8:1d:47:e6:e7:aa:
01:6d:9a:2d:c3:5f:03:ca:a6:cb:0c:8a:06:6f:7a:
cc:40:ca:6f:2d:95:56:db:07:28:60:83:6b:47:ed:
29:2f:c1:f3:73:fd:b5:bf:cd:5b:a8:cb:28:44:be:
0e:7b:7f:8c:36:b7:bb:63:5d:69:38:65:d1:38:e3:
bd:a0:e4:8e:d3:dd:c7:00:30:ec:e9:c0:96:5c:c9:
c3:66:d7:74:83:47:66:09:22:bb:04:eb:3e:f8:fa:
43:fe:54:46:9e:f2:73:a3:ca:be:0e:66:d2:7b:60:
50:5d:4e:ee:a5:5a:fc:55:b9:c5:6b:56:47:ec:8e:
56:3c:1b:fd:c6:87:cc:2d:c9:9f:8a:cc:46:b1:90:
b3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:42:15:06:46:C2:AB:E8:9F:33:B1:B7:07:91:EE:8A:83:ED:F5:24
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/_EIVBkbCq-ifM7G3B5HuioPt9SQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.232.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:28:ef:3d:40:e2:11:18:d9:0f:b9:70:84:82:2a:30:21:d0:
41:45:23:e6:e3:cb:9e:d8:7d:a0:f5:24:53:83:db:b5:13:0a:
61:65:34:64:5c:97:57:c7:09:54:a4:93:08:93:48:df:c7:7a:
94:94:80:51:f1:7b:50:77:33:b9:0c:96:21:90:b8:cb:67:7f:
da:71:55:ad:32:63:f2:fd:7d:a9:21:6c:ba:1c:ea:f5:d4:9c:
2f:e7:fb:c2:13:d7:4a:64:19:43:ef:0c:21:9b:f2:38:5b:62:
d9:31:f1:18:a3:68:b3:c8:a4:6a:df:70:ab:43:40:e3:31:01:
cc:08:85:40:7a:7f:97:c8:c4:cf:31:71:c0:63:ee:60:eb:12:
0d:7e:b8:48:a7:02:74:86:af:29:2e:4a:f0:34:df:83:a3:36:
11:81:fb:0e:27:17:90:b0:3d:53:01:11:f7:a3:9c:66:f9:b7:
a9:10:0a:95:6a:a5:62:a8:98:81:d1:b9:9f:87:cc:86:4f:de:
bb:84:8d:9a:18:f5:20:17:20:64:9a:4c:c9:3d:93:43:83:05:
ea:ef:5f:a1:5a:e0:e4:f2:7a:d5:a5:e1:c6:be:c7:d0:22:96:
bb:d8:16:09:40:ab:09:2d:44:41:d6:fa:78:6a:5f:cd:d4:93:
1a:c6:cd:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:02 2023 by rpki-client on console-fra.rpki-client.org