Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/v36j4-YlBPVqljMBdMY4s7iba8o.roa
File: v36j4-YlBPVqljMBdMY4s7iba8o.roa (raw, json)
Hash identifier: 2THRaa4pIQxsvYqr/Qjr1MfDEH/oF7AdnbvLwyfpvsc=
Subject key identifier: BF:7E:A3:E3:E6:25:04:F5:6A:96:33:01:74:C6:38:B3:B8:9B:6B:CA
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01842795FDBDF1EEC8260F0ABDD5E71DB091
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/v36j4-YlBPVqljMBdMY4s7iba8o.roa
Signing time: Sun 30 Oct 2022 06:30:51 +0000
ROA not before: Sun 30 Oct 2022 06:30:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202559
IP address blocks: 45.141.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:27:95:fd:bd:f1:ee:c8:26:0f:0a:bd:d5:e7:1d:b0:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Oct 30 06:30:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf7ea3e3e62504f56a96330174c638b3b89b6bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c8:65:1a:80:3b:8e:c5:dd:47:73:37:7c:1f:
fa:f9:aa:72:3a:0f:39:8b:32:92:75:d5:e7:58:81:
ad:47:20:38:f0:16:a6:24:c2:3b:77:4a:f3:e8:ff:
77:61:ef:68:4a:7b:9a:b6:7e:20:91:ae:51:d9:b4:
1b:15:fb:4d:b1:6d:8b:a4:c4:75:88:c0:1d:45:7d:
95:28:45:23:61:a2:86:07:4c:ac:9f:a2:da:ef:03:
b7:37:61:5f:fb:75:d3:65:95:22:89:c7:21:d2:47:
bb:00:b5:cb:f6:f5:fd:b4:23:69:4b:d3:c1:60:9c:
36:83:62:14:38:05:2f:36:be:98:ef:6f:b9:dc:a9:
1f:64:bd:8a:a7:6c:72:c0:c4:39:4d:01:e5:67:2d:
2c:c5:85:87:a1:ba:a2:7c:73:ed:24:a0:ef:b1:00:
1a:cd:3a:8e:15:e0:66:b9:35:e8:72:1d:f4:59:e9:
f5:f6:9b:4b:c9:01:1e:6f:d4:83:4b:3e:20:d2:ab:
80:2c:73:cb:a8:c5:45:64:e9:ec:22:16:b1:10:5c:
f7:fe:d2:12:8e:dc:00:6d:c7:af:5b:42:13:3d:87:
fe:46:89:fb:28:e9:7e:bb:97:b6:43:37:51:c5:18:
94:0e:b4:c6:5d:cf:fb:31:be:51:82:4c:c9:b7:e0:
c6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:7E:A3:E3:E6:25:04:F5:6A:96:33:01:74:C6:38:B3:B8:9B:6B:CA
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/v36j4-YlBPVqljMBdMY4s7iba8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.202.0/24
Signature Algorithm: sha256WithRSAEncryption
83:1f:20:c3:1c:9c:16:97:1c:38:f4:19:81:35:88:b7:40:e5:
e4:b7:14:bd:00:7b:1d:b0:fc:a6:aa:88:38:1d:1c:fd:e8:d3:
5e:2d:da:7f:15:5c:05:3c:ab:80:b6:e5:78:28:13:4e:2b:ed:
50:c5:9e:5e:25:0b:4c:d2:7f:2c:55:61:d1:83:3a:42:98:5e:
04:57:2d:2a:1b:16:b9:4f:3a:45:15:04:88:91:15:f1:3b:0a:
38:e9:3b:69:1c:6f:63:a8:93:8e:47:86:0f:e3:c4:b7:c2:fb:
1f:d8:8c:fd:6c:8b:8d:95:46:40:32:a1:79:aa:3b:fe:dc:d1:
1d:b1:28:8a:04:7b:48:5c:a1:31:fa:8e:01:77:eb:d9:8b:51:
8c:8b:9d:42:54:5c:cf:ba:c9:e6:1c:2b:ce:3c:58:a1:30:7c:
d7:e1:d0:2f:87:4b:d5:2f:22:99:b6:4b:7c:42:5d:37:ab:f5:
e4:c5:70:66:a9:ee:e0:61:87:49:4a:8b:06:4b:43:84:17:85:
36:51:d9:f2:48:0c:38:2d:c9:eb:d5:12:c1:c9:e9:d1:d3:7a:
47:4c:26:f4:04:c9:1f:ef:86:d6:8f:f8:32:e4:4f:06:be:6e:
a5:1f:a9:8f:c8:92:10:fe:bb:97:68:a0:65:04:ba:cc:4d:0f:
58:84:81:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:03 2023 by rpki-client on console-fra.rpki-client.org