Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/xlkEr3gnKqfRB_Ug9KSEZO00_sM.roa
File: xlkEr3gnKqfRB_Ug9KSEZO00_sM.roa (raw, json)
Hash identifier: Ih+nrP7FU/kiOJI6gN584alrAu0joC/HZa/axDls1b4=
Subject key identifier: C6:59:04:AF:78:27:2A:A7:D1:07:F5:20:F4:A4:84:64:ED:34:FE:C3
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0CA990FC
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/xlkEr3gnKqfRB_Ug9KSEZO00_sM.roa
Signing time: Sat 01 Jan 2022 05:04:52 +0000
ROA not before: Sat 01 Jan 2022 05:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19437
IP address blocks: 84.245.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212439292 (0xca990fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 05:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c65904af78272aa7d107f520f4a48464ed34fec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:da:bc:4c:66:79:6c:2a:d5:d5:bf:e8:84:cf:
45:e6:52:1f:50:77:97:8e:d9:70:19:34:24:ea:6a:
72:4e:e1:4c:a0:90:13:7c:fb:b1:9c:d2:47:ce:b0:
8b:f3:f0:3d:72:35:7b:ad:8f:f3:ca:4d:e2:08:45:
85:f0:05:c6:d6:41:0f:15:0e:dc:20:91:ee:4c:79:
f4:0f:30:86:bc:d2:a3:77:92:2d:3f:90:4d:cb:e2:
43:6c:70:8e:1e:a5:8c:f2:ed:99:6c:e9:63:27:ff:
f7:8d:bb:e0:42:1f:2e:a5:a0:27:d5:63:22:d1:6d:
64:e6:99:e4:58:f5:0a:96:13:8b:7a:b3:f2:6d:94:
8d:dd:9e:3f:c4:91:a7:a5:7f:7b:3e:7d:31:d6:47:
95:0c:a7:4d:59:ac:8a:6a:dc:af:4d:f8:7d:d2:5e:
8d:99:30:43:a2:e7:8f:9a:0b:54:02:d4:cb:95:69:
17:6b:66:c3:66:19:0d:b8:ea:85:f2:d1:5a:60:13:
66:0f:ef:25:45:51:38:bf:41:6d:cc:4b:51:f4:3f:
74:b6:fc:b0:c3:a8:00:5a:17:b2:86:4e:f0:f0:ce:
9e:98:79:6a:0d:63:58:b7:6b:11:37:56:e6:28:05:
c3:8b:9b:53:09:dd:39:50:8c:a5:da:a8:98:b7:84:
28:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:59:04:AF:78:27:2A:A7:D1:07:F5:20:F4:A4:84:64:ED:34:FE:C3
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/xlkEr3gnKqfRB_Ug9KSEZO00_sM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.245.57.0/24
Signature Algorithm: sha256WithRSAEncryption
71:f5:48:cb:7c:e6:f8:54:5c:bd:07:59:79:aa:82:d8:c9:f2:
82:41:38:39:e1:8a:8a:c0:1b:50:ea:c9:90:7d:cc:fc:57:41:
c6:8f:82:9a:67:24:1b:17:77:45:6e:c6:27:93:6c:74:24:c5:
f5:9d:84:8d:0e:f2:e3:23:c6:08:d0:10:5a:cd:e7:1c:85:56:
5d:18:f6:cc:5f:4d:11:87:5e:11:c3:5a:53:71:11:6e:c8:db:
eb:39:f3:4d:95:4c:ce:36:e1:3f:3a:ae:7e:bb:11:36:a9:df:
91:c1:db:8d:c2:7e:48:bd:de:35:b3:4b:13:de:69:71:aa:bb:
f9:d2:7e:8d:c4:58:29:24:be:e0:b4:7c:60:34:9e:83:ca:d1:
94:82:57:8f:40:8d:30:3a:0e:87:2b:4c:b7:2c:24:9e:8c:31:
e7:e9:99:f1:04:6f:33:da:57:dc:54:99:49:21:93:cc:b6:aa:
cc:52:67:01:d2:cd:a8:25:80:9f:85:38:b4:38:8f:80:90:e6:
e6:e5:05:49:25:37:ab:d5:6c:4d:41:d3:c9:68:33:2c:ef:ba:
6a:6d:30:d3:07:7c:8e:b5:c4:40:c0:4f:62:7b:72:aa:97:5c:
99:e1:29:b0:23:ba:42:35:3b:22:b3:15:f6:ad:8c:61:fd:5a:
cc:41:14:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:04 2023 by rpki-client on console-fra.rpki-client.org