Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/s-OM_iC8UdeX-UzSI6EJdUr4qnE.roa
File: s-OM_iC8UdeX-UzSI6EJdUr4qnE.roa (raw, json)
Hash identifier: ShW42uApGaeB4MH7j0Zji45NrWh3rhjtBdW3GyFSul4=
Subject key identifier: B3:E3:8C:FE:20:BC:51:D7:97:F9:4C:D2:23:A1:09:75:4A:F8:AA:71
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 07DB3255
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/s-OM_iC8UdeX-UzSI6EJdUr4qnE.roa
Signing time: Sat 01 Jan 2022 10:57:01 +0000
ROA not before: Sat 01 Jan 2022 10:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210349
IP address blocks: 45.155.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131805781 (0x7db3255)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 1 10:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3e38cfe20bc51d797f94cd223a109754af8aa71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:4d:36:33:14:b9:20:56:b3:0f:c8:d6:c7:54:
1e:6e:24:8d:e3:6c:a0:76:d4:e0:44:6f:62:27:69:
f3:84:63:ca:6d:22:eb:75:c8:af:a8:b2:a0:34:ae:
6b:9c:0e:5f:ab:76:0e:fe:5f:db:48:8d:4e:14:fc:
8f:fc:ad:99:b2:47:58:a9:2a:c3:d7:45:fc:29:d9:
a4:91:9c:80:a5:cb:e6:2e:35:e8:35:33:dc:d0:df:
a1:b1:b5:7c:25:19:4f:6e:49:ed:46:3d:35:6f:5b:
5b:92:49:bf:64:3d:89:4b:57:b0:11:85:ad:e2:3e:
79:0a:aa:8b:c4:f8:f0:c4:fe:3c:14:6e:2d:66:f9:
87:8d:df:c1:79:d0:4e:0b:7e:55:dd:2e:a3:af:3f:
9f:71:9f:b5:9f:81:ea:bf:07:71:e4:07:fe:00:2f:
c7:98:e7:4a:26:31:39:98:95:0f:42:26:da:2d:a2:
5d:09:a1:ef:7e:67:be:1b:9f:f4:5d:cf:37:aa:74:
28:2a:96:c6:5a:6e:5e:e2:b5:c6:7e:9d:fd:db:c0:
68:4f:95:d2:a6:10:06:87:0b:0b:19:99:4b:14:8c:
bc:c7:e6:0a:e5:c9:9d:87:a8:70:f5:6c:37:ae:33:
c7:2e:a3:84:8c:11:ae:44:1a:f2:00:ce:ec:6e:5b:
fa:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E3:8C:FE:20:BC:51:D7:97:F9:4C:D2:23:A1:09:75:4A:F8:AA:71
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/s-OM_iC8UdeX-UzSI6EJdUr4qnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.77.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:e6:9c:1c:7a:48:8c:32:4c:e6:e9:7f:a5:e4:be:f1:ba:6c:
f4:e1:f1:c0:36:41:ef:2e:ff:42:50:b1:35:b5:c5:e8:9e:69:
bb:8b:d1:4a:16:a1:a8:29:ec:ee:1e:b5:99:d4:e9:d3:e2:9b:
5a:da:89:56:36:05:ee:0a:ce:d8:34:ef:f7:d4:4c:ff:f3:ff:
ac:39:44:b3:fc:5a:e5:74:18:73:de:7c:c8:78:f8:c7:63:82:
a9:5e:ab:35:cf:50:43:11:da:6f:f8:92:6b:b3:a1:d5:21:8c:
fe:aa:33:0d:a4:2a:9b:c4:97:46:c0:ce:b2:40:76:05:e5:f5:
14:4a:db:8a:8b:4f:98:22:0f:41:9e:59:ab:89:ab:be:7f:7e:
36:be:1f:68:e7:3d:f7:47:57:4a:c8:bb:42:dd:58:5d:52:23:
9f:21:38:dc:1d:5c:0b:47:af:42:0b:d8:be:f0:ed:77:8e:15:
9f:54:b1:11:00:28:ea:92:cc:80:b9:66:14:e2:20:57:bf:f0:
a7:70:fb:4b:f4:3a:ea:53:83:fa:d7:11:71:b9:ff:b5:65:67:
67:bd:f1:91:f0:3f:f1:7d:0c:7d:2e:4b:1f:ab:5f:7e:c3:a1:
44:97:c7:9e:0c:05:d4:c2:3c:3c:10:03:bf:91:3e:87:6b:94:
9d:07:be:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:53 2024 by rpki-client on console-fra.rpki-client.org