Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sA_0UHaSLzxHDyb8gF-ikt5PrUc.roa
File: sA_0UHaSLzxHDyb8gF-ikt5PrUc.roa (raw, json)
Hash identifier: v0J1K/FwetCTHkFupUQDCbcfKv9lW1gbeH1CCe5G44E=
Subject key identifier: B0:0F:F4:50:76:92:2F:3C:47:0F:26:FC:80:5F:A2:92:DE:4F:AD:47
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 02E5B974
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sA_0UHaSLzxHDyb8gF-ikt5PrUc.roa
Signing time: Sat 01 Jan 2022 15:59:47 +0000
ROA not before: Sat 01 Jan 2022 15:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61432
IP address blocks: 45.143.203.0/24 maxlen: 24
185.156.72.0/24 maxlen: 24
92.63.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48609652 (0x2e5b974)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Jan 1 15:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b00ff45076922f3c470f26fc805fa292de4fad47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4b:13:7c:59:aa:3c:88:8e:1c:6b:c3:46:8f:
26:12:ba:4b:5c:f3:bd:13:5e:8d:d1:83:bf:47:41:
4c:ec:b6:32:f0:8c:aa:c8:42:4e:a6:16:c7:95:ac:
c8:2f:8c:79:f4:8e:e3:c0:b4:58:72:35:8a:fc:38:
a4:cf:d2:f3:93:d7:0d:0b:59:e5:29:41:82:d5:eb:
4d:9a:89:e7:6c:1d:f1:30:7c:3e:7b:49:36:9a:71:
4a:9d:cc:1b:68:83:ce:fa:77:d5:61:b6:e5:3f:2b:
4e:7e:2f:5c:17:3c:9d:8f:5b:db:97:65:e7:93:11:
32:aa:96:3a:ad:ef:d3:5d:69:eb:d9:50:9b:59:20:
b6:59:78:31:18:1d:bb:56:96:46:5c:6b:bb:69:8a:
17:28:84:c2:48:48:2e:0e:14:1e:ca:fe:06:45:74:
6f:11:f9:1d:1d:47:b3:8f:c5:61:2b:bf:52:22:b4:
6f:29:e7:ac:33:ef:46:0e:54:20:99:b3:98:eb:6c:
28:23:0d:db:49:01:66:91:f9:57:b7:3b:42:b9:39:
cc:a0:34:8b:de:30:35:10:ae:62:f4:d4:a9:a2:96:
ec:69:d7:d0:ed:c6:8d:84:0a:a9:c6:3e:fc:19:ea:
12:cd:43:de:d0:49:00:1e:99:7c:8e:7f:c7:9a:b6:
b0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:0F:F4:50:76:92:2F:3C:47:0F:26:FC:80:5F:A2:92:DE:4F:AD:47
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sA_0UHaSLzxHDyb8gF-ikt5PrUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.203.0/24
92.63.196.0/24
185.156.72.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:9b:ec:2c:18:54:52:de:1d:79:94:8c:53:f6:86:8d:e7:cc:
d1:ee:24:9c:97:3c:a8:22:54:9a:f6:eb:d8:1b:5d:b0:54:d7:
1f:30:82:58:ee:f4:d0:96:59:67:46:43:72:7b:f6:39:06:5f:
5c:6f:7d:0b:ee:0d:33:de:bc:bc:db:86:ae:27:0f:94:3a:df:
55:17:47:cb:0a:8d:59:6b:10:c4:08:7c:27:33:73:ec:f0:7b:
63:50:32:f2:76:2a:44:b2:45:68:d9:61:0a:15:9c:89:b0:8e:
a3:09:2d:51:b4:6a:b3:38:eb:e2:46:ea:8a:bd:a9:2a:80:71:
1c:9a:c8:5a:91:3a:ca:e8:b8:c9:59:81:17:51:86:c7:3a:29:
60:09:39:89:55:e2:ba:05:99:28:af:9c:74:74:69:9a:65:90:
e8:8b:e7:61:77:7e:3f:b9:3f:cc:2a:d4:df:98:da:6d:80:41:
94:fa:c8:fe:e4:7b:2c:14:6e:09:d2:16:a2:ec:94:8c:77:e8:
8d:90:46:f9:4b:b3:14:24:62:ce:48:63:4a:57:50:a0:cc:3f:
0c:b8:28:49:4e:cb:ee:00:fe:da:5a:f5:8d:ec:ba:4a:1d:20:
d5:b5:d1:0e:12:e7:1f:40:d5:16:8a:ed:51:ba:b0:ea:20:ad:
ac:96:35:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:59 2024 by rpki-client on console-fra.rpki-client.org