Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/ix-24IuNGnULfe7eLDPqLeE3zxg.roa
File: ix-24IuNGnULfe7eLDPqLeE3zxg.roa (raw, json)
Hash identifier: OjgQAwgajrrJkqVTtyv/JHAkv1exdxOVHPx+pAUm3aI=
Subject key identifier: 8B:1F:B6:E0:8B:8D:1A:75:0B:7D:EE:DE:2C:33:EA:2D:E1:37:CF:18
Certificate issuer: /CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Certificate serial: 0B9B6114
Authority key identifier: B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/ix-24IuNGnULfe7eLDPqLeE3zxg.roa
Signing time: Wed 04 May 2022 07:25:05 +0000
ROA not before: Wed 04 May 2022 07:25:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43431
IP address blocks: 45.13.136.0/24 maxlen: 24
2a0e:eb00:1::/48 maxlen: 48
2a0b:1784::/30 maxlen: 30
2a0b:1780::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194732308 (0xb9b6114)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Validity
Not Before: May 4 07:25:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b1fb6e08b8d1a750b7deede2c33ea2de137cf18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7f:a9:65:39:f8:74:06:ae:da:13:57:15:24:
14:3c:1c:9d:2c:ef:fa:9b:ac:78:a4:89:a0:8f:cc:
01:ba:4b:2f:5a:79:20:a4:2d:61:b7:42:2e:e6:6a:
d9:d3:c1:4d:59:46:7b:74:15:13:32:21:61:66:75:
aa:0b:bf:67:ac:99:82:01:97:d5:83:1f:0b:d1:c7:
cd:a5:77:41:d7:d9:fe:f3:cd:99:31:8b:11:4f:82:
d6:39:aa:2b:7a:fb:24:88:32:41:5c:58:49:d9:43:
e1:62:5b:80:4b:80:10:56:c3:c4:8b:58:f4:90:4a:
be:5c:a8:2d:98:0a:61:96:b1:63:9c:7e:e4:cc:75:
fb:51:40:88:2a:8f:aa:20:eb:16:db:7b:b5:aa:9d:
36:15:b7:f5:0d:a3:3d:84:0d:d0:00:29:07:05:7e:
df:74:da:65:e0:90:25:02:27:1c:32:53:31:27:a2:
d9:dd:3f:07:1e:6b:39:0d:90:f8:df:d4:e3:1e:dd:
52:4a:ec:b7:02:54:52:1f:68:ca:01:58:ae:3a:b1:
1a:8c:4b:e0:78:94:43:81:be:06:cb:d8:f9:46:8b:
51:6f:3d:5b:2e:a4:cc:79:06:29:53:1e:3a:09:35:
3a:2a:57:6c:ef:a1:73:11:8d:47:11:55:cd:26:af:
13:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:1F:B6:E0:8B:8D:1A:75:0B:7D:EE:DE:2C:33:EA:2D:E1:37:CF:18
X509v3 Authority Key Identifier:
keyid:B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/ix-24IuNGnULfe7eLDPqLeE3zxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/sMIK4drMoxgVsnRwKSfBpanbx7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.136.0/24
IPv6:
2a0b:1780::/29
2a0e:eb00:1::/48
Signature Algorithm: sha256WithRSAEncryption
21:21:94:01:91:b8:c9:81:f7:b7:e6:47:5b:38:d0:6e:31:c7:
6a:ca:5c:89:96:2c:d3:ec:ca:6e:51:15:04:95:f3:0a:33:e0:
da:0c:e2:e8:f8:25:c5:4c:94:6d:4c:0c:32:53:24:96:3c:54:
49:86:73:3f:8c:08:ae:61:88:7d:66:dd:32:e3:a7:cd:47:f9:
83:c4:f1:d2:8c:e6:c7:c6:49:a6:27:9c:2d:c1:1b:00:39:44:
3e:43:24:32:85:6d:c5:2a:a5:9d:df:6c:ff:e6:66:6e:dc:54:
c6:bb:09:b5:10:6a:fa:e5:1c:f2:e0:ea:13:60:c1:14:91:b1:
4b:67:1a:6a:d8:aa:3f:b3:85:e8:a8:65:d2:41:72:c9:17:74:
88:d6:05:1b:1e:cf:89:c0:28:9f:a9:0b:e6:b6:61:30:03:22:
4d:21:20:c4:88:dd:89:cc:99:ae:81:d1:a0:eb:21:b3:3d:f9:
fe:19:05:95:96:64:ed:bd:83:80:e2:53:0c:75:29:3e:81:2a:
37:03:81:d1:99:87:4d:19:46:ad:60:fb:c7:f7:c9:ee:fd:9e:
15:75:9f:3c:31:39:b8:9e:4c:08:b5:c4:f6:0c:8b:42:cb:c1:
14:eb:98:82:4b:53:83:9e:9d:c2:bc:c4:c2:92:cf:96:05:de:
2e:18:03:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org