Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/2RnfpqBUA53OtDAVZjMHHM3kmS0.roa
File: 2RnfpqBUA53OtDAVZjMHHM3kmS0.roa (raw, json)
Hash identifier: bCSXGHrPNg99RpUmvKVYSb9Rdy5L1+Qv+OwlUvWh+vg=
Subject key identifier: D9:19:DF:A6:A0:54:03:9D:CE:B4:30:15:66:33:07:1C:CD:E4:99:2D
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0314164B
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/2RnfpqBUA53OtDAVZjMHHM3kmS0.roa
Signing time: Sat 01 Jan 2022 16:04:12 +0000
ROA not before: Sat 01 Jan 2022 16:04:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7979
IP address blocks: 45.95.201.0/24 maxlen: 24
45.95.200.0/24 maxlen: 24
45.95.200.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51648075 (0x314164b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d919dfa6a054039dceb430156633071ccde4992d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:24:ff:4c:8d:0b:e0:97:ec:04:d4:d2:d1:1a:
ea:55:6d:ac:98:8a:ff:1c:48:bc:73:84:49:c7:ed:
a8:9c:a7:f8:bb:f1:02:68:79:72:6d:aa:e4:ab:d0:
8f:a8:3a:cd:fa:61:5e:bb:1a:f5:71:0c:b4:dd:2d:
92:79:2e:96:12:c7:35:d5:60:48:04:8a:cb:0a:0b:
a1:b4:d1:e5:fe:28:7e:39:17:c4:cf:eb:38:13:08:
60:f0:06:9e:03:5d:7c:9c:2e:46:02:26:4c:bd:51:
9e:be:73:03:b8:06:d3:46:0a:ce:ab:01:9c:0c:d3:
10:57:d4:65:b4:83:7a:1c:f9:bb:79:88:f9:09:5b:
4a:8c:04:26:24:31:1b:22:a8:02:77:17:03:b4:8a:
73:98:c8:6b:2f:7e:84:c0:1f:a7:da:14:01:c5:37:
7a:7c:81:7c:8d:80:34:1b:65:5f:99:37:24:fc:e2:
b6:67:c3:7f:aa:5b:f0:07:65:2b:12:0d:30:f7:68:
65:a7:cf:c7:82:1a:a7:48:eb:c5:39:67:58:8d:85:
2e:d9:32:2b:f1:d4:cc:0d:4f:ab:98:5a:7e:0a:44:
7b:83:82:18:7b:48:e6:66:05:54:53:13:8a:22:53:
99:0b:c5:ba:f0:06:d2:e4:d9:a5:1b:45:7f:3d:c3:
51:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:19:DF:A6:A0:54:03:9D:CE:B4:30:15:66:33:07:1C:CD:E4:99:2D
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/2RnfpqBUA53OtDAVZjMHHM3kmS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.200.0/23
Signature Algorithm: sha256WithRSAEncryption
37:6b:7e:9b:5a:1d:a0:27:77:a8:3c:fd:c1:0c:97:52:59:2d:
7a:af:7d:ed:c1:1c:bb:95:7c:e0:52:fd:5d:a2:7d:07:fc:29:
ff:80:78:0a:dd:52:f1:a7:aa:75:dc:39:c9:1b:90:78:63:f3:
9c:33:02:76:fd:c4:6c:0d:12:e4:55:89:38:5a:be:c9:84:32:
b8:2b:ca:5a:26:d2:ba:92:15:b1:b5:14:f1:ed:11:23:25:de:
4c:03:86:50:61:db:4c:f8:33:b8:b9:55:0c:e5:8e:da:74:dd:
97:1d:b1:14:d5:50:7e:87:28:b2:54:65:49:90:48:23:50:85:
0c:58:55:18:64:a7:5c:ff:5d:59:d3:fa:4d:9d:d4:83:a7:81:
c2:ec:53:29:b7:b5:e6:82:b6:2f:de:06:46:32:a2:a9:ba:17:
a1:0f:0e:48:df:38:4f:50:37:0d:56:47:d0:04:38:1e:40:9c:
49:3b:9e:b8:98:08:57:55:02:1d:38:17:d0:03:ac:ff:68:a0:
58:ff:21:96:d7:9d:62:1b:3c:74:eb:b0:44:63:18:7d:06:d8:
da:33:7d:31:68:99:51:03:ad:88:41:d5:67:6b:b2:26:31:0d:
df:6c:d4:17:de:10:2d:64:c8:64:0f:67:b5:79:f0:5a:25:aa:
a0:81:c0:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org