Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/dPq1oOpSDLbo-Izn756WPyu9_us.roa
File: dPq1oOpSDLbo-Izn756WPyu9_us.roa (raw, json)
Hash identifier: qwaGWskmiPvBhGIfFNub1pfSO3PvalvD9a76oyghalc=
Subject key identifier: 74:FA:B5:A0:EA:52:0C:B6:E8:F8:8C:E7:EF:9E:96:3F:2B:BD:FE:EB
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 04662B83
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/dPq1oOpSDLbo-Izn756WPyu9_us.roa
Signing time: Tue 29 Mar 2022 10:36:07 +0000
ROA not before: Tue 29 Mar 2022 10:36:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43278
IP address blocks: 45.8.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73804675 (0x4662b83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Mar 29 10:36:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74fab5a0ea520cb6e8f88ce7ef9e963f2bbdfeeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:79:6e:37:70:a2:13:09:18:59:f5:93:21:cc:
14:87:60:ad:5d:c3:7c:2a:de:bc:38:86:ac:7a:ee:
b7:0c:7d:a7:51:80:52:ca:4a:b3:e2:80:97:87:dc:
68:57:4a:4a:d9:1f:5e:5a:ad:7d:b4:3b:36:50:6b:
13:83:f3:5b:de:fa:a4:83:d9:64:27:a4:0c:ba:83:
31:61:c1:74:fb:4b:ca:4a:0f:0d:8c:35:f0:c8:18:
87:e8:8a:e7:b5:29:68:d4:c1:f0:4f:c3:e5:b4:f6:
58:16:f7:51:54:e3:70:d8:7b:bb:01:e7:a8:e4:11:
ff:72:d6:56:89:14:9d:36:14:11:4a:40:ad:2e:2b:
49:17:1e:8f:8b:14:83:ea:ba:81:ad:33:d1:97:dd:
33:23:c6:b6:af:85:3d:8c:fb:87:25:6e:e3:e6:5f:
33:b0:76:eb:46:dc:d3:74:b6:2a:27:bb:2e:8b:70:
bb:69:28:ad:03:d0:3d:6a:75:a9:5c:23:d1:89:9d:
58:72:b8:b1:b2:dd:7d:6c:e4:6d:db:36:d5:4f:ce:
c4:e6:16:48:fc:51:7d:4f:fc:1a:9f:1c:7b:15:36:
85:cb:8b:dc:e9:35:46:23:7b:77:d9:43:56:56:69:
8a:12:e4:46:f0:90:76:4a:22:12:b7:f1:5f:06:ae:
ec:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FA:B5:A0:EA:52:0C:B6:E8:F8:8C:E7:EF:9E:96:3F:2B:BD:FE:EB
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/dPq1oOpSDLbo-Izn756WPyu9_us.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.210.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:15:73:ee:5d:bf:67:38:9c:5d:4f:17:c7:4b:c1:49:32:68:
de:b3:8b:37:fc:8e:ef:9d:40:6c:10:72:96:52:c9:9b:4b:d7:
b4:38:d1:23:6f:37:84:d9:00:27:12:52:e0:ad:b0:17:eb:c0:
15:c8:eb:4b:af:c4:76:08:fa:43:41:e1:87:a3:40:fb:e2:a2:
a6:b2:de:2a:ab:c4:2e:64:4b:4c:59:dc:08:66:0e:e8:ae:5f:
e5:e4:8d:89:7a:98:41:58:96:9b:ab:84:2c:65:3c:84:8f:81:
9f:d3:89:d0:11:b1:b8:2d:95:09:35:25:62:5a:dd:5e:90:20:
c5:07:be:fb:e5:31:2a:40:2d:7a:16:ca:6f:a9:6c:59:7a:b2:
55:c7:9d:71:1f:02:d8:31:2b:86:4b:46:22:bb:1e:29:dc:09:
16:ec:db:99:1f:e3:5b:ca:72:20:72:89:a8:99:cb:95:ba:c0:
5f:02:e6:f3:b4:f5:d2:d1:28:f0:51:d1:f7:86:0d:c6:e3:41:
5c:60:8f:00:1f:1a:3b:c4:0d:06:ab:b1:86:af:5a:63:ef:1e:
d2:f1:c5:a3:2b:cf:57:b7:b6:3f:03:06:fe:bd:75:14:ee:e9:
01:0c:a5:f6:27:6b:0b:2e:74:1b:de:e9:3b:22:94:ea:a2:ae:
19:37:dc:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org