Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/hTdir2MbINTZCPtGNHf9KWy76PQ.roa
File: hTdir2MbINTZCPtGNHf9KWy76PQ.roa (raw, json)
Hash identifier: XFzgq8nAPyDk/gDvcFfrqqEsfuEcEXXX7vloez2Pup8=
Subject key identifier: 85:37:62:AF:63:1B:20:D4:D9:08:FB:46:34:77:FD:29:6C:BB:E8:F4
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 032BD276
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/hTdir2MbINTZCPtGNHf9KWy76PQ.roa
Signing time: Sat 01 Jan 2022 16:04:24 +0000
ROA not before: Sat 01 Jan 2022 16:04:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62282
IP address blocks: 193.34.233.0/24 maxlen: 24
45.137.106.0/24 maxlen: 24
2a0f:7b80::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53203574 (0x32bd276)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=853762af631b20d4d908fb463477fd296cbbe8f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6d:cf:75:29:1e:de:ce:20:bc:7e:e2:25:b2:
d8:44:f7:c6:6c:6b:e4:0a:16:bc:03:c3:a7:ec:7c:
a3:2a:f8:30:02:1a:7a:db:9b:64:61:75:d0:9b:ca:
84:51:a4:59:7e:d5:3e:3e:c4:8c:e0:85:cc:2f:75:
f8:7f:c1:76:ec:41:3d:ee:9d:02:0b:b0:b9:22:7d:
64:69:86:a5:94:58:04:4d:ee:ce:50:5b:77:cf:45:
0a:f7:37:c8:4f:d4:0e:43:02:44:75:7a:9a:e5:e3:
b8:bb:a1:49:4e:3f:2f:b3:f4:8e:f6:4a:24:5d:2b:
d1:e3:54:19:75:dc:ff:e9:50:1f:47:13:89:bf:59:
e4:df:58:66:00:1c:7f:98:df:a7:51:c0:51:2a:ed:
bd:0b:da:8e:b3:d6:05:e4:25:ae:47:f1:e2:fb:0a:
49:e9:05:72:30:13:97:ed:a3:47:0a:48:16:02:e9:
60:26:ac:1b:8c:03:ce:66:11:34:da:2f:a4:28:fd:
0e:93:57:28:08:15:10:3d:b3:c3:62:4e:62:f3:94:
87:35:9d:dc:1f:63:f2:63:45:29:d6:af:fe:a8:d5:
9b:83:aa:19:64:17:7f:a5:3b:a2:4d:c0:6a:38:2f:
3c:bc:02:1d:9e:01:a6:7c:83:7e:53:7f:9b:dc:d7:
01:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:37:62:AF:63:1B:20:D4:D9:08:FB:46:34:77:FD:29:6C:BB:E8:F4
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/hTdir2MbINTZCPtGNHf9KWy76PQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.106.0/24
193.34.233.0/24
IPv6:
2a0f:7b80::/48
Signature Algorithm: sha256WithRSAEncryption
04:8e:48:24:50:06:2d:d3:1b:53:33:9d:91:19:1a:4d:b1:5d:
c0:7f:f0:70:a7:77:ea:ce:d3:a1:e8:f7:2b:0b:4f:60:58:4c:
a3:18:b2:ef:9a:36:5b:ed:95:d9:a6:0e:7d:74:8d:95:d2:49:
c2:ba:8b:c9:79:d0:ba:cc:6c:ec:a1:4a:a4:3a:9c:cd:37:b2:
33:17:f8:22:f0:aa:05:f6:d2:19:7d:e4:56:91:a1:70:bf:81:
71:bc:fa:5c:a5:49:63:f2:df:55:84:10:aa:78:b1:ca:d9:57:
19:aa:9c:23:1d:49:04:be:50:b1:9d:8a:6d:8f:ab:1a:84:f7:
f7:f3:b7:8c:f7:24:cd:66:af:3b:c3:11:34:47:be:21:41:9a:
39:9a:9a:b8:47:dd:24:5d:66:92:f3:01:bf:53:f3:d6:6b:ab:
ee:13:2d:b2:f1:95:81:d9:76:82:77:fa:45:4b:89:d9:8f:e9:
96:7e:8c:18:6b:a8:30:e2:d2:fe:aa:2d:10:be:43:6d:63:85:
a4:a0:92:c5:ef:6c:b6:01:12:4d:32:8c:02:23:db:9b:bb:27:
72:fe:d8:9f:bc:fb:08:47:ce:6f:c9:ba:aa:bf:54:be:c9:84:
07:46:e0:53:f6:41:90:88:97:a0:f5:41:e5:a9:64:75:7c:1f:
77:7b:09:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org