Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VSu5OejnN7s4GtobVTn4RCkx6KY.roa
File: VSu5OejnN7s4GtobVTn4RCkx6KY.roa (raw, json)
Hash identifier: uWmwk5W5sD0Wt+hBNyvj9sY9RyhvHi9Ikkv+zedZVuo=
Subject key identifier: 55:2B:B9:39:E8:E7:37:BB:38:1A:DA:1B:55:39:F8:44:29:31:E8:A6
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185305DB82A5685953632EB9B6B6839BC8A
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VSu5OejnN7s4GtobVTn4RCkx6KY.roa
Signing time: Tue 20 Dec 2022 16:28:46 +0000
ROA not before: Tue 20 Dec 2022 16:28:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48020
IP address blocks: 45.67.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:5d:b8:2a:56:85:95:36:32:eb:9b:6b:68:39:bc:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 20 16:28:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=552bb939e8e737bb381ada1b5539f8442931e8a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c1:6c:c4:5a:d2:4f:33:fa:8b:93:20:8f:f6:
89:55:78:df:12:9f:95:83:a2:6e:4b:6c:e0:f2:35:
35:f7:3b:de:a9:a3:01:64:c0:0f:d8:83:11:ae:03:
47:1c:bd:7e:c2:67:2f:45:1a:29:d0:1a:66:ec:7c:
22:ba:0a:6c:29:4d:cb:8d:8b:b2:26:b3:45:7d:02:
4f:64:a6:99:17:68:be:9a:a0:12:0a:b3:4c:e1:90:
de:01:f0:4b:46:69:15:b0:0a:7c:04:3f:ae:83:e5:
4a:cb:50:4f:b0:22:a0:48:e9:33:9e:82:c6:6f:4f:
1b:86:65:a0:3f:5c:42:36:35:01:c4:71:59:24:23:
80:e8:51:e6:e3:d9:47:bd:62:c8:e0:23:44:a0:d0:
1a:d7:eb:ff:00:ce:41:80:13:56:84:c6:07:45:01:
9c:28:fc:ff:d2:39:d1:61:97:45:b5:4f:e5:15:47:
fd:ae:15:63:1b:0d:6a:38:fd:4c:30:1a:c0:03:12:
75:ad:8d:4c:c7:ff:c2:05:e4:5c:d1:89:a3:0a:bf:
a3:fe:72:dc:fb:00:ac:f1:cb:34:59:d3:db:7c:d7:
56:80:6f:ed:d3:ef:cb:d7:5a:30:e1:28:d6:ae:f6:
b5:be:16:b1:3c:6c:23:46:ec:e2:ed:42:a9:23:cd:
04:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:2B:B9:39:E8:E7:37:BB:38:1A:DA:1B:55:39:F8:44:29:31:E8:A6
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/VSu5OejnN7s4GtobVTn4RCkx6KY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.184.0/22
Signature Algorithm: sha256WithRSAEncryption
51:b5:9e:34:16:1a:99:69:ca:6a:ab:b8:82:3d:1b:5f:ad:cd:
4e:2b:5a:55:75:74:94:59:86:09:6a:46:d1:5d:c5:a5:28:94:
11:6e:aa:e0:d7:cb:7a:4a:ce:56:12:6d:67:00:3b:44:65:ed:
cb:6a:ff:33:70:4c:94:84:0f:e3:ac:5f:a3:8a:6f:04:09:f4:
1d:69:31:71:9e:77:49:3e:db:fc:e2:57:77:50:3f:af:e6:58:
63:b2:14:4a:06:c7:e5:ba:9b:2d:2e:95:e6:e5:7d:79:74:a7:
dc:e4:98:0b:7e:c6:d8:2c:38:a9:96:b5:0c:5c:46:f0:2f:b1:
3b:75:4a:eb:a0:6c:83:2c:85:fd:53:83:15:d8:6d:ea:85:13:
47:8b:11:75:f3:96:50:43:f4:40:40:5b:5a:ce:ee:3d:f0:f0:
29:15:23:df:4f:0a:b5:dc:a3:11:ea:34:88:5c:a5:b9:da:dc:
8d:33:03:0a:96:8a:28:d1:1e:86:26:ba:51:a4:84:1e:34:4a:
c1:50:9c:21:f2:1d:70:e5:fc:90:3c:d2:6a:06:94:44:e3:98:
46:05:54:c1:10:fd:f4:38:8f:0f:bd:5c:8e:ba:df:f1:39:d2:
e0:d1:d9:98:9f:59:df:56:a1:c8:bd:fc:a9:77:97:58:bd:d2:
80:02:27:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org