Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/1b0289-31ff-431f-9489-9a8d2bf00320/1/2uJnuKqzNbVHjESCgaFJyaAzI2A.roa
File: 2uJnuKqzNbVHjESCgaFJyaAzI2A.roa (raw, json)
Hash identifier: sfdtrsTeUEXnX/qpkQ8EDxZdFyRYfxJb0tz2etz9a9o=
Subject key identifier: DA:E2:67:B8:AA:B3:35:B5:47:8C:44:82:81:A1:49:C9:A0:33:23:60
Certificate issuer: /CN=6aca71f2d9fe2b49c6762f3d9a0e8bf332dfded1
Certificate serial: 0154825C
Authority key identifier: 6A:CA:71:F2:D9:FE:2B:49:C6:76:2F:3D:9A:0E:8B:F3:32:DF:DE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aspx8tn-K0nGdi89mg6L8zLf3tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/1b0289-31ff-431f-9489-9a8d2bf00320/1/2uJnuKqzNbVHjESCgaFJyaAzI2A.roa
Signing time: Sat 01 Jan 2022 06:00:21 +0000
ROA not before: Sat 01 Jan 2022 06:00:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31276
IP address blocks: 45.91.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22315612 (0x154825c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aca71f2d9fe2b49c6762f3d9a0e8bf332dfded1
Validity
Not Before: Jan 1 06:00:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dae267b8aab335b5478c448281a149c9a0332360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d6:ee:d2:83:41:96:9c:21:00:0f:fc:27:f5:
22:79:21:fc:20:58:3f:f7:ea:09:6b:ce:0e:3c:d9:
4f:53:2c:e1:cf:7c:18:49:38:3b:bb:05:55:55:c9:
04:f2:29:9d:54:20:31:49:d5:ed:0f:6a:88:55:76:
37:a7:fc:48:f7:c2:4d:a4:19:d3:88:27:5a:55:83:
26:36:3f:5a:64:8c:e4:7e:3a:61:95:72:dd:bd:ff:
15:48:73:d8:7d:59:f4:93:e2:db:20:15:08:3d:62:
41:2f:33:e2:c2:bc:8e:ee:b5:c6:45:0f:84:ef:21:
c3:4c:bd:44:6f:25:95:28:7c:6f:97:b5:ef:b9:d4:
9d:a6:fb:e7:dd:ed:a6:bd:d6:61:7c:40:6b:c7:40:
8f:9e:7c:8c:66:39:32:69:be:26:f5:45:a1:0d:76:
d1:78:97:a4:de:c3:94:95:1f:fc:b8:cc:ef:dd:48:
c1:f5:57:26:3a:05:eb:d5:34:1c:24:46:5a:7f:fd:
9a:a9:58:07:3b:9c:b6:42:91:b9:78:e7:b7:ba:09:
3a:7b:9e:84:48:5e:11:b0:fd:2f:20:d9:f8:ac:a2:
ef:be:49:0d:a5:f2:b1:4c:13:17:ee:f3:ca:00:b1:
df:db:03:32:7a:61:60:c2:eb:29:87:f1:bc:7b:a7:
ec:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E2:67:B8:AA:B3:35:B5:47:8C:44:82:81:A1:49:C9:A0:33:23:60
X509v3 Authority Key Identifier:
keyid:6A:CA:71:F2:D9:FE:2B:49:C6:76:2F:3D:9A:0E:8B:F3:32:DF:DE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aspx8tn-K0nGdi89mg6L8zLf3tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/1b0289-31ff-431f-9489-9a8d2bf00320/1/2uJnuKqzNbVHjESCgaFJyaAzI2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/1b0289-31ff-431f-9489-9a8d2bf00320/1/aspx8tn-K0nGdi89mg6L8zLf3tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.212.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:e3:7f:9b:a0:b3:8c:df:ad:35:23:91:30:9a:74:40:28:ec:
4e:5c:c0:6e:61:f3:b4:f1:e2:df:a7:a3:10:a1:d3:00:3a:a3:
79:f2:ad:e8:ce:11:3c:31:be:35:94:bd:58:de:52:32:2c:0f:
63:a6:e4:08:d6:f2:6e:02:a8:fc:41:f6:03:4a:52:0c:78:cd:
b6:ca:72:cc:de:0b:24:53:8f:de:7f:49:8d:51:90:d1:09:60:
48:16:a9:d4:1b:66:68:2b:be:9c:41:f0:ce:28:38:d9:ca:9c:
c1:80:0a:e2:7a:c8:59:e1:53:e8:0a:70:b7:43:f5:5a:ae:ae:
a3:4f:9b:ca:ac:96:91:66:b8:a9:f7:21:a8:ca:aa:14:99:03:
07:7a:43:89:7a:6e:b9:0c:dc:64:f6:27:f3:06:56:10:cb:70:
d9:0d:c2:86:cc:a8:b6:ea:fe:af:ba:62:8c:40:f1:df:5a:fb:
a9:8a:a5:e7:7d:04:31:e6:03:57:9a:58:85:6f:a9:d7:05:df:
28:a4:78:84:db:e0:76:dc:77:f2:60:ad:13:1e:1c:42:d7:c6:
6a:61:b0:0e:74:70:7e:1c:5e:38:4f:cd:37:99:97:f8:2a:4d:
53:7d:6a:75:74:4c:20:33:66:ce:cc:07:6b:2e:95:8a:46:8b:
1b:e1:03:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:06 2024 by rpki-client on console-fra.rpki-client.org