Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/9IoHNSrFvSB053Iz0gdOz9F5Rdo.roa
File: 9IoHNSrFvSB053Iz0gdOz9F5Rdo.roa (raw, json)
Hash identifier: aKYL6XPNXqu0Jpesb40nxE3mHyf4fl/JUtUM7fMoNOM=
Subject key identifier: F4:8A:07:35:2A:C5:BD:20:74:E7:72:33:D2:07:4E:CF:D1:79:45:DA
Certificate issuer: /CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Certificate serial: 04BF8C66
Authority key identifier: B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/9IoHNSrFvSB053Iz0gdOz9F5Rdo.roa
Signing time: Mon 11 Apr 2022 12:48:28 +0000
ROA not before: Mon 11 Apr 2022 12:48:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43641
IP address blocks: 45.11.56.0/24 maxlen: 24
45.134.174.0/24 maxlen: 24
45.134.175.0/24 maxlen: 24
2a09:2dc1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79662182 (0x4bf8c66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Validity
Not Before: Apr 11 12:48:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f48a07352ac5bd2074e77233d2074ecfd17945da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3e:0a:ac:ec:5a:2d:53:43:96:37:e9:45:47:
b5:31:39:d7:11:93:f6:38:a1:4b:91:87:2b:03:3d:
08:6d:31:cf:c5:cb:51:cd:0a:16:7b:19:72:29:dc:
b3:92:8d:18:7a:9f:22:a8:3f:83:eb:e9:6e:59:f8:
fd:c9:d4:3b:0f:c0:12:12:8c:71:88:73:ce:07:6d:
e3:8e:7f:dc:c1:ba:b2:c3:78:3f:3c:2b:c0:a4:f4:
1a:e7:d0:a4:cc:a9:e2:2b:a7:bc:7d:d9:6a:1c:4d:
dc:0f:d9:f6:c6:6f:65:89:38:c2:2d:1a:23:c9:39:
b3:63:d0:e4:e2:77:f3:2a:e9:da:c2:09:73:e3:fd:
27:85:a7:bc:12:8d:b5:6a:45:a4:b7:2a:86:c7:3f:
8f:ce:f5:e9:c7:bf:0c:56:89:90:eb:99:2d:28:27:
1b:c3:ef:fd:60:81:aa:9c:37:c9:87:c3:cd:fa:c1:
60:3d:86:ed:ed:13:26:3a:8a:48:7f:e9:af:8a:bd:
90:e9:57:e8:34:8b:d9:be:cd:e4:f2:73:48:27:37:
fe:61:89:12:a0:e2:e7:c0:47:0a:73:ab:7d:e1:b7:
7c:9c:48:c7:2a:49:a1:ea:90:9d:d6:89:2b:d0:ca:
05:d4:e3:e5:e8:bb:98:8a:94:cd:be:09:61:77:06:
b4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:8A:07:35:2A:C5:BD:20:74:E7:72:33:D2:07:4E:CF:D1:79:45:DA
X509v3 Authority Key Identifier:
keyid:B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/9IoHNSrFvSB053Iz0gdOz9F5Rdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/syycJt98zYrTjYm9XUk4C5Ox4Ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.56.0/24
45.134.174.0/23
IPv6:
2a09:2dc1::/32
Signature Algorithm: sha256WithRSAEncryption
30:05:f6:78:08:07:0c:ee:c9:53:32:3f:a9:b3:56:ee:58:a6:
9c:7d:75:8e:26:7b:34:75:86:2b:02:d1:e7:7d:21:8e:d5:7f:
d7:be:1a:2b:bb:d4:28:68:4b:f9:76:3b:26:27:e4:93:24:ac:
63:b9:aa:73:ac:bf:25:fc:0b:cb:4b:ba:93:07:3e:08:c6:7f:
09:f3:62:f5:cf:7c:95:4d:d3:76:83:b0:b7:c1:dd:a7:dd:35:
02:11:c5:23:c5:fd:e5:da:17:dc:20:8c:f7:cf:b2:24:c1:ed:
02:4d:a9:dd:32:ec:be:b2:f6:16:52:e1:1d:c8:25:11:e4:3a:
da:0b:42:e0:55:ce:e2:42:da:41:41:55:39:61:92:82:5b:f8:
97:89:19:f1:8c:30:63:d3:8b:39:39:f5:3b:19:3c:0a:5a:f0:
6a:66:79:f6:a1:50:ad:c2:ba:40:02:e2:34:c3:da:cf:95:38:
de:4a:23:91:f3:30:e3:04:f9:09:86:7f:db:76:17:1e:c3:dd:
5f:e8:90:5d:c9:cc:85:3a:cd:2d:dc:3a:c7:9f:9b:88:54:b7:
0e:53:3b:32:ca:4f:cf:75:88:61:e6:13:a2:f9:16:0f:42:ce:
3e:44:bc:fc:a0:ce:c7:ff:44:7c:9e:a0:92:a7:66:cf:ad:e4:
ea:7d:46:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:21 2024 by rpki-client on console-fra.rpki-client.org