Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/B8u-Q2ytQgvu5EEAexfSNOsyzaM.roa
File: B8u-Q2ytQgvu5EEAexfSNOsyzaM.roa (raw, json)
Hash identifier: w1a0j2RNvzZNJf/Mg1rYX5N2L4R/ljxeGWM/WSki5/w=
Subject key identifier: 07:CB:BE:43:6C:AD:42:0B:EE:E4:41:00:7B:17:D2:34:EB:32:CD:A3
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 01849235E59A28FF9C795087B8CCB4EDBA5B
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/B8u-Q2ytQgvu5EEAexfSNOsyzaM.roa
Signing time: Sat 19 Nov 2022 23:25:16 +0000
ROA not before: Sat 19 Nov 2022 23:25:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34924
IP address blocks: 45.86.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:92:35:e5:9a:28:ff:9c:79:50:87:b8:cc:b4:ed:ba:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Nov 19 23:25:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07cbbe436cad420beee441007b17d234eb32cda3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:32:a6:79:ea:6f:6a:6b:98:15:d5:76:9e:37:
24:7a:6a:4b:6f:60:88:29:4a:d1:76:8c:d1:d8:3d:
0b:7c:2d:c9:fc:2b:b0:91:35:e7:4f:3e:de:c8:45:
d3:3b:8c:7b:8e:92:34:7b:de:c5:b7:1c:e3:3e:ba:
7d:14:84:6f:c8:d5:00:da:63:98:9b:20:62:36:53:
63:9c:56:8d:04:59:b9:01:99:a0:f6:ec:28:eb:b4:
de:20:8f:40:c0:c5:61:74:75:eb:db:da:21:37:1a:
86:40:b7:14:b7:68:03:f4:c2:73:42:95:f4:c1:4c:
62:5b:66:be:f3:a8:3d:2b:cf:7f:25:7f:ea:fb:26:
22:e3:f0:ee:a7:80:5e:8f:4f:c7:34:91:44:e8:4a:
e2:37:cb:c4:d6:3a:3d:38:0a:ea:aa:af:0b:ea:32:
69:4c:72:fa:0f:d0:39:17:f2:2f:34:c7:8d:29:6f:
cb:01:77:fb:9a:ed:9f:18:d0:2f:36:08:0d:8e:21:
0c:70:7f:2f:45:01:d3:15:43:e7:1c:d6:16:ab:c1:
c4:55:15:4a:d5:05:69:21:49:61:2c:eb:71:4b:85:
9a:fa:0a:3d:72:b5:1c:b4:b4:6d:bf:81:a8:c8:b9:
c8:a8:07:47:f7:1e:71:8d:8f:f5:0c:ab:7a:38:1b:
82:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:CB:BE:43:6C:AD:42:0B:EE:E4:41:00:7B:17:D2:34:EB:32:CD:A3
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/B8u-Q2ytQgvu5EEAexfSNOsyzaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.127.0/24
Signature Algorithm: sha256WithRSAEncryption
60:3d:87:9e:86:b0:0f:96:9f:62:00:e8:c2:8f:f8:3a:fb:50:
77:f1:03:62:94:64:ae:ec:50:a5:19:4f:39:19:29:64:b0:cd:
b8:71:f1:9c:f4:a3:54:a0:b7:1f:90:ea:05:a7:18:4d:8e:e2:
20:e2:6a:0e:de:77:33:27:7f:68:16:aa:51:58:8f:f1:cb:a1:
a8:9e:45:ed:16:a5:44:7e:0c:ac:fe:a8:5a:de:2c:b7:94:f4:
17:a9:b0:95:61:14:9c:2c:b0:65:d6:dd:32:86:05:4c:c4:b6:
0a:05:c6:98:27:ad:3f:b5:b4:6e:af:4a:17:4f:8f:1d:51:3c:
87:93:c1:8f:a1:87:71:6a:c9:ab:ae:2e:42:34:a2:fb:38:b9:
5e:21:7f:ff:4d:b7:1d:1e:ec:1c:f4:9c:cf:63:0f:6b:7e:1d:
06:b0:1d:e0:0d:37:f9:e6:dc:28:23:49:70:82:a9:ed:4a:5d:
5e:1f:5d:af:1c:a5:a9:95:6e:bc:91:3e:8c:69:8a:11:3b:09:
35:6d:94:ca:99:11:3a:3f:8c:38:3b:b5:37:e4:26:ea:bc:3f:
06:57:4b:4e:5d:4f:37:a8:0d:41:c9:7a:ab:e6:06:12:a3:1c:
9b:12:c2:3e:7c:87:4e:2a:64:70:62:66:d2:9e:26:74:50:92:
2e:1d:5b:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-ams.rpki-client.org