Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/xO4gDiqqd4VXxtfszePkmn2DEwQ.roa
File: xO4gDiqqd4VXxtfszePkmn2DEwQ.roa (raw, json)
Hash identifier: hH7ZDKpuUCpQJaFAMGVcBDWfZP3+LezsSby1oI2yk+U=
Subject key identifier: C4:EE:20:0E:2A:AA:77:85:57:C6:D7:EC:CD:E3:E4:9A:7D:83:13:04
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 19FA1CFA
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/xO4gDiqqd4VXxtfszePkmn2DEwQ.roa
Signing time: Mon 02 May 2022 12:41:39 +0000
ROA not before: Mon 02 May 2022 12:41:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 195.7.2.0/24 maxlen: 24
45.12.161.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 435821818 (0x19fa1cfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: May 2 12:41:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4ee200e2aaa778557c6d7eccde3e49a7d831304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c3:1d:1a:40:5f:12:2c:8b:86:95:e2:c2:19:
f6:1d:82:be:c1:2c:d6:5d:56:a4:2a:fa:ea:dd:90:
88:c2:f6:90:17:1a:cb:b5:b9:4f:a8:d7:cc:33:fb:
72:89:b9:40:a4:52:1f:c5:2d:cd:46:60:26:d2:ae:
af:80:4a:11:0b:20:7d:d6:32:f3:7a:07:b7:22:db:
9c:09:54:1a:a3:bb:75:c6:ce:c0:7f:94:d9:c6:84:
a8:ee:8b:1d:b2:28:82:b2:05:09:d9:d9:19:25:7f:
ae:bf:6d:3d:fa:bf:46:ca:a2:0e:e5:fb:8a:de:50:
96:34:ed:39:0f:53:6a:7c:f3:dc:c6:7e:95:8c:5f:
c6:86:44:58:82:ca:35:e2:2e:be:03:d8:39:06:b9:
c9:e3:59:98:4e:f9:42:d4:c7:ed:d2:cd:7b:c9:14:
c2:94:dd:d6:da:4b:ae:06:89:a6:1a:02:43:20:63:
6f:54:f0:4a:68:f5:3c:db:9d:63:e4:42:ba:4a:8b:
56:89:d6:ee:57:95:17:40:02:7f:e9:73:c4:16:c6:
75:6f:ed:f9:2e:e7:41:21:88:3f:d2:d8:42:99:57:
8a:36:40:2b:c7:87:3d:34:c9:c8:e2:a9:80:45:e0:
83:81:88:79:01:19:c8:6d:aa:1e:17:7f:da:31:94:
e9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:EE:20:0E:2A:AA:77:85:57:C6:D7:EC:CD:E3:E4:9A:7D:83:13:04
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/xO4gDiqqd4VXxtfszePkmn2DEwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.161.0/24
195.7.2.0/24
Signature Algorithm: sha256WithRSAEncryption
72:66:26:60:57:f0:fc:da:06:f1:92:39:ca:6e:f8:f2:6c:1c:
a1:56:33:20:52:fd:41:9e:12:4b:72:82:d7:28:2e:9d:50:3d:
1c:99:61:41:86:ef:b9:b2:50:c7:a6:de:aa:47:13:27:65:c4:
66:ef:53:4b:58:51:66:20:06:b5:04:2a:6c:3a:f4:42:b6:ec:
a7:28:8d:ec:11:a7:0b:fc:df:12:8e:6b:0f:0f:de:18:85:92:
be:92:0a:29:53:a0:d4:04:b6:3b:7e:44:d5:ed:47:9d:0a:d0:
07:ec:3c:1c:5b:99:93:ad:8e:e6:c6:a5:d8:a0:ab:b8:60:20:
52:84:3b:b2:44:6b:c4:63:11:97:75:f9:c8:cf:0a:fd:a8:41:
b8:30:19:6a:ce:ac:c6:d0:a2:dd:9b:02:ba:7f:66:7b:c2:79:
85:f7:b5:e5:22:4d:91:ef:b2:e3:76:aa:26:28:9c:e2:70:3e:
61:8b:9d:45:16:e6:61:19:4c:db:13:91:34:9c:b0:83:fc:22:
83:39:d5:63:48:54:2c:3c:58:57:fb:0d:ce:a6:48:2f:8a:6e:
51:18:e5:ed:90:c3:eb:0b:5c:4d:60:1a:e0:43:e3:b1:df:b2:
5f:d2:7d:05:d7:a3:e2:b8:4b:af:89:e1:63:64:c2:58:ab:bd:
03:45:76:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org