Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/d7c5d1-6c1c-4f2c-b123-93e2ac9593dc/1/KkljHjo62ZuHUJeewur072Zap1w.roa
File: KkljHjo62ZuHUJeewur072Zap1w.roa (raw, json)
Hash identifier: nnXr3FOkT/r9g+W4cEhqY4XQYfeCRYWfATd3wWinQMo=
Subject key identifier: 2A:49:63:1E:3A:3A:D9:9B:87:50:97:9E:C2:EA:F4:EF:66:5A:A7:5C
Certificate issuer: /CN=56af20a60aefacf39fd56a743d1a99534c4850bc
Certificate serial: 04905157
Authority key identifier: 56:AF:20:A6:0A:EF:AC:F3:9F:D5:6A:74:3D:1A:99:53:4C:48:50:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vq8gpgrvrPOf1Wp0PRqZU0xIULw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/d7c5d1-6c1c-4f2c-b123-93e2ac9593dc/1/KkljHjo62ZuHUJeewur072Zap1w.roa
Signing time: Sat 01 Jan 2022 06:56:25 +0000
ROA not before: Sat 01 Jan 2022 06:56:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208372
IP address blocks: 45.142.56.0/22 maxlen: 22
2a0e:d640::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76566871 (0x4905157)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56af20a60aefacf39fd56a743d1a99534c4850bc
Validity
Not Before: Jan 1 06:56:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a49631e3a3ad99b8750979ec2eaf4ef665aa75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:41:20:5d:40:88:af:79:f3:27:3d:65:7a:70:
d9:7d:b8:80:c1:00:6f:5e:a8:04:85:52:c9:ac:51:
1d:f8:34:1f:b6:00:7a:56:10:7a:f1:92:0c:d5:3d:
51:2b:94:60:f5:8c:2e:23:d6:83:9f:ff:c0:eb:61:
1e:0d:ad:31:9b:16:34:39:61:29:ed:16:77:96:bf:
78:7b:23:cf:1e:d6:04:e4:74:ef:93:bc:e9:6c:8f:
53:a9:68:14:ff:76:d7:5a:e2:b2:aa:f0:90:aa:68:
cf:b3:2a:97:02:37:d2:b7:6a:cc:4d:8b:31:7a:51:
fd:13:44:f8:01:58:df:d5:c8:08:86:2e:40:a1:53:
8f:aa:1d:c9:23:cc:05:22:de:4a:96:dc:08:b8:76:
b7:85:1c:b7:c2:1a:24:fa:dc:ec:bd:7b:5b:31:d4:
75:1c:04:f1:9f:5c:1c:b4:d7:2b:a3:b7:0b:22:b6:
bd:9b:ad:03:08:23:55:e6:15:ac:4b:d6:85:73:c1:
36:6e:5b:e6:ba:77:05:35:09:da:6f:b5:75:69:92:
35:b1:27:a6:c3:2c:2d:5c:ca:5b:6e:42:c2:b3:c7:
bc:40:18:1c:6a:ab:a6:17:f3:f5:eb:51:56:23:e1:
28:e7:0e:49:6c:a4:3a:30:ea:f4:4e:6e:d2:5d:06:
ae:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:49:63:1E:3A:3A:D9:9B:87:50:97:9E:C2:EA:F4:EF:66:5A:A7:5C
X509v3 Authority Key Identifier:
keyid:56:AF:20:A6:0A:EF:AC:F3:9F:D5:6A:74:3D:1A:99:53:4C:48:50:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vq8gpgrvrPOf1Wp0PRqZU0xIULw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/d7c5d1-6c1c-4f2c-b123-93e2ac9593dc/1/KkljHjo62ZuHUJeewur072Zap1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/d7c5d1-6c1c-4f2c-b123-93e2ac9593dc/1/Vq8gpgrvrPOf1Wp0PRqZU0xIULw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.56.0/22
IPv6:
2a0e:d640::/29
Signature Algorithm: sha256WithRSAEncryption
19:34:1f:6b:d9:fe:58:3b:86:2a:e0:57:ea:b1:1b:c8:c7:94:
9d:76:55:f8:b9:f0:54:0e:30:d6:22:f7:e7:26:71:f0:2e:be:
89:28:8f:15:14:1b:3e:7d:88:8a:44:0d:51:30:93:15:7a:ef:
66:88:62:cf:f6:03:99:f4:17:08:f4:9a:46:fd:7f:64:c3:56:
ca:e0:bd:73:da:5f:f6:57:b8:bd:84:9a:a9:b6:44:75:bc:08:
52:91:b0:80:27:ff:b0:eb:d1:3d:83:fe:56:0b:84:48:ad:39:
c1:39:79:0b:c0:d2:d7:2e:3e:d6:60:4c:cd:a9:fa:43:54:a1:
a1:02:26:9f:a8:23:29:04:4a:e2:92:8b:ee:60:61:f6:b9:10:
b6:5b:67:a3:bd:e5:cd:34:8e:93:cf:9a:c0:5d:7d:d1:41:da:
1f:1b:0d:aa:44:84:32:0b:23:b7:67:86:e0:d7:ac:cf:81:26:
df:59:a5:23:2e:47:d6:9e:bf:ad:70:35:20:79:b6:cf:a5:ea:
ec:7f:ab:5d:1d:64:67:95:69:90:92:a3:8a:6d:d0:8b:aa:0a:
6c:df:b6:da:8f:04:db:28:2c:1c:32:bd:fd:e4:50:7f:f3:db:
d8:ba:22:2c:4e:db:13:e0:f1:95:dd:4b:31:24:0d:bd:a6:53:
9a:35:f5:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:04 2024 by rpki-client on console-fra.rpki-client.org