Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/TXiBt0suDErfjXvdRU_fLsj9510.roa
File: TXiBt0suDErfjXvdRU_fLsj9510.roa (raw, json)
Hash identifier: 5UwXfXlicgV0RJV54WMswOnEA2yD/YuMAATdo3nkCMw=
Subject key identifier: 4D:78:81:B7:4B:2E:0C:4A:DF:8D:7B:DD:45:4F:DF:2E:C8:FD:E7:5D
Certificate issuer: /CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
Certificate serial: 06A43B46
Authority key identifier: 8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/TXiBt0suDErfjXvdRU_fLsj9510.roa
Signing time: Sat 01 Jan 2022 03:51:53 +0000
ROA not before: Sat 01 Jan 2022 03:51:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208033
IP address blocks: 45.158.204.0/22 maxlen: 22
2a0c:dc80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111426374 (0x6a43b46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
Validity
Not Before: Jan 1 03:51:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d7881b74b2e0c4adf8d7bdd454fdf2ec8fde75d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:90:24:b5:20:ab:31:e2:9c:2c:cb:d1:6e:7d:
44:d1:91:3d:26:94:a9:7f:49:67:86:b4:64:d2:9a:
ab:f5:46:24:18:9a:9a:bf:8c:59:1b:2b:2e:16:84:
8f:bd:61:70:1d:2c:63:25:37:7b:6c:e3:40:00:ce:
a0:1c:63:5d:60:e5:8b:9e:c9:65:a9:bc:78:77:62:
96:76:23:05:86:f0:bb:4c:da:04:5d:e8:bf:d4:44:
93:73:02:a4:7d:01:aa:1b:aa:40:c0:6a:02:07:fc:
25:93:ad:c2:68:b9:cc:53:8d:e4:2b:6a:56:fc:a8:
f0:2b:2c:f2:59:48:96:72:33:1a:71:f0:a2:71:37:
a3:d2:4b:66:19:0c:17:3f:44:53:81:3a:22:f0:3c:
fc:81:d6:ae:91:31:64:a6:22:05:6b:3f:18:ef:14:
7b:fa:02:61:fc:78:c8:ef:17:8b:81:32:95:af:c4:
0f:6a:2f:a1:15:2b:a9:f3:5e:2d:75:4d:27:38:6f:
fc:8e:a8:8e:a3:d1:09:17:f4:1d:06:0f:52:93:7d:
68:8e:67:6a:32:4f:01:ac:bc:20:e4:2e:fe:cf:26:
c6:c1:ff:52:34:aa:9e:4b:c4:d7:4d:14:9a:a7:37:
f8:71:0e:20:83:16:b4:e1:f9:9c:4d:9f:0f:13:7f:
57:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:78:81:B7:4B:2E:0C:4A:DF:8D:7B:DD:45:4F:DF:2E:C8:FD:E7:5D
X509v3 Authority Key Identifier:
keyid:8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/TXiBt0suDErfjXvdRU_fLsj9510.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.204.0/22
IPv6:
2a0c:dc80::/32
Signature Algorithm: sha256WithRSAEncryption
77:b0:3b:13:01:c4:d0:65:0e:d2:17:c7:df:0d:c1:bb:61:71:
f5:81:3d:46:85:ed:da:e5:73:8b:bd:03:71:73:8e:55:21:9f:
c9:92:e1:9c:49:98:a2:a0:62:91:ea:76:73:df:fa:29:9e:95:
ec:a0:77:06:97:80:ec:d7:6a:c8:91:32:25:61:04:32:bc:bd:
06:43:8e:d5:77:10:93:a1:57:37:cf:9d:77:23:dc:90:e5:1d:
58:5b:83:21:21:3a:7d:a8:35:01:90:d1:a2:98:bd:dc:2b:61:
d3:fd:79:65:c2:80:bd:d6:a1:9b:38:dd:30:47:e3:b0:ed:25:
24:00:32:02:ee:32:43:24:9c:22:30:c3:cd:ab:a7:91:06:41:
eb:ec:d6:e3:80:18:7b:a0:ad:ea:e1:11:cc:8c:ab:72:af:8a:
cd:cc:43:ab:7d:2a:7e:c9:80:0b:10:a2:d6:85:86:6b:a1:79:
97:59:4f:d2:6c:1b:35:5a:0b:cd:22:d2:55:f9:9f:39:ef:2d:
a0:a5:6d:29:ff:96:5d:27:1a:d4:f3:94:9f:be:7c:f7:65:4d:
d7:b0:69:7b:ab:fd:c6:c8:4b:17:7f:a8:0c:f1:b4:18:ae:96:
6b:f5:ae:3d:bd:e2:46:85:b6:68:88:32:fc:c2:b2:c4:9f:7f:
f2:c3:b6:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:18 2024 by rpki-client on console-fra.rpki-client.org