Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/7c9bb7-268a-4362-bd08-901a373df080/1/mJrDjphoHOZIRB3IylSK70D7Jeg.roa
File: mJrDjphoHOZIRB3IylSK70D7Jeg.roa (raw, json)
Hash identifier: RQex8LeIXZjEtt01qYZEicwZLOyieZwS4w5kRmWJAag=
Subject key identifier: 98:9A:C3:8E:98:68:1C:E6:48:44:1D:C8:CA:54:8A:EF:40:FB:25:E8
Certificate issuer: /CN=e284e3d2f1a21c82bbb3d66f76f0bd9333513c9a
Certificate serial: 020D40EC
Authority key identifier: E2:84:E3:D2:F1:A2:1C:82:BB:B3:D6:6F:76:F0:BD:93:33:51:3C:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oTj0vGiHIK7s9ZvdvC9kzNRPJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/7c9bb7-268a-4362-bd08-901a373df080/1/mJrDjphoHOZIRB3IylSK70D7Jeg.roa
Signing time: Sat 01 Jan 2022 00:55:45 +0000
ROA not before: Sat 01 Jan 2022 00:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212009
IP address blocks: 45.9.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34423020 (0x20d40ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e284e3d2f1a21c82bbb3d66f76f0bd9333513c9a
Validity
Not Before: Jan 1 00:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=989ac38e98681ce648441dc8ca548aef40fb25e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:40:97:c3:01:03:ee:2d:87:d5:cc:16:14:6f:
b7:8a:e7:54:ab:ef:8a:ec:c6:40:74:d2:3f:57:48:
f8:07:91:5d:fa:7c:4b:41:34:5d:57:0e:4a:36:8f:
27:a1:bf:38:92:5f:86:66:04:55:ac:18:7a:4d:89:
c2:7e:f0:bb:04:4f:15:cc:eb:2c:8d:f8:3b:0b:d6:
de:82:1c:09:b6:d4:f9:5f:15:60:b1:c8:e5:7e:6c:
7b:ca:89:52:39:49:ed:29:d2:e0:77:e5:f9:c9:e1:
ec:13:bb:65:11:49:e0:52:51:c5:b4:5e:75:0f:00:
79:40:ff:a1:1c:4f:0f:e2:dd:c9:ad:7d:be:f9:4d:
0c:a4:77:f7:e4:7d:79:9d:4b:a3:c5:9e:3b:52:e6:
25:a3:fe:05:80:e8:a5:ae:ed:b9:46:98:f5:6a:b8:
ba:59:df:c0:95:ba:54:34:62:9b:e0:c5:39:fc:43:
0b:2f:31:78:05:cb:0b:1b:1c:28:42:06:b9:c8:bd:
74:c8:3f:f5:6e:04:8e:5f:24:fc:bd:b9:1a:6f:18:
ad:b2:c8:21:ee:80:c9:a5:35:a4:a8:45:fc:1e:3b:
7c:8b:65:0f:71:fe:45:f0:58:6c:3e:9b:e4:2b:0a:
ac:e1:7e:eb:d3:f5:b7:22:c4:f5:c8:57:7c:28:14:
69:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:9A:C3:8E:98:68:1C:E6:48:44:1D:C8:CA:54:8A:EF:40:FB:25:E8
X509v3 Authority Key Identifier:
keyid:E2:84:E3:D2:F1:A2:1C:82:BB:B3:D6:6F:76:F0:BD:93:33:51:3C:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oTj0vGiHIK7s9ZvdvC9kzNRPJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/7c9bb7-268a-4362-bd08-901a373df080/1/mJrDjphoHOZIRB3IylSK70D7Jeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/7c9bb7-268a-4362-bd08-901a373df080/1/4oTj0vGiHIK7s9ZvdvC9kzNRPJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.77.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:a8:a8:8e:f8:46:7b:66:02:b4:16:67:7a:7e:72:36:12:aa:
e4:66:9d:92:f2:52:dd:9e:b9:d1:e3:7d:69:75:d7:39:cd:97:
79:ab:21:86:b5:30:7e:6a:52:b1:d8:81:81:9e:3f:12:a3:99:
d6:5a:46:85:3b:de:3d:e0:d4:09:f6:38:03:2d:02:34:40:1e:
2b:8b:c5:52:e9:0c:f4:69:05:12:fd:b4:7f:bc:86:70:06:be:
5b:86:20:ad:87:a6:ad:e6:e1:6f:b0:ca:7f:3b:cc:f3:19:7c:
b0:20:8a:11:fe:1f:65:9e:a1:86:91:61:8c:7b:2d:e9:d8:7e:
e2:6e:d9:63:19:5c:b9:2b:19:7d:9e:c7:02:82:24:d9:db:0c:
4d:3a:67:ee:f8:ed:98:4a:41:e5:fb:79:05:b9:f6:6d:99:47:
33:0f:4d:d5:cc:a8:32:56:83:44:aa:9c:0d:2a:bc:cb:a4:81:
8f:77:30:36:cd:02:16:0a:43:b8:e3:80:09:86:a7:0c:fa:b5:
01:f5:3a:fb:0d:60:2b:f0:cd:70:f3:0e:d4:a2:4b:5e:fe:c3:
08:b8:f5:44:33:30:f1:e4:d5:c8:91:a5:de:76:38:f7:c5:0e:
4b:b8:1d:51:79:0c:be:29:5e:4a:c0:91:b4:e5:32:d1:c4:30:
15:08:be:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:39 2024 by rpki-client on console-fra.rpki-client.org