Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/df6e25-923c-4838-864f-d4b37e44ab7c/1/142p9gBdo_qVg3nEv2AY76HHi8I.roa
File: 142p9gBdo_qVg3nEv2AY76HHi8I.roa (raw, json)
Hash identifier: W0a0mPH/g+wFBDmonL/AL21oD8Unn4SIwAhRT2nOmL4=
Subject key identifier: D7:8D:A9:F6:00:5D:A3:FA:95:83:79:C4:BF:60:18:EF:A1:C7:8B:C2
Certificate issuer: /CN=4c39055a6990b82408cf1abf29313780e249a4c9
Certificate serial: 026AF3C2
Authority key identifier: 4C:39:05:5A:69:90:B8:24:08:CF:1A:BF:29:31:37:80:E2:49:A4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDkFWmmQuCQIzxq_KTE3gOJJpMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/df6e25-923c-4838-864f-d4b37e44ab7c/1/142p9gBdo_qVg3nEv2AY76HHi8I.roa
Signing time: Sat 01 Jan 2022 16:10:48 +0000
ROA not before: Sat 01 Jan 2022 16:10:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29611
IP address blocks: 45.89.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40563650 (0x26af3c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c39055a6990b82408cf1abf29313780e249a4c9
Validity
Not Before: Jan 1 16:10:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d78da9f6005da3fa958379c4bf6018efa1c78bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:80:f0:d3:a8:2d:3f:aa:77:53:a3:8d:6e:2d:
4e:f9:83:e0:d0:5f:5b:c2:fd:52:f6:fc:69:1f:70:
05:2b:b5:72:19:9d:9a:ab:bf:f8:6c:7b:dd:4f:a5:
fb:9c:87:5e:1c:ba:09:e1:e9:05:b5:a1:bd:8e:4d:
89:e4:89:bc:3a:a2:1a:e8:2b:b4:82:8d:03:ec:8a:
86:66:fc:aa:33:1d:bd:16:79:e2:e8:1a:07:92:7b:
aa:2e:08:15:b9:e4:3b:2a:22:99:5e:59:fd:c4:22:
42:ad:58:a3:53:d4:24:d8:4d:2d:4b:24:d5:84:7a:
a4:91:11:4e:2e:6a:16:58:ae:09:49:7a:25:02:59:
f7:26:25:61:83:e5:53:10:0e:dd:28:99:8b:12:33:
8d:93:59:aa:3d:1f:46:e4:09:25:93:09:f3:92:4f:
c4:4e:96:b9:46:17:81:f9:d0:b6:95:8f:45:e5:e3:
6f:22:72:0b:f4:75:5b:1c:06:c1:2d:66:50:9e:d9:
1c:47:10:2c:d8:d7:b7:f8:bb:81:c1:8d:ac:e9:df:
3e:b2:d2:a7:c1:3f:58:48:23:70:3e:9c:1d:6c:64:
26:7a:af:41:7a:a7:f6:55:dc:3a:3f:1d:e9:a8:4e:
17:4b:13:63:61:29:af:0a:15:f5:cb:c2:94:1a:da:
9d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8D:A9:F6:00:5D:A3:FA:95:83:79:C4:BF:60:18:EF:A1:C7:8B:C2
X509v3 Authority Key Identifier:
keyid:4C:39:05:5A:69:90:B8:24:08:CF:1A:BF:29:31:37:80:E2:49:A4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDkFWmmQuCQIzxq_KTE3gOJJpMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/df6e25-923c-4838-864f-d4b37e44ab7c/1/142p9gBdo_qVg3nEv2AY76HHi8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/df6e25-923c-4838-864f-d4b37e44ab7c/1/TDkFWmmQuCQIzxq_KTE3gOJJpMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.56.0/22
Signature Algorithm: sha256WithRSAEncryption
50:9b:24:66:46:f0:ac:e8:15:da:32:c2:94:7b:c6:d0:44:74:
8e:f4:9a:79:80:ef:98:2e:69:0d:3d:7b:c1:1a:c8:32:31:35:
4d:20:0c:ed:0b:9e:40:99:7a:ea:48:de:e8:9c:03:ac:0b:06:
95:b1:e5:68:7b:30:38:73:6d:c3:5b:4d:1c:ae:eb:45:8f:b8:
8a:90:42:d8:bb:73:88:37:ba:fb:77:ef:e9:ef:3d:8c:33:37:
3d:e5:3a:94:c9:18:d2:c6:82:32:ba:48:bf:ea:f8:dd:0e:ca:
14:7b:95:99:98:66:59:19:22:d6:57:a0:4f:b1:bd:6e:37:81:
7e:ec:99:7c:01:56:ce:e4:41:47:c2:e9:bf:2b:52:a3:40:f1:
df:85:f9:65:ac:39:ab:d6:3b:64:f2:ae:09:27:38:0d:49:37:
e7:37:f3:6a:27:39:92:eb:31:24:72:ce:39:a0:45:77:e1:82:
d8:68:95:db:d3:83:b9:df:01:01:ec:af:49:55:7d:3c:23:07:
3b:f3:68:d8:87:38:18:22:1e:69:67:31:8b:43:7b:7f:97:fc:
1e:62:8d:65:e5:e2:6e:29:66:dc:9a:61:7f:08:b4:b2:3e:bb:
67:09:89:80:86:a1:eb:0e:44:76:3c:66:5b:f1:6c:5c:7d:4e:
68:cf:f9:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:40 2025 by rpki-client