Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/B9X4asyr6sbbAxwhr0GPtTvYv-c.roa
File: B9X4asyr6sbbAxwhr0GPtTvYv-c.roa (raw, json)
Hash identifier: ZyU8CTmcaFFFl6/HE1ytdyfCP7Mg/yl0R7M0SL+RwWM=
Subject key identifier: 07:D5:F8:6A:CC:AB:EA:C6:DB:03:1C:21:AF:41:8F:B5:3B:D8:BF:E7
Certificate issuer: /CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Certificate serial: 09433A01
Authority key identifier: 42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/B9X4asyr6sbbAxwhr0GPtTvYv-c.roa
Signing time: Wed 11 May 2022 07:54:02 +0000
ROA not before: Wed 11 May 2022 07:54:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 45.91.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155400705 (0x9433a01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Validity
Not Before: May 11 07:54:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07d5f86accabeac6db031c21af418fb53bd8bfe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0c:81:76:6d:52:16:ac:ce:b3:d6:6d:5b:b9:
cc:1b:7c:4a:80:8f:a1:24:00:da:f3:e0:73:6c:db:
06:f0:d5:16:03:ec:6f:67:7c:81:ba:07:ad:d6:2b:
ca:de:01:d8:a0:52:f6:d8:0e:b0:e4:91:2f:6a:08:
c2:9b:c7:4b:3c:60:38:1f:ae:50:c7:d8:e3:fb:08:
56:ca:96:95:ad:9f:dd:1d:81:81:36:72:1b:a7:21:
37:f9:be:cd:d7:67:10:d6:38:6b:83:6a:3a:e7:31:
61:6f:6e:c6:82:9b:21:5f:e6:7f:56:a2:5a:c7:cc:
22:06:34:40:47:24:e5:bf:30:3c:c8:a7:c7:1f:e2:
76:35:c0:e7:c5:fa:c3:c6:a0:65:fa:b0:af:d8:8d:
8d:79:6d:7d:ab:d4:90:07:4f:cb:3a:de:ef:66:61:
03:6e:e8:c9:f2:6e:04:46:69:b8:86:db:6e:18:64:
1e:5c:c6:49:67:24:39:46:7b:2d:c8:d7:a7:b8:51:
b7:73:f0:8b:3f:94:b4:38:83:4c:f3:d0:2e:b9:8c:
27:3a:cd:42:4b:46:44:39:1e:2f:fe:73:e5:61:1a:
c0:37:62:e6:c5:65:1c:91:ad:f6:f2:38:e3:71:90:
46:45:1d:4a:d6:36:b6:82:37:b7:de:ad:19:fa:ed:
f7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D5:F8:6A:CC:AB:EA:C6:DB:03:1C:21:AF:41:8F:B5:3B:D8:BF:E7
X509v3 Authority Key Identifier:
keyid:42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/B9X4asyr6sbbAxwhr0GPtTvYv-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.78.0/24
Signature Algorithm: sha256WithRSAEncryption
96:41:9b:82:6c:a4:53:a6:47:3c:be:96:88:b2:fc:b0:ed:33:
8e:3f:e7:ae:79:d7:03:82:ba:4f:32:98:96:92:70:62:56:52:
2f:0c:96:41:14:f1:f1:fd:5a:4b:c9:f2:35:0c:80:83:86:58:
9d:9b:78:4a:56:65:38:3e:ea:34:ae:b6:1b:dc:a5:ac:65:6e:
d8:34:aa:55:b7:a6:04:7f:fd:b7:6d:c5:45:9a:d9:94:4b:32:
29:41:20:75:00:ef:6e:ef:46:2d:5a:44:d4:5b:9b:3c:27:bd:
79:46:c1:19:bf:0c:31:c0:20:88:01:7d:b6:85:6c:88:c7:29:
08:6d:d0:4b:4c:8f:44:94:4a:26:87:84:ee:e4:60:41:1b:c1:
7b:4f:7b:0e:0c:5d:1f:40:7a:57:67:2d:49:16:19:01:63:99:
ce:73:14:03:d2:97:fa:e1:a7:34:5b:24:ba:1c:50:1f:f9:c4:
5b:2b:89:fb:c6:91:54:b2:00:04:ac:6e:6b:c6:51:f2:0c:b0:
58:fc:86:63:e7:cc:45:91:8a:61:50:c5:8e:41:bb:bd:64:b5:
62:20:8a:28:49:eb:0d:a0:69:68:86:79:73:80:01:e8:ad:be:
ad:22:fb:c0:9e:95:f5:35:e2:e9:b0:5f:2b:fe:2b:3f:e6:1e:
2d:ca:db:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:43 2023 by rpki-client on console-fra.rpki-client.org