Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/hEalh5qsD9-wkL50l8cHakqPqJk.roa
File: hEalh5qsD9-wkL50l8cHakqPqJk.roa (raw, json)
Hash identifier: Slj+q/oHQDWhvUE9OFSdTkYUM2pg9LZJg9pL02EWpks=
Subject key identifier: 84:46:A5:87:9A:AC:0F:DF:B0:90:BE:74:97:C7:07:6A:4A:8F:A8:99
Certificate issuer: /CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Certificate serial: 081C4E2B
Authority key identifier: 42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/hEalh5qsD9-wkL50l8cHakqPqJk.roa
Signing time: Sat 01 Jan 2022 02:57:30 +0000
ROA not before: Sat 01 Jan 2022 02:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209432
IP address blocks: 45.91.76.0/22 maxlen: 22
2a0e:cc0::/48 maxlen: 48
2a0e:cc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136072747 (0x81c4e2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Validity
Not Before: Jan 1 02:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8446a5879aac0fdfb090be7497c7076a4a8fa899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:43:94:fe:35:ed:d8:7e:68:c2:15:ed:0b:e1:
62:3a:c1:53:e7:a3:d7:4f:77:a6:ba:8c:f4:39:e9:
4d:26:06:66:45:b3:df:b8:e9:47:a9:72:f8:be:63:
8e:70:6f:48:51:54:a3:05:8c:43:77:b9:f5:e2:bf:
98:16:d2:ed:1d:db:da:9d:6b:10:d6:da:63:29:25:
f1:2d:e0:7b:3b:a7:cc:e9:82:e5:f5:c7:ff:58:c5:
91:f0:b3:44:b6:63:1c:d5:c8:fc:49:ff:81:32:5d:
f3:a4:a3:73:46:dd:d5:9f:f7:c9:94:ac:5f:d0:bb:
5a:68:2e:83:5a:cf:04:8e:83:25:9a:f2:c3:d1:bb:
7f:18:53:7e:bb:8b:a2:71:ae:ab:74:80:02:01:47:
93:fd:96:e7:1f:06:bb:83:2b:ef:44:b2:9a:60:9c:
b0:c2:4d:97:e6:94:46:8e:e0:67:f0:fa:e3:3a:ea:
a7:82:04:c7:31:7d:5a:ca:a9:ff:45:4d:56:b9:a1:
e5:e7:a9:31:a9:40:17:82:1a:d8:94:53:c7:2b:86:
96:d0:d9:34:92:72:89:73:1f:5d:8a:ac:21:57:b1:
a6:a4:08:3a:02:5d:83:26:6e:7f:c3:85:d8:7d:d9:
f2:db:02:e3:d8:0d:11:fa:12:c7:c8:06:33:3c:e8:
95:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:46:A5:87:9A:AC:0F:DF:B0:90:BE:74:97:C7:07:6A:4A:8F:A8:99
X509v3 Authority Key Identifier:
keyid:42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/hEalh5qsD9-wkL50l8cHakqPqJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.76.0/22
IPv6:
2a0e:cc0::/29
Signature Algorithm: sha256WithRSAEncryption
d4:5e:38:27:ec:45:31:4b:cf:9d:eb:da:fc:64:a1:5c:8e:52:
5e:a4:27:a0:17:8e:51:fd:f4:10:4e:8b:b7:fd:33:05:0e:67:
85:fe:1c:cc:03:ed:ac:96:c8:86:1f:47:05:3d:2b:14:ea:8a:
1d:a4:47:21:54:47:ed:00:a9:c2:e9:b5:2a:2f:96:e3:0d:3b:
f4:03:fc:60:45:7d:1f:1f:e4:f4:6a:fd:2e:08:f7:f0:1a:ab:
67:6b:46:27:ff:84:eb:70:9f:a1:f2:f5:e3:c7:17:0b:ba:8c:
c9:67:ff:b9:4f:d1:c0:64:07:53:36:c1:63:ee:6b:2e:ee:65:
fd:2e:a6:bc:fa:a8:42:f9:a4:b0:46:8a:2b:9b:35:f6:db:8b:
a4:10:76:de:55:b5:4f:36:ca:c1:20:7c:ab:bf:64:3f:3e:ad:
11:f6:1b:e0:fe:81:31:6c:ce:8a:14:c2:c0:b6:0a:77:43:a2:
ca:34:e4:1a:50:bd:17:2f:41:6e:81:bd:ac:d5:9e:59:7d:fb:
00:7e:d2:e3:7a:ae:f0:36:aa:a8:fd:21:ad:ef:58:83:ff:c0:
ed:56:40:3b:86:33:48:c1:99:a6:6f:49:70:38:3b:dd:09:c7:
19:42:49:26:41:bd:03:b3:2c:01:89:b1:3d:4d:9d:35:30:6d:
05:24:d4:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:43 2024 by rpki-client on console-fra.rpki-client.org