Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/6b8415-c876-46c6-a9f6-e6bbef5d5e3e/1/fAlSOkJ96hyU3d_b_N9PUA5J5WA.roa
File: fAlSOkJ96hyU3d_b_N9PUA5J5WA.roa (raw, json)
Hash identifier: tJsrcUgnZXqvV3sDzsOqoho/GJZUHWVyo2cr3wgwg3E=
Subject key identifier: 7C:09:52:3A:42:7D:EA:1C:94:DD:DF:DB:FC:DF:4F:50:0E:49:E5:60
Certificate issuer: /CN=a79da2a5bd8778db6221d7bf6612db0e0fef1764
Certificate serial: 06CBF428
Authority key identifier: A7:9D:A2:A5:BD:87:78:DB:62:21:D7:BF:66:12:DB:0E:0F:EF:17:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p52ipb2HeNtiIde_ZhLbDg_vF2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/6b8415-c876-46c6-a9f6-e6bbef5d5e3e/1/fAlSOkJ96hyU3d_b_N9PUA5J5WA.roa
Signing time: Sat 01 Jan 2022 00:57:02 +0000
ROA not before: Sat 01 Jan 2022 00:57:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208961
IP address blocks: 45.12.85.0/24 maxlen: 24
45.12.84.0/24 maxlen: 24
45.12.86.0/24 maxlen: 24
45.12.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114029608 (0x6cbf428)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a79da2a5bd8778db6221d7bf6612db0e0fef1764
Validity
Not Before: Jan 1 00:57:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c09523a427dea1c94dddfdbfcdf4f500e49e560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7e:99:ae:5b:0a:d2:dd:57:60:ff:1c:cf:86:
63:ce:40:76:50:ec:06:6f:50:76:6c:4e:5c:b3:f1:
d6:c7:0e:22:16:f8:65:3c:9a:bc:5e:a5:5c:ea:2c:
eb:77:f2:ab:de:ca:c7:fa:47:52:0e:30:f0:e3:8b:
7d:d0:14:15:cd:57:c2:aa:a4:8f:0d:c5:6f:87:82:
d9:e3:d7:8c:7e:70:55:58:2d:6b:97:d5:ad:57:f7:
d8:1f:11:95:d7:08:0f:a2:be:b8:84:a4:af:04:df:
89:ee:98:92:b6:89:32:29:11:fd:da:6e:86:1b:8b:
5c:6d:2c:1b:ef:ff:a1:e2:a8:3d:a0:b8:6b:e8:bc:
7a:21:ec:d5:16:00:78:1f:29:bb:0c:3e:05:5f:62:
30:ce:41:a3:fc:a6:a1:ee:e8:6f:6f:cf:e9:fe:e0:
f9:fe:c5:71:39:05:46:f9:34:50:47:84:68:46:e2:
20:7a:03:14:87:58:a8:6d:a6:bf:a5:b8:36:c7:7e:
8e:65:36:46:e1:08:21:13:86:9b:3b:ce:75:a8:96:
ee:c1:00:6f:d0:d6:ba:5e:8b:55:bc:5a:ae:cc:7e:
4e:84:4f:8c:29:55:4c:2c:49:ab:2e:d8:b2:7e:ee:
ff:f4:3f:a6:24:26:a7:a1:f7:17:80:f9:ae:49:ca:
5e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:09:52:3A:42:7D:EA:1C:94:DD:DF:DB:FC:DF:4F:50:0E:49:E5:60
X509v3 Authority Key Identifier:
keyid:A7:9D:A2:A5:BD:87:78:DB:62:21:D7:BF:66:12:DB:0E:0F:EF:17:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p52ipb2HeNtiIde_ZhLbDg_vF2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6b8415-c876-46c6-a9f6-e6bbef5d5e3e/1/fAlSOkJ96hyU3d_b_N9PUA5J5WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6b8415-c876-46c6-a9f6-e6bbef5d5e3e/1/p52ipb2HeNtiIde_ZhLbDg_vF2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.84.0/22
Signature Algorithm: sha256WithRSAEncryption
d7:60:12:bf:94:78:1f:55:01:00:2d:2a:1d:02:10:d8:8f:b6:
a3:53:63:f7:ac:64:1e:ef:4d:2a:ea:ea:38:17:3b:0f:6f:da:
de:0d:44:4f:22:a5:89:f0:9e:2f:0b:f0:70:e2:60:4d:88:67:
f1:aa:0f:bf:82:0e:0b:8b:02:b2:bc:71:db:91:d6:fc:4a:8e:
1e:bc:92:74:13:e1:de:a4:f0:7b:51:79:0f:28:ad:09:db:72:
81:30:45:6d:6e:6c:5f:0b:d1:51:d5:9a:b1:e4:ce:8e:4b:32:
5e:d2:f6:b7:db:a7:08:dd:50:50:09:9a:a7:28:b0:f0:20:d7:
ba:ca:a6:03:ce:34:76:9f:e3:01:91:96:78:33:f9:03:be:61:
78:6e:e9:ae:dc:a2:7d:86:4c:b3:51:06:d4:12:a8:a6:7b:62:
a4:6c:6a:45:fc:b9:46:c5:84:38:ae:87:9d:10:26:3d:3d:f2:
f3:54:71:5f:4f:1e:ff:6b:c7:fb:3f:00:8a:ba:7c:1e:ae:c3:
0d:1e:3c:96:cf:14:d4:b9:82:f1:1d:43:a2:f1:06:dd:3b:f4:
69:26:fb:d5:79:49:89:91:47:8e:56:9f:19:7c:15:6a:6f:9d:
8f:4a:5d:90:6a:a7:25:4b:17:bc:5b:7e:1a:16:a5:26:0f:b9:
71:32:04:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:10 2024 by rpki-client on console-ams.rpki-client.org