Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/GRlvYtH4BvEot9ZfpNEliFElrsQ.roa
File: GRlvYtH4BvEot9ZfpNEliFElrsQ.roa (raw, json)
Hash identifier: orj+MVqjSUYQ+vNRrKshpdxhWQt3fd2jQQI22PGr3TY=
Subject key identifier: 19:19:6F:62:D1:F8:06:F1:28:B7:D6:5F:A4:D1:25:88:51:25:AE:C4
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 0B12A890
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/GRlvYtH4BvEot9ZfpNEliFElrsQ.roa
Signing time: Sat 09 Apr 2022 05:07:07 +0000
ROA not before: Sat 09 Apr 2022 05:07:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207409
IP address blocks: 45.9.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185772176 (0xb12a890)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Apr 9 05:07:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19196f62d1f806f128b7d65fa4d125885125aec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e7:33:a6:49:4f:96:3c:9b:d3:9f:5f:45:25:
7c:df:db:24:de:78:62:35:74:2d:d1:1c:fa:b9:ee:
43:2a:0f:5e:12:d4:a0:28:a4:7a:4c:2b:7b:91:0d:
f5:c9:23:f2:9d:c0:7f:2f:2e:8b:47:e1:ba:39:8f:
d5:67:e1:c4:14:49:e1:07:e4:22:94:77:b6:aa:50:
94:9c:29:31:ee:c5:56:e7:71:1b:63:21:21:e5:f2:
8f:5e:a5:11:cf:56:9c:40:82:38:8f:f9:23:ae:af:
73:ce:10:5a:b2:37:d2:78:f3:d7:22:ff:b2:98:78:
0f:e1:24:7d:2a:d7:28:22:3d:be:17:73:52:3d:80:
9f:90:df:c4:6e:bb:fa:46:5c:1c:a1:cb:54:3b:67:
cc:ca:f8:ce:8d:0e:cc:47:a1:44:8a:fb:c4:c1:a6:
fe:a8:2d:27:dd:91:86:f2:c3:6a:74:33:78:bb:ad:
12:35:c7:9c:60:ed:5c:5f:1f:e6:c0:2f:98:69:7a:
f8:35:b1:9f:5f:85:ea:bb:74:ad:c0:e1:2e:3c:de:
17:1f:db:24:f9:26:de:ad:0c:66:66:73:5a:ca:56:
b0:98:cb:4a:4a:b0:2b:01:7f:23:22:4e:0b:6e:7a:
d6:90:26:1e:99:c0:80:ba:d2:05:7a:a7:64:b0:30:
f3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:19:6F:62:D1:F8:06:F1:28:B7:D6:5F:A4:D1:25:88:51:25:AE:C4
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/GRlvYtH4BvEot9ZfpNEliFElrsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.255.0/24
Signature Algorithm: sha256WithRSAEncryption
21:5c:c0:8e:26:06:5d:bf:50:79:e6:6d:00:06:7e:13:59:bb:
db:60:67:9c:70:cc:70:5f:f5:01:37:c1:2c:54:0c:63:2c:e4:
19:ae:29:7a:52:36:36:35:a8:d1:ce:01:4f:76:5b:86:bd:6e:
1e:db:7b:3f:dc:98:31:37:e8:64:c2:ad:93:e9:b7:5a:56:42:
bb:ba:39:e1:2a:99:77:a4:1b:8c:1e:89:53:ac:ab:8d:fb:b8:
97:5c:7b:fe:5f:1b:08:ad:fa:68:ca:09:90:f1:ed:75:69:c0:
63:46:e3:0b:61:d1:fc:43:8f:33:01:43:aa:7d:49:57:37:ef:
a6:dc:ed:c8:8f:16:5c:3d:ad:31:d7:c1:16:2c:3e:69:a2:66:
8c:75:56:cb:b2:61:c0:90:22:ce:6e:78:0e:a5:9a:e9:55:dd:
87:be:34:3a:8e:60:92:32:f3:7a:05:bd:9f:99:cb:16:f3:9c:
57:6d:27:85:3e:13:76:6d:e0:70:db:69:e5:2f:ce:45:a3:f1:
04:9e:db:e4:0f:69:5a:7a:a7:4c:7a:0a:0a:e0:ec:ff:df:b6:
90:40:5b:09:33:21:96:e3:f7:c8:65:0b:cf:4b:7b:44:71:5e:
e4:46:17:6b:35:95:68:98:e1:16:e0:c6:95:ee:ec:98:ac:bd:
1a:3c:dd:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:22 2024 by rpki-client on console-fra.rpki-client.org