Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/9dO7Q8T3W6039boY8plSlSufTQs.roa
File: 9dO7Q8T3W6039boY8plSlSufTQs.roa (raw, json)
Hash identifier: OX/oe+SpGiZ88T6IX7fe6WhXJkrbSQ7MAeV2jJfGWwo=
Subject key identifier: F5:D3:BB:43:C4:F7:5B:AD:37:F5:BA:18:F2:99:52:95:2B:9F:4D:0B
Certificate issuer: /CN=66f8206e3311df394f48389b8122b94aa1f0b05c
Certificate serial: 0D3661CC
Authority key identifier: 66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/9dO7Q8T3W6039boY8plSlSufTQs.roa
Signing time: Sat 01 Jan 2022 01:54:57 +0000
ROA not before: Sat 01 Jan 2022 01:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49544
IP address blocks: 45.83.200.0/22 maxlen: 22
185.114.156.0/22 maxlen: 22
185.229.32.0/22 maxlen: 22
2a03:3a60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221667788 (0xd3661cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66f8206e3311df394f48389b8122b94aa1f0b05c
Validity
Not Before: Jan 1 01:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5d3bb43c4f75bad37f5ba18f29952952b9f4d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:56:4f:97:be:1a:c2:c7:de:17:2e:d3:a4:3d:
08:cb:f8:c7:d1:29:17:c9:40:74:14:95:0b:eb:dc:
d1:44:22:c6:f2:01:7e:05:42:2d:b4:67:5b:1f:dc:
83:b8:29:b7:2e:3c:b1:ac:04:92:d8:ec:56:2a:8f:
f9:45:cb:5c:2a:b7:ab:51:ee:ed:b9:d8:d6:01:9e:
6c:90:ab:bc:7d:9e:c5:7c:d8:34:f1:c7:9b:36:33:
7b:67:fa:df:9c:51:73:20:72:ca:12:0f:72:3e:8f:
aa:8e:3d:02:50:35:34:7c:82:cc:aa:cf:b3:20:70:
ec:88:55:27:a5:4c:ae:d5:31:ce:ac:53:67:94:95:
23:37:7d:2f:b7:af:74:ab:d3:e9:3d:57:c3:81:95:
04:b6:55:d6:b5:70:9f:c2:95:18:e1:74:1e:1d:c0:
b1:b6:f1:65:ed:8f:5d:35:75:ce:50:a3:4b:38:cc:
d7:4c:ca:1e:f0:e7:5a:d7:f5:64:fe:31:98:9e:45:
59:60:20:7d:90:93:94:fb:23:ec:2b:fe:d1:cd:1f:
da:a1:b6:81:c4:27:15:f8:3b:01:51:c2:33:87:64:
e6:b7:91:7c:b5:5e:0c:49:20:9b:5e:79:c4:b3:02:
97:9e:aa:52:98:22:fd:73:d9:d4:55:da:ff:86:14:
98:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D3:BB:43:C4:F7:5B:AD:37:F5:BA:18:F2:99:52:95:2B:9F:4D:0B
X509v3 Authority Key Identifier:
keyid:66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/9dO7Q8T3W6039boY8plSlSufTQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.200.0/22
185.114.156.0/22
185.229.32.0/22
IPv6:
2a03:3a60::/32
Signature Algorithm: sha256WithRSAEncryption
69:62:1f:13:25:80:dc:88:96:a1:ab:2f:b4:0b:47:0b:1a:43:
9d:13:e5:ae:7c:9f:e8:c2:f7:bb:08:da:c9:bb:ab:9a:2d:61:
bf:76:df:94:a7:e8:fe:33:0f:32:bd:79:58:ad:f5:68:9d:34:
e2:09:b3:1b:b5:37:d0:ac:d6:ca:09:1c:4c:e3:37:8e:2e:de:
17:17:92:f4:76:b7:e3:a4:fc:40:7e:ef:4c:6f:85:cf:05:79:
01:1d:f7:61:33:ff:10:38:18:1b:98:e8:10:33:69:58:58:97:
ff:c1:b9:ea:c4:a7:3e:ee:90:c0:67:1f:fa:50:80:9f:e7:2d:
8f:5c:ed:b6:38:1d:59:9d:35:c0:0f:be:aa:76:2b:d0:27:3b:
81:3a:ca:8d:8a:16:ac:8d:ed:22:58:d7:64:d3:47:40:b6:f5:
e7:40:0f:72:d4:13:67:8c:0f:20:88:8c:84:4f:2d:9a:47:16:
d0:37:71:48:a0:79:f1:38:34:2b:0a:9f:8b:be:7a:af:58:95:
83:57:89:d5:28:d9:03:81:db:ef:cf:b3:72:1c:a1:51:b8:60:
d8:f1:96:62:4f:68:77:ed:29:98:ae:15:1b:60:68:e5:b2:49:
83:39:e7:1d:46:0f:a0:58:dd:31:26:7e:43:a1:10:b5:40:d9:
d2:26:d4:16
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:00 2024 by rpki-client on console-ams.rpki-client.org