Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/jH6tu0JW-TKN2_QpX74bblVZJUM.roa
File: jH6tu0JW-TKN2_QpX74bblVZJUM.roa (raw, json)
Hash identifier: Yc2e+Ra0ePqad7c3K6IRIzWXDes3LJeTreetUzGi8xw=
Subject key identifier: 8C:7E:AD:BB:42:56:F9:32:8D:DB:F4:29:5F:BE:1B:6E:55:59:25:43
Certificate issuer: /CN=d251392cd7e6e40a45c1b8a4479880eef960f330
Certificate serial: 07C8E5F0
Authority key identifier: D2:51:39:2C:D7:E6:E4:0A:45:C1:B8:A4:47:98:80:EE:F9:60:F3:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0lE5LNfm5ApFwbikR5iA7vlg8zA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/jH6tu0JW-TKN2_QpX74bblVZJUM.roa
Signing time: Sat 01 Jan 2022 09:01:54 +0000
ROA not before: Sat 01 Jan 2022 09:01:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39389
IP address blocks: 45.131.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130606576 (0x7c8e5f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d251392cd7e6e40a45c1b8a4479880eef960f330
Validity
Not Before: Jan 1 09:01:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c7eadbb4256f9328ddbf4295fbe1b6e55592543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d1:3f:fc:a8:aa:85:ab:b0:1e:25:0e:cd:9d:
8a:0a:4a:12:20:54:d3:34:c0:11:c3:82:27:25:0f:
1b:56:0f:8d:6b:31:05:fb:ec:4b:aa:08:0e:17:e4:
d1:53:57:a3:ed:27:a5:fb:94:bf:3a:b3:20:5d:c6:
52:74:6f:0b:71:a8:1b:d5:16:8d:6c:8b:3b:a0:cc:
04:87:b7:4f:97:61:79:1a:b9:aa:83:72:73:b3:0b:
d1:e5:d3:60:3d:7f:8b:77:d5:73:61:ca:26:54:16:
9f:fe:84:e5:4e:de:29:e0:c9:5b:f4:8d:40:b1:f6:
f2:79:7b:80:a1:a4:3a:59:51:f8:75:62:b2:cf:0f:
dd:a1:cc:6e:62:68:b5:b9:c8:e3:99:25:64:75:1c:
c9:36:ca:22:2a:f0:25:de:f8:d4:62:f4:0a:40:47:
73:05:2c:dc:8b:ca:8c:12:1f:60:f9:14:5e:c3:1e:
23:d2:5b:00:e5:49:ac:8a:28:68:2b:e0:ec:74:bd:
fc:a5:cf:0e:c3:49:44:79:4b:0d:a0:77:65:5a:e8:
99:96:6e:73:41:7b:c2:19:08:9b:20:d4:07:19:c2:
d2:19:a8:18:7c:dc:4d:f1:66:f7:db:27:77:91:a5:
a6:2e:e1:92:98:2c:11:4a:46:b5:64:f9:3e:ee:e4:
20:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:7E:AD:BB:42:56:F9:32:8D:DB:F4:29:5F:BE:1B:6E:55:59:25:43
X509v3 Authority Key Identifier:
keyid:D2:51:39:2C:D7:E6:E4:0A:45:C1:B8:A4:47:98:80:EE:F9:60:F3:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0lE5LNfm5ApFwbikR5iA7vlg8zA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/jH6tu0JW-TKN2_QpX74bblVZJUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/0lE5LNfm5ApFwbikR5iA7vlg8zA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.88.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:91:59:c4:10:d1:aa:13:2a:0e:48:a5:0f:97:9e:c7:39:a7:
2e:49:d1:f9:7e:e4:3c:38:92:9d:76:b7:76:b6:7a:dd:bb:b5:
92:d1:35:e3:9e:e7:0c:c4:b7:ff:d6:6d:4d:4f:e7:54:06:71:
79:8d:7c:74:4f:40:6f:2c:c6:cc:d3:e4:35:2e:5e:f4:b5:1a:
98:31:62:cb:a0:22:50:2c:9b:41:55:2a:55:dd:53:0b:a5:81:
69:36:31:26:c5:0b:23:a2:1f:a1:d5:2f:2f:c1:96:6d:ba:7b:
a4:9e:0c:09:f7:72:e4:87:13:6c:19:78:ed:86:72:9c:82:e6:
bf:93:05:85:1f:19:84:6a:c5:a6:aa:b8:12:38:c4:61:1a:6f:
bd:2e:aa:5b:0d:84:ef:d7:24:ba:b8:b1:75:47:93:bc:41:03:
4a:02:b4:19:a9:33:b3:f8:65:dc:17:6e:2a:df:3c:fb:43:a5:
f3:08:c1:19:40:7e:63:65:9d:ef:94:67:7f:cc:72:a1:06:3b:
2e:2e:04:3e:cd:36:e2:7d:99:f4:92:89:d8:a6:30:08:ce:e1:
fa:f0:26:8e:29:d8:06:9e:49:b7:05:b2:69:91:38:90:03:ea:
43:45:38:92:95:a7:f1:9f:b8:8f:c6:58:76:26:50:eb:91:53:
cb:1f:11:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:09 2023 by rpki-client on console-fra.rpki-client.org