Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/p0UlXe4JFjFfbVeoEQInvwcfeew.roa
File: p0UlXe4JFjFfbVeoEQInvwcfeew.roa (raw, json)
Hash identifier: xJnt2tVODj4vm1uGoLTjnjnGmGzoAbEE00RcUFQHHy0=
Subject key identifier: A7:45:25:5D:EE:09:16:31:5F:6D:57:A8:11:02:27:BF:07:1F:79:EC
Certificate issuer: /CN=b39c70f7ce3831b8f2cce89db14a27ddaa0e99c2
Certificate serial: 07DD5DE7
Authority key identifier: B3:9C:70:F7:CE:38:31:B8:F2:CC:E8:9D:B1:4A:27:DD:AA:0E:99:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s5xw9844MbjyzOidsUon3aoOmcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/p0UlXe4JFjFfbVeoEQInvwcfeew.roa
Signing time: Sat 01 Jan 2022 05:06:19 +0000
ROA not before: Sat 01 Jan 2022 05:06:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 45.130.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131948007 (0x7dd5de7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b39c70f7ce3831b8f2cce89db14a27ddaa0e99c2
Validity
Not Before: Jan 1 05:06:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a745255dee0916315f6d57a8110227bf071f79ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6b:b4:a4:3b:38:ee:b7:ab:f8:95:2d:98:cb:
27:90:c4:86:0e:61:cb:e3:aa:b4:45:e8:19:59:e1:
d0:de:2b:77:58:6d:14:8a:81:0a:07:d6:7c:10:4b:
f2:d4:27:b5:15:8d:3c:c2:78:5d:b7:e2:ec:49:7f:
5e:6a:4f:f9:cf:59:62:72:1e:56:3d:e7:90:25:1e:
a9:84:1e:44:f0:5f:2a:04:8e:2f:cd:65:43:f8:52:
12:97:97:46:d2:e3:aa:bc:63:82:d3:8b:c4:24:bf:
5c:48:d4:ef:6f:4f:75:b7:b5:64:e1:50:67:6d:3f:
6a:b8:87:4a:e2:02:62:6f:bf:3c:1d:02:2b:29:90:
2d:e8:b0:7a:bf:f7:25:be:25:44:fe:5d:df:07:62:
2c:df:e9:9c:5f:e4:ac:97:5b:ea:1c:8b:80:3e:26:
15:aa:59:7c:8f:7f:ff:f0:0f:88:c4:b1:e4:88:0b:
98:b0:ca:95:2f:0f:5b:31:89:e0:6c:0d:fb:b5:a4:
d5:cd:91:14:87:53:d0:cb:d3:a3:b5:83:52:e8:86:
9f:b0:a9:d4:0c:9a:78:ae:8b:06:39:5a:e5:22:52:
9d:4e:9e:7a:6c:06:e3:15:52:0f:98:a6:de:38:e8:
b0:ff:26:49:92:84:38:09:0c:4d:d5:a2:21:f0:1a:
09:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:45:25:5D:EE:09:16:31:5F:6D:57:A8:11:02:27:BF:07:1F:79:EC
X509v3 Authority Key Identifier:
keyid:B3:9C:70:F7:CE:38:31:B8:F2:CC:E8:9D:B1:4A:27:DD:AA:0E:99:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5xw9844MbjyzOidsUon3aoOmcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/p0UlXe4JFjFfbVeoEQInvwcfeew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/s5xw9844MbjyzOidsUon3aoOmcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.12.0/24
Signature Algorithm: sha256WithRSAEncryption
83:e1:c0:29:60:bc:47:af:e6:18:d9:93:f7:9e:cd:2b:8a:fe:
cc:43:0d:e8:54:cb:82:70:0a:9c:04:64:2e:04:1f:4d:be:f7:
d7:4d:63:a8:97:1a:58:f6:9c:42:b1:23:ef:35:b3:34:e9:d9:
49:a4:7e:6d:23:13:83:8e:54:ad:d1:86:db:41:83:6e:a7:ea:
27:d1:04:42:5b:2d:2f:40:fc:05:85:20:b5:cd:9e:bd:9d:fe:
d6:ce:88:12:6a:a4:cc:50:b6:41:6b:e3:5d:46:a2:b6:b3:ac:
b2:40:b5:3d:79:7e:e6:bd:31:00:17:e3:6a:16:3b:53:c5:fd:
5e:57:cf:f4:af:a7:27:17:7d:30:d7:4b:37:de:9e:1d:53:ec:
e3:73:e4:16:29:df:3c:4b:9c:7c:a8:e8:6c:4d:fd:fe:2f:1e:
2c:be:99:72:0e:d6:9d:81:3a:d9:72:d2:c1:e0:35:2b:7a:d1:
b7:0a:e8:7c:17:96:93:d7:cc:da:8b:dd:95:53:0f:1e:17:8b:
3a:b0:a2:bd:fa:5b:55:7a:c2:06:cf:39:b2:e9:c8:d8:bf:47:
6f:5f:10:27:77:ec:cf:ad:6a:52:b3:db:ac:9e:6a:ee:e8:59:
55:e3:c4:a2:cc:ef:5a:5b:6c:4a:f4:09:c9:34:d5:58:4b:ae:
b3:00:5b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:02 2024 by rpki-client on console-fra.rpki-client.org