Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/OIwfXpVXQJtqol3oR0tyz5Nyh-E.roa
File: OIwfXpVXQJtqol3oR0tyz5Nyh-E.roa (raw, json)
Hash identifier: eM4DPvZq7bVz2GC4LVWLB1mhT0Q8pN+KVef/XFFxDTc=
Subject key identifier: 38:8C:1F:5E:95:57:40:9B:6A:A2:5D:E8:47:4B:72:CF:93:72:87:E1
Certificate issuer: /CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Certificate serial: 0183EEEC5F54B7E0FE80258372ACAB7B8EDE
Authority key identifier: D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/OIwfXpVXQJtqol3oR0tyz5Nyh-E.roa
Signing time: Wed 19 Oct 2022 06:26:51 +0000
ROA not before: Wed 19 Oct 2022 06:26:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2027
IP address blocks: 45.13.104.0/22 maxlen: 22
193.58.42.0/24 maxlen: 24
2a0e:e700::/31 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ee:ec:5f:54:b7:e0:fe:80:25:83:72:ac:ab:7b:8e:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Validity
Not Before: Oct 19 06:26:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=388c1f5e9557409b6aa25de8474b72cf937287e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f5:76:2a:70:f8:42:20:e7:cb:b5:3e:3c:a8:
ba:27:c7:75:3f:29:2d:78:42:9b:78:60:0b:28:2b:
53:9b:c5:fc:a5:ef:c0:3e:95:a5:55:a9:e9:89:a0:
86:93:fc:7f:d7:bb:a8:3a:b7:15:f4:2b:5a:99:42:
6b:c3:41:4f:2b:42:6c:d5:46:42:0d:de:8f:c6:02:
50:a4:33:dc:6d:22:73:aa:f0:b8:dc:fd:33:28:67:
a7:c5:5c:cc:c5:e0:2b:86:5e:e2:70:82:2f:e4:d1:
95:5b:ac:7e:a7:a0:74:58:14:b9:68:4e:f9:75:51:
2d:f3:d5:5a:e7:76:05:a1:2b:1a:dc:28:d7:dc:49:
55:e0:81:61:b9:c5:08:1a:fa:9b:57:8d:24:e0:8f:
f5:2f:4b:61:c2:52:d6:62:44:a9:2d:e7:4b:b8:17:
a9:51:18:89:f2:63:11:a0:03:44:57:db:22:6e:c5:
65:8e:86:36:f3:bd:54:87:5e:7d:9b:99:2e:61:db:
00:c5:65:21:9f:4a:10:6a:5b:43:54:9c:1d:e9:68:
b8:58:df:9e:42:bf:88:85:ee:ee:dc:0e:9f:9d:09:
23:be:ce:7b:ed:b9:aa:d7:42:27:26:80:70:aa:5b:
94:f5:76:95:b6:63:2e:0e:b2:dc:13:f7:1a:10:e8:
e0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:8C:1F:5E:95:57:40:9B:6A:A2:5D:E8:47:4B:72:CF:93:72:87:E1
X509v3 Authority Key Identifier:
keyid:D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/OIwfXpVXQJtqol3oR0tyz5Nyh-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/1g9F98xLaR_UoxwfHAtPYF13pu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.104.0/22
193.58.42.0/24
IPv6:
2a0e:e700::/31
Signature Algorithm: sha256WithRSAEncryption
c3:cf:28:cc:ec:30:17:ac:df:91:73:a4:03:10:b9:d9:4d:d6:
b4:73:1d:82:8f:c0:d1:11:ac:be:14:ff:c5:c6:92:cc:ca:ca:
40:0e:d8:9b:80:e7:e3:29:2f:39:cc:48:49:bd:a0:ee:ca:f8:
f2:26:df:69:9e:8c:33:0d:79:df:78:0d:af:2c:50:46:fe:4e:
b6:7a:c1:cf:a8:8a:26:d8:68:3d:c5:b6:43:ac:fb:68:12:2c:
0b:a3:8d:2c:94:51:f4:59:bb:9e:bf:7e:a4:f6:20:cb:b7:55:
e0:e4:65:34:2a:3a:df:23:ca:39:34:95:90:ce:ab:56:1a:3c:
f3:3a:ce:f3:6d:5f:e5:33:fe:62:8f:ad:9b:11:7a:83:f9:09:
66:e8:05:fb:2d:0c:a9:ba:34:3e:a6:61:46:d7:ff:55:42:17:
a4:d3:29:f6:b5:1b:63:ef:0f:b2:e5:3f:33:9c:55:3c:a4:ea:
f5:ac:f5:96:b1:22:4c:a9:0c:c1:fc:0d:bb:b5:32:c5:82:12:
49:98:ed:f8:1e:6c:25:4d:d1:72:42:3e:a6:79:64:04:60:36:
13:c2:fc:e5:20:00:16:0d:c3:e2:e4:8e:89:63:d2:45:a6:5f:
7d:1e:a0:ca:bb:2e:2f:fb:cf:79:35:9b:53:4d:f5:45:1c:43:
5e:5e:bb:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:10 2024 by rpki-client on console-ams.rpki-client.org