Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/3fbff6-73ee-4812-8e4b-81dabc81c05c/1/0Ruq9z3wriq9BiC9AVoJht1ly-8.roa
File: 0Ruq9z3wriq9BiC9AVoJht1ly-8.roa (raw, json)
Hash identifier: bd1NW8WZsxgxT7P/F4WzVUw2aCUJAgC9CgFFnN04u0M=
Subject key identifier: D1:1B:AA:F7:3D:F0:AE:2A:BD:06:20:BD:01:5A:09:86:DD:65:CB:EF
Certificate issuer: /CN=b1814a28a8c1ebe0adc33a1519b9883e3084bb59
Certificate serial: 9F0B41
Authority key identifier: B1:81:4A:28:A8:C1:EB:E0:AD:C3:3A:15:19:B9:88:3E:30:84:BB:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYFKKKjB6-CtwzoVGbmIPjCEu1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/3fbff6-73ee-4812-8e4b-81dabc81c05c/1/0Ruq9z3wriq9BiC9AVoJht1ly-8.roa
Signing time: Sat 01 Jan 2022 02:57:06 +0000
ROA not before: Sat 01 Jan 2022 02:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 45.152.135.0/24 maxlen: 24
45.152.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10423105 (0x9f0b41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1814a28a8c1ebe0adc33a1519b9883e3084bb59
Validity
Not Before: Jan 1 02:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d11baaf73df0ae2abd0620bd015a0986dd65cbef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8d:af:fd:db:69:0a:c5:4b:ff:51:d8:58:81:
03:78:67:78:ff:68:ea:bb:d7:f1:a7:95:58:39:be:
42:f4:31:d4:73:2d:88:66:7e:bd:06:a9:a1:e2:d4:
2b:2f:3d:d2:78:62:02:02:3d:0a:a9:c0:58:5b:f0:
d6:76:08:52:79:2b:88:d8:61:5f:c6:a1:90:dd:0c:
e7:ba:d9:27:73:63:db:99:64:bf:fb:d9:12:b9:d2:
27:c0:2b:c9:98:f6:5e:a6:ce:3b:c6:a6:26:b9:5b:
80:ad:ee:d4:45:2f:00:0b:33:14:fd:2d:49:44:8f:
6b:21:22:85:4d:d3:66:51:a3:ad:23:f4:4c:af:81:
06:9b:98:da:2b:00:18:24:24:d1:f8:17:77:9f:8c:
f7:4b:c2:d8:56:04:d3:29:ea:e7:e4:5e:19:79:2e:
98:1e:6d:6a:28:94:5c:db:29:14:b4:eb:e0:ff:ea:
16:4c:f4:c4:35:50:b2:c2:61:82:5d:96:b6:e4:31:
db:44:82:e1:3f:33:b6:28:92:e9:75:55:6b:64:e7:
fe:82:81:60:83:de:7a:8b:0d:23:d9:53:d8:d7:a1:
df:58:70:fc:c3:9c:ed:bb:10:d9:36:29:5c:99:0d:
90:76:90:4d:75:42:87:99:1e:7c:58:5d:6c:a2:95:
9c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:1B:AA:F7:3D:F0:AE:2A:BD:06:20:BD:01:5A:09:86:DD:65:CB:EF
X509v3 Authority Key Identifier:
keyid:B1:81:4A:28:A8:C1:EB:E0:AD:C3:3A:15:19:B9:88:3E:30:84:BB:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYFKKKjB6-CtwzoVGbmIPjCEu1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/3fbff6-73ee-4812-8e4b-81dabc81c05c/1/0Ruq9z3wriq9BiC9AVoJht1ly-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/3fbff6-73ee-4812-8e4b-81dabc81c05c/1/sYFKKKjB6-CtwzoVGbmIPjCEu1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.134.0/23
Signature Algorithm: sha256WithRSAEncryption
16:80:2a:5a:d9:45:52:70:7c:00:92:a6:ca:c1:3d:54:6d:5e:
f4:fa:e2:6b:4c:89:4c:93:0b:8b:32:8e:6d:29:e5:1b:5e:d2:
11:a5:74:0c:c0:67:1d:d7:90:7d:58:49:23:05:c0:27:1e:1d:
7c:33:d1:56:bb:fe:25:75:83:e7:f1:78:db:13:0f:bf:2e:ac:
04:8e:17:2f:bb:20:87:d2:4b:ab:8a:e1:c8:4c:14:e8:16:23:
4c:0d:75:af:42:93:36:bb:dd:f0:f5:cf:dc:1d:f6:d2:19:ee:
84:a8:3b:02:59:a4:80:6c:48:18:c4:a6:c6:4d:1a:38:ae:be:
76:0a:24:0b:b1:a3:4a:90:b5:0a:d3:c0:c9:21:1c:c5:6f:33:
0e:c4:2c:51:6f:b0:25:49:62:64:7f:1e:d6:21:be:b5:91:15:
17:58:e2:9d:5b:ed:e0:20:8f:90:6f:cc:aa:7c:de:8b:98:81:
03:e0:2c:7c:7c:8f:76:12:56:74:ad:04:73:fb:80:e6:9b:95:
d4:c2:ec:85:0b:0b:9b:32:8e:2e:6a:a6:0f:c4:1a:1c:0b:d8:
d7:86:18:e9:26:b3:3f:73:e3:2f:d2:33:1e:c1:81:1c:37:80:
d9:1a:61:fe:91:32:a9:3c:34:44:60:45:f7:5a:13:42:ba:a7:
c2:21:89:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:24 2024 by rpki-client on console-fra.rpki-client.org