Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/uyZCv0U4I8beT_3Px0s7yPKWkxo.roa
File: uyZCv0U4I8beT_3Px0s7yPKWkxo.roa (raw, json)
Hash identifier: NHU9KCSZ0QSnlkgsaE0J/e8wmpaGv8NtN8UY9kVnoxE=
Subject key identifier: BB:26:42:BF:45:38:23:C6:DE:4F:FD:CF:C7:4B:3B:C8:F2:96:93:1A
Certificate issuer: /CN=bdb83e99bf7254f948057a5e981be6fa5c2054dd
Certificate serial: 0182D5225B79B7DB4B057B4DC46B062FCF9A
Authority key identifier: BD:B8:3E:99:BF:72:54:F9:48:05:7A:5E:98:1B:E6:FA:5C:20:54:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vbg-mb9yVPlIBXpemBvm-lwgVN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/uyZCv0U4I8beT_3Px0s7yPKWkxo.roa
Signing time: Thu 25 Aug 2022 13:12:54 +0000
ROA not before: Thu 25 Aug 2022 13:12:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 45.85.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d5:22:5b:79:b7:db:4b:05:7b:4d:c4:6b:06:2f:cf:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdb83e99bf7254f948057a5e981be6fa5c2054dd
Validity
Not Before: Aug 25 13:12:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb2642bf453823c6de4ffdcfc74b3bc8f296931a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f7:ad:fe:8f:de:ef:96:c4:f9:55:46:46:58:
4d:16:f0:2e:88:fb:c5:1c:27:e9:34:01:67:04:b0:
09:da:db:9f:71:9b:fe:9a:bd:33:6f:99:41:b6:88:
bc:4b:27:76:f9:4a:74:3e:97:d4:4c:f0:59:78:5f:
7d:dd:3f:7d:3b:65:2d:34:dd:10:c1:fe:c7:2f:39:
c7:3a:e9:65:65:2f:0a:59:15:2f:bf:ef:16:d4:63:
6b:0f:ed:97:95:83:11:1a:78:a9:85:4c:96:e2:3d:
b9:d5:d7:43:87:e6:be:70:8c:f1:58:92:f7:3e:74:
0b:25:08:25:e9:0c:98:63:21:6a:00:fe:27:c9:48:
44:1c:7a:97:00:2c:1b:ef:dd:35:4c:f3:fe:26:96:
fa:9b:86:25:ae:b0:07:62:81:ad:5b:1c:40:26:0d:
53:ba:69:ea:b5:c9:a9:81:d7:71:14:5c:2c:ef:fc:
c2:51:c9:94:c1:4a:34:d2:31:d3:d4:8f:dd:27:c4:
9f:d3:80:00:9c:29:42:d8:6e:04:41:d6:70:52:7e:
00:dd:9c:2a:35:2d:b5:3b:18:a1:4f:ee:99:4f:a2:
e9:11:79:6e:d1:40:38:3a:38:7a:e3:63:d8:91:a8:
46:6b:df:88:f0:02:b7:bf:8e:fe:50:71:02:1d:4f:
a9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:26:42:BF:45:38:23:C6:DE:4F:FD:CF:C7:4B:3B:C8:F2:96:93:1A
X509v3 Authority Key Identifier:
keyid:BD:B8:3E:99:BF:72:54:F9:48:05:7A:5E:98:1B:E6:FA:5C:20:54:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vbg-mb9yVPlIBXpemBvm-lwgVN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/uyZCv0U4I8beT_3Px0s7yPKWkxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/vbg-mb9yVPlIBXpemBvm-lwgVN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.240.0/24
Signature Algorithm: sha256WithRSAEncryption
42:dd:e5:c7:de:eb:d7:9c:e8:4a:61:4b:27:69:d7:ed:83:52:
d5:22:30:0e:ea:b1:9c:ac:3f:33:1c:06:4e:2d:d5:1f:1d:41:
ea:37:0c:ae:43:4b:34:0d:13:cb:0a:90:9e:cd:d6:62:14:14:
7a:14:a6:ee:75:e8:e4:c2:f7:08:9b:d4:3f:80:cf:ba:7c:1b:
ac:5a:c2:3d:a1:2d:87:f3:9e:23:83:e6:01:c0:d8:b6:72:3c:
13:72:d0:9f:ab:54:0a:cd:cb:5d:f0:47:cc:b8:a6:e5:0c:38:
9d:ad:72:32:67:da:4d:56:74:6b:6c:6b:b9:2f:49:2c:97:cb:
85:0f:bc:c8:19:26:cb:e5:ea:92:9c:66:c0:44:76:4e:37:68:
07:2d:24:73:0f:f5:d3:11:ad:76:7b:59:22:a3:0e:27:f5:63:
0d:d8:7f:5c:b8:04:d4:18:fc:22:2c:fb:9c:e9:20:b0:54:a8:
25:69:22:fa:33:fc:d3:0f:8d:48:41:e1:71:68:4b:8e:bf:29:
fa:59:ab:c2:b3:49:35:05:19:d6:a7:0d:42:dc:82:be:b4:60:
49:28:a5:46:b6:6b:c7:a8:21:ff:cf:7c:96:fc:f4:03:4f:fc:
c5:26:41:4d:16:56:61:84:e7:d0:fa:56:77:fd:16:58:84:a1:
28:06:b5:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:59 2024 by rpki-client on console-fra.rpki-client.org