Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/877e40-6ca1-4a2b-89a5-8abf5ee6c4ad/1/U-7mAQnIXNr0rgF-hEETB2NpyVE.roa
File: U-7mAQnIXNr0rgF-hEETB2NpyVE.roa (raw, json)
Hash identifier: 5NbtujgoQQ1p7zZaNCFFZu5C1CVMk6FIT9q0NLW3VgM=
Subject key identifier: 53:EE:E6:01:09:C8:5C:DA:F4:AE:01:7E:84:41:13:07:63:69:C9:51
Certificate issuer: /CN=cac21641bdbcfac24c54b6a4859483c5e41640b6
Certificate serial: 09C7F654
Authority key identifier: CA:C2:16:41:BD:BC:FA:C2:4C:54:B6:A4:85:94:83:C5:E4:16:40:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ysIWQb28-sJMVLakhZSDxeQWQLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/877e40-6ca1-4a2b-89a5-8abf5ee6c4ad/1/U-7mAQnIXNr0rgF-hEETB2NpyVE.roa
Signing time: Sat 01 Jan 2022 09:03:14 +0000
ROA not before: Sat 01 Jan 2022 09:03:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 45.56.228.0/22 maxlen: 22
45.56.236.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164099668 (0x9c7f654)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cac21641bdbcfac24c54b6a4859483c5e41640b6
Validity
Not Before: Jan 1 09:03:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53eee60109c85cdaf4ae017e844113076369c951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4c:55:6b:4e:6e:22:60:c5:b1:a5:f8:b4:8a:
f1:a1:2e:b8:63:19:fd:9a:38:4e:ab:ae:79:dd:94:
a6:6e:c0:69:51:cf:60:76:4a:75:35:d3:dd:96:2d:
ae:cd:bc:6c:97:c5:75:3a:5c:6c:88:b3:e9:8d:d8:
e1:2f:59:22:16:61:34:f5:8a:33:76:02:47:67:94:
1a:16:c4:35:59:6c:e1:5b:cb:bf:87:1a:ed:de:30:
37:39:90:2b:d4:b7:d1:d0:5d:3b:b8:9a:a2:e5:a2:
51:99:cd:04:2b:d8:4e:81:0b:9c:56:de:6a:74:4d:
31:95:4e:f2:b6:61:88:9d:07:1d:78:a3:50:0d:98:
16:22:04:00:5f:33:a6:92:fc:98:91:ff:50:73:f9:
97:c7:8b:47:f6:a8:af:ed:66:c1:a8:30:7b:32:97:
d0:20:fb:8d:4a:5e:57:02:f9:17:95:4d:35:1a:c4:
21:e4:9d:9b:4e:4d:a9:8b:25:f3:ab:c4:b2:6d:9a:
9f:8a:88:f5:9d:d0:23:5e:01:7a:e6:4d:52:7b:3e:
c9:da:6c:14:9d:d3:1c:9b:fd:e8:91:54:82:c2:74:
2b:3f:60:0f:07:97:76:c9:30:44:f1:78:07:23:87:
fa:00:6c:65:5d:8c:b6:47:13:64:61:e8:25:89:58:
b2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:EE:E6:01:09:C8:5C:DA:F4:AE:01:7E:84:41:13:07:63:69:C9:51
X509v3 Authority Key Identifier:
keyid:CA:C2:16:41:BD:BC:FA:C2:4C:54:B6:A4:85:94:83:C5:E4:16:40:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ysIWQb28-sJMVLakhZSDxeQWQLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/877e40-6ca1-4a2b-89a5-8abf5ee6c4ad/1/U-7mAQnIXNr0rgF-hEETB2NpyVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/877e40-6ca1-4a2b-89a5-8abf5ee6c4ad/1/ysIWQb28-sJMVLakhZSDxeQWQLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.56.228.0/22
45.56.236.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:7c:69:14:16:14:8c:fb:93:69:84:bd:c9:8f:f7:98:f6:a3:
c1:5d:cc:1f:de:81:38:73:04:71:5a:da:cf:68:13:fb:6d:50:
48:20:d0:87:3a:1e:28:b6:3a:cf:fc:b5:3e:2a:32:78:db:2b:
e5:1f:a2:d8:b2:ef:0d:e2:3c:54:ee:a8:b2:a0:0c:e1:6e:36:
35:35:45:57:6f:61:83:af:da:d9:bd:36:df:9a:d9:fb:d4:f2:
52:9c:55:b8:80:86:53:60:6a:db:89:d3:83:15:bc:44:d1:42:
fb:87:c7:78:cd:26:6a:96:25:44:1f:77:4d:b3:f6:aa:2d:26:
6a:89:a9:17:65:3c:57:f5:e7:43:f4:13:bb:02:c9:b3:6d:48:
15:68:09:53:66:3a:82:6f:4c:eb:0e:b8:0f:8c:66:68:c8:df:
85:55:91:ad:8f:43:f5:b3:ef:1b:71:ae:56:a7:5e:dc:7d:b2:
57:63:ad:7a:be:d2:f9:f6:e7:90:13:65:18:83:c0:de:01:80:
a9:73:aa:51:28:af:41:51:d8:cc:7c:f6:44:fc:95:23:55:e4:
f6:ea:39:02:eb:11:2a:2d:dd:f5:00:e1:4b:68:8f:42:fe:04:
7c:a2:a5:93:d4:b1:c1:22:b1:63:f9:b4:be:92:7d:91:80:68:
cc:f0:c2:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:56 2024 by rpki-client on console-ams.rpki-client.org