Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/0Nfz-tpgQd0RfH5V5bEnthVydwQ.roa
File: 0Nfz-tpgQd0RfH5V5bEnthVydwQ.roa (raw, json)
Hash identifier: ZodoD/6WlN5uAzLK/kHcwuhI89IepvZ3N+eKYydikhM=
Subject key identifier: D0:D7:F3:FA:DA:60:41:DD:11:7C:7E:55:E5:B1:27:B6:15:72:77:04
Certificate issuer: /CN=5799b327dd6cda1ad37bc1c224a454b02dea2afc
Certificate serial: 047BCAAE
Authority key identifier: 57:99:B3:27:DD:6C:DA:1A:D3:7B:C1:C2:24:A4:54:B0:2D:EA:2A:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5mzJ91s2hrTe8HCJKRUsC3qKvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/0Nfz-tpgQd0RfH5V5bEnthVydwQ.roa
Signing time: Sat 01 Jan 2022 05:52:32 +0000
ROA not before: Sat 01 Jan 2022 05:52:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14593
IP address blocks: 145.224.64.0/21 maxlen: 24
145.224.72.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75221678 (0x47bcaae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5799b327dd6cda1ad37bc1c224a454b02dea2afc
Validity
Not Before: Jan 1 05:52:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0d7f3fada6041dd117c7e55e5b127b615727704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c0:b6:66:06:4f:82:d5:7e:e2:e3:12:1f:65:
62:e9:bc:9f:fb:91:cf:45:8b:45:c6:52:16:39:79:
25:70:a0:29:91:7b:76:d7:16:93:40:d7:4d:66:2b:
7a:af:11:4c:ae:ce:f0:5b:51:c8:9a:42:50:b2:88:
88:be:60:43:a3:1c:0b:3b:1d:8a:bd:6e:7f:39:0d:
31:13:ba:40:ae:b2:61:55:c4:6b:96:c7:dd:e8:47:
af:d0:a2:6b:5e:54:63:73:0a:ca:71:d2:a4:8e:34:
b5:db:b7:70:c5:b2:e8:5e:64:78:68:75:20:10:10:
6b:d4:e7:c0:28:70:ac:57:c3:e3:1b:eb:9a:c3:13:
41:e8:5a:e4:f9:fd:cd:93:2b:b0:fe:fb:78:80:c3:
60:ec:e4:e4:13:f4:83:c8:cb:b3:45:ae:d5:37:ed:
a4:a3:26:44:4a:cd:ca:ee:6c:aa:76:e9:c9:b0:90:
16:a4:ca:f3:db:95:99:d1:8f:84:65:38:ea:34:63:
75:f4:00:8c:d1:a1:0f:79:65:08:0e:45:6e:82:c2:
a4:50:e4:e3:34:5b:09:d0:55:9a:e6:ea:50:ef:2b:
bb:d6:14:24:64:77:86:1a:7e:cf:cc:3b:89:2a:07:
e4:ae:10:d3:c7:82:41:b9:9e:c0:1e:17:65:f4:41:
ca:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D7:F3:FA:DA:60:41:DD:11:7C:7E:55:E5:B1:27:B6:15:72:77:04
X509v3 Authority Key Identifier:
keyid:57:99:B3:27:DD:6C:DA:1A:D3:7B:C1:C2:24:A4:54:B0:2D:EA:2A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5mzJ91s2hrTe8HCJKRUsC3qKvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/0Nfz-tpgQd0RfH5V5bEnthVydwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/V5mzJ91s2hrTe8HCJKRUsC3qKvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.224.64.0/20
Signature Algorithm: sha256WithRSAEncryption
89:f4:3f:6c:cf:1b:fb:69:36:54:e4:f8:33:0f:d7:09:32:bf:
d9:10:7a:0f:06:c5:4b:dc:8a:65:b1:9c:55:a0:f7:e6:67:a6:
cb:ae:6f:24:8c:ff:e7:50:a2:18:2f:8c:86:b9:bc:a6:90:a4:
54:5a:18:1d:de:c6:85:22:15:e6:bc:6a:cb:d2:02:cc:8c:40:
ae:47:62:5f:00:6a:fb:be:46:41:1e:7f:e5:b0:8d:8e:eb:b1:
58:09:4d:4a:8a:9b:11:b6:bd:80:e6:41:46:aa:67:a5:06:99:
d3:cf:eb:a1:31:53:e9:52:dc:0e:cb:51:21:45:04:5f:0f:5d:
b7:f9:a2:86:34:83:3f:6c:3c:20:1f:dd:19:21:8d:ab:df:0f:
ed:79:fc:15:da:07:c7:ac:e2:5f:de:d6:2e:1d:c6:35:fa:ae:
b5:3c:28:38:f4:34:d7:31:2b:bc:6e:32:96:54:57:6d:68:66:
61:d4:5c:05:38:ba:d3:d7:2a:9e:a7:90:2e:b3:3b:db:ca:38:
9f:fc:4d:03:00:82:0c:7c:ee:3e:a3:70:13:77:f0:0a:57:85:
15:07:41:a0:d9:1a:04:5b:41:c7:99:8d:ff:80:54:87:b0:d0:
e2:24:d8:28:22:00:e4:87:b4:ff:2e:92:61:f4:64:de:d6:88:
58:5b:32:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:46 2024 by rpki-client on console-fra.rpki-client.org