Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/XUuJB7PPXOJoj6ttHt9aAmEeZqQ.roa
File: XUuJB7PPXOJoj6ttHt9aAmEeZqQ.roa (raw, json)
Hash identifier: 3Sa5ruDc9APULW4MSNrqG6ABqf25mynjjm7NGDCdD/U=
Subject key identifier: 5D:4B:89:07:B3:CF:5C:E2:68:8F:AB:6D:1E:DF:5A:02:61:1E:66:A4
Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Certificate serial: 01848BB00C18CB00C9296B6D585EBCC71994
Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/XUuJB7PPXOJoj6ttHt9aAmEeZqQ.roa
Signing time: Fri 18 Nov 2022 17:01:21 +0000
ROA not before: Fri 18 Nov 2022 17:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42156
IP address blocks: 45.143.62.0/23 maxlen: 23
2a0e:e2c1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8b:b0:0c:18:cb:00:c9:29:6b:6d:58:5e:bc:c7:19:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Validity
Not Before: Nov 18 17:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d4b8907b3cf5ce2688fab6d1edf5a02611e66a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:24:df:6c:19:fc:b4:e8:fe:fa:65:2a:bb:3b:
e1:e4:19:d7:2d:21:6b:e1:c5:c7:b7:ee:09:ff:95:
e2:9a:2a:09:46:a8:07:9c:70:39:33:34:da:1d:87:
ff:93:e1:f3:ac:ee:db:61:82:d3:8b:ab:a4:08:17:
c8:d8:c3:3a:43:52:6d:15:a9:cc:a6:c9:b4:91:a8:
06:dd:cf:c5:7f:1b:e8:db:29:99:63:8d:c4:d4:b3:
e6:86:a9:0d:75:aa:00:d6:87:b8:f7:b8:57:29:1d:
f1:9f:10:c1:37:21:88:ce:c0:21:0f:eb:75:52:7b:
7e:0e:ba:96:f5:37:4e:96:7e:22:d3:f7:c9:46:cf:
09:9d:5c:c3:00:75:70:27:bf:92:39:1b:c5:b3:de:
36:5d:dd:18:cd:d9:88:52:fa:27:ba:e2:31:36:5f:
20:0a:e8:35:41:ba:88:11:b9:96:7f:46:08:66:74:
87:d5:c0:d0:18:ad:eb:0f:d2:47:cf:8c:24:12:25:
44:44:96:08:f5:8a:30:e5:aa:10:ae:b4:80:9d:25:
ef:52:50:f2:35:53:54:35:aa:6d:cc:1a:be:b8:b5:
c3:31:2a:8f:31:6d:70:1e:71:bd:a4:6c:af:e9:07:
fd:4e:92:d2:97:91:be:35:c5:28:19:a9:2a:fe:33:
c5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:4B:89:07:B3:CF:5C:E2:68:8F:AB:6D:1E:DF:5A:02:61:1E:66:A4
X509v3 Authority Key Identifier:
keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/XUuJB7PPXOJoj6ttHt9aAmEeZqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.62.0/23
IPv6:
2a0e:e2c1::/32
Signature Algorithm: sha256WithRSAEncryption
8f:57:82:a6:5c:17:2c:57:a3:8c:cf:6d:50:13:9e:f8:11:03:
04:ed:f5:c8:77:29:f9:68:99:97:95:5c:1e:95:54:89:02:7d:
15:08:c3:2d:33:c3:6c:e9:10:7f:ef:2b:0a:11:2a:c4:5f:43:
73:1f:01:f8:82:28:a9:fa:0a:4f:f7:3c:22:e0:e7:69:d5:a9:
38:e8:4f:26:12:40:88:b7:51:b6:6e:a0:46:4f:3c:05:40:d8:
7a:2c:4a:1a:9a:12:89:e7:c5:93:78:4d:34:11:2f:92:69:95:
1b:fd:ee:6c:a6:25:f8:64:ee:0f:31:75:3a:6a:09:24:04:d4:
67:10:54:95:ec:a4:2f:af:6a:09:db:9b:cb:ec:f6:44:b4:cb:
19:0d:0a:cd:e9:65:98:47:06:6e:31:46:4f:20:35:b1:f4:31:
0f:a8:b4:e5:73:fa:6e:70:8f:ea:2e:a3:32:a6:f3:30:55:f7:
13:d7:9d:5d:1b:14:eb:80:2e:cc:b5:77:10:ef:36:60:cc:32:
7b:fe:40:c1:f9:18:a9:86:6e:a8:53:b3:ff:89:d8:a8:63:7a:
b4:93:d8:a9:76:cb:3b:dc:75:2d:e5:1d:6e:95:76:8d:81:c3:
26:e4:e3:c6:d1:dc:f7:7b:78:3a:6c:71:45:0e:41:28:28:6e:
a3:d9:b9:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:17 2024 by rpki-client on console-fra.rpki-client.org