Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/925d4a-f5f4-4299-a829-152a59479e69/1/34W-6M_RFJWkyceWHkPZK7D0llI.roa
File: 34W-6M_RFJWkyceWHkPZK7D0llI.roa (raw, json)
Hash identifier: P6RkKvb630JcPrFRxKWp08dsOnrPTZrWUuqsSn10fbE=
Subject key identifier: DF:85:BE:E8:CF:D1:14:95:A4:C9:C7:96:1E:43:D9:2B:B0:F4:96:52
Certificate issuer: /CN=36aafa5c3f2f8e4a083f81f0cb87bc7aea44891f
Certificate serial: 0702F2CE
Authority key identifier: 36:AA:FA:5C:3F:2F:8E:4A:08:3F:81:F0:CB:87:BC:7A:EA:44:89:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nqr6XD8vjkoIP4Hwy4e8eupEiR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/925d4a-f5f4-4299-a829-152a59479e69/1/34W-6M_RFJWkyceWHkPZK7D0llI.roa
Signing time: Sat 01 Jan 2022 07:55:44 +0000
ROA not before: Sat 01 Jan 2022 07:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51458
IP address blocks: 45.155.176.0/22 maxlen: 24
91.217.168.0/24 maxlen: 24
2001:67c:2844::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117633742 (0x702f2ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36aafa5c3f2f8e4a083f81f0cb87bc7aea44891f
Validity
Not Before: Jan 1 07:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df85bee8cfd11495a4c9c7961e43d92bb0f49652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ea:a9:99:a2:6b:72:0c:c7:fc:b8:ea:55:33:
44:34:d9:f9:76:48:91:c6:37:5b:67:59:34:16:f6:
62:55:17:69:ff:41:7f:7f:9b:23:4b:a7:9a:9f:9b:
36:eb:e2:5f:b0:00:d1:60:4e:e0:3d:b9:50:8e:75:
98:bd:79:70:4d:7a:74:42:50:46:f8:92:59:4f:01:
37:58:07:f4:19:cb:a1:4b:63:7d:06:1b:dd:5d:8a:
6c:47:a6:43:88:fa:d8:a0:7a:d1:e8:7c:0d:56:dc:
34:2e:35:1e:4b:19:18:ac:36:d3:35:d7:28:aa:ea:
3c:49:5b:7a:22:57:9b:19:11:34:59:10:ca:b8:f3:
57:95:42:9b:bc:06:14:76:ec:0b:51:2c:8e:30:71:
f7:5a:87:85:54:be:2a:4e:59:bf:6e:c9:ef:b3:26:
c7:a4:b1:14:69:ec:5c:33:4b:54:cd:1a:8b:6d:a0:
cb:37:94:7f:b9:9d:57:14:35:f9:de:25:5e:47:65:
f6:a9:86:94:e2:72:71:a4:b3:f6:ab:87:ab:f4:7b:
c0:8e:23:d7:5f:30:25:f5:27:dd:7f:ca:1a:b9:7f:
74:f9:70:0d:13:f1:cb:69:f1:58:12:01:82:29:29:
05:59:33:4f:6e:b9:7a:ad:51:25:fe:e8:0e:01:6b:
39:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:85:BE:E8:CF:D1:14:95:A4:C9:C7:96:1E:43:D9:2B:B0:F4:96:52
X509v3 Authority Key Identifier:
keyid:36:AA:FA:5C:3F:2F:8E:4A:08:3F:81:F0:CB:87:BC:7A:EA:44:89:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nqr6XD8vjkoIP4Hwy4e8eupEiR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/925d4a-f5f4-4299-a829-152a59479e69/1/34W-6M_RFJWkyceWHkPZK7D0llI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/925d4a-f5f4-4299-a829-152a59479e69/1/Nqr6XD8vjkoIP4Hwy4e8eupEiR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.176.0/22
91.217.168.0/24
IPv6:
2001:67c:2844::/48
Signature Algorithm: sha256WithRSAEncryption
26:cc:9a:4b:f1:38:da:f2:11:c0:5c:fa:51:f1:3b:22:9e:95:
84:4e:3b:73:cb:bd:02:75:c5:34:78:78:9f:20:2a:38:79:b8:
33:97:d9:48:7d:dd:20:25:e3:4e:13:10:dc:6d:29:f4:8a:d7:
e8:56:37:45:3c:28:17:6d:dd:cc:63:40:f2:00:63:80:9f:11:
1c:73:78:99:4b:3c:da:fd:27:5c:00:d5:50:89:2e:99:f3:94:
5f:dc:a5:0f:36:f5:c7:83:9d:f4:42:4f:7c:5d:8f:db:72:4e:
8e:da:77:d9:19:c8:d8:ce:4e:71:7e:b6:56:a7:24:b4:8b:de:
9e:63:bd:d2:c6:08:a0:14:4b:0b:dc:0a:fc:f0:86:b2:ff:95:
30:b6:b9:d7:dd:4a:07:f1:42:89:fe:d3:13:a4:99:2b:c5:63:
80:c4:89:c8:d9:36:c1:83:d8:fe:aa:99:3f:72:49:17:e9:f9:
72:7f:30:3a:0e:93:37:26:d1:86:09:97:d5:ad:45:7c:43:84:
f2:e3:7c:19:7a:5c:d5:f3:5e:69:3b:92:2d:f7:0f:47:e3:01:
21:82:97:a6:b4:e9:76:6f:da:6f:35:5e:6e:57:3f:69:a6:cd:
31:b2:58:5f:ba:4e:78:e3:44:52:8a:0a:0a:ab:7b:ed:55:6f:
0b:66:28:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:20 2023 by rpki-client on console-ams.rpki-client.org