Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/5cb98c-ee08-4b99-8b4d-c6f41060c5d7/1/xfz7zBT15PYB89ZIpdBV-hi6z-w.roa
File: xfz7zBT15PYB89ZIpdBV-hi6z-w.roa (raw, json)
Hash identifier: PaKDBlKk+PYLFgeUq1q82kKiCyLJjy2FkXicBuIoRWw=
Subject key identifier: C5:FC:FB:CC:14:F5:E4:F6:01:F3:D6:48:A5:D0:55:FA:18:BA:CF:EC
Certificate issuer: /CN=9a78fd4d41a49384bdf6e7dc3ebbc500bf66d9d5
Certificate serial: 08C43F48
Authority key identifier: 9A:78:FD:4D:41:A4:93:84:BD:F6:E7:DC:3E:BB:C5:00:BF:66:D9:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnj9TUGkk4S99ufcPrvFAL9m2dU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/5cb98c-ee08-4b99-8b4d-c6f41060c5d7/1/xfz7zBT15PYB89ZIpdBV-hi6z-w.roa
Signing time: Sat 01 Jan 2022 07:03:06 +0000
ROA not before: Sat 01 Jan 2022 07:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 45.8.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147078984 (0x8c43f48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a78fd4d41a49384bdf6e7dc3ebbc500bf66d9d5
Validity
Not Before: Jan 1 07:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5fcfbcc14f5e4f601f3d648a5d055fa18bacfec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:13:42:df:d8:e5:da:86:74:6f:55:6a:02:26:
02:f3:00:74:6a:c2:9e:b9:8a:3e:99:c0:f2:39:df:
30:87:a0:72:75:21:e7:83:9c:64:2b:5a:67:95:37:
1d:0f:d2:72:9d:e6:8d:77:3d:e2:9a:63:2b:79:14:
0f:53:da:10:16:3d:cd:f1:81:cd:d6:6e:21:43:67:
78:90:11:d5:14:51:2d:1b:e2:07:bc:fa:f0:2a:fa:
15:a6:62:e1:73:c7:80:de:f2:92:1a:cb:ad:47:5c:
42:20:8b:5b:e2:f0:8c:8d:73:f7:aa:45:ba:88:3a:
a5:5e:2d:15:0c:46:18:40:2f:58:1e:a8:35:f4:8c:
d6:fd:d7:4b:e7:83:f0:5a:1a:55:ac:89:47:c3:7b:
fa:7d:c2:8b:2f:fc:2a:eb:1e:0e:71:7c:5f:a8:2c:
d7:8d:5a:0e:15:06:08:ff:1b:c3:1d:e2:21:7f:29:
11:78:d0:99:88:7d:12:6e:5d:a7:ff:ed:ae:33:c5:
ac:31:7e:14:1b:6e:12:78:1f:31:1f:24:fa:e3:db:
7f:c7:bf:03:81:d0:6c:a6:1e:7b:fb:7f:32:99:54:
83:2b:f6:02:96:9f:4a:51:1f:d9:84:dc:bf:e7:f1:
f8:b1:b5:b7:4d:57:09:ec:bd:e2:e5:15:5a:35:c7:
41:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:FC:FB:CC:14:F5:E4:F6:01:F3:D6:48:A5:D0:55:FA:18:BA:CF:EC
X509v3 Authority Key Identifier:
keyid:9A:78:FD:4D:41:A4:93:84:BD:F6:E7:DC:3E:BB:C5:00:BF:66:D9:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnj9TUGkk4S99ufcPrvFAL9m2dU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5cb98c-ee08-4b99-8b4d-c6f41060c5d7/1/xfz7zBT15PYB89ZIpdBV-hi6z-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5cb98c-ee08-4b99-8b4d-c6f41060c5d7/1/mnj9TUGkk4S99ufcPrvFAL9m2dU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.84.0/22
Signature Algorithm: sha256WithRSAEncryption
28:c6:ff:0f:48:d0:3a:c3:ad:07:ab:23:53:54:b8:fc:05:3a:
cd:0f:96:55:88:63:67:76:ef:9e:12:dc:a6:11:89:71:14:cc:
ec:f8:3f:9c:3b:63:55:67:a4:d9:8b:b4:4d:a8:9d:e8:f6:9b:
6c:a0:1e:1e:de:c1:98:c6:88:bd:94:b9:7e:6c:b0:6d:17:02:
d4:71:27:9c:58:7e:91:78:3e:37:70:2d:8f:3c:e4:35:0b:56:
7e:f6:8b:21:d0:1b:06:dc:b0:82:8c:fc:5b:5c:f5:6f:6a:7c:
64:82:78:07:07:dd:ea:87:63:34:ba:11:18:0e:17:a9:3b:67:
f1:5c:24:e6:03:60:49:ad:cd:8e:1d:93:68:84:d3:e6:3a:e5:
d7:d2:7b:af:73:67:9a:20:bb:87:84:f9:a0:e9:36:cc:c9:55:
b9:c4:3f:14:b5:79:e9:39:8f:bd:e8:fb:0e:0d:9a:db:3d:f0:
e9:2b:e7:cb:21:92:63:80:1e:2b:8d:1c:eb:1e:e3:45:34:85:
f2:50:2d:bd:02:82:9e:1b:61:34:2f:52:cd:d0:c3:b9:fa:c9:
67:bf:8e:a9:48:53:91:9a:79:4d:46:a0:08:b7:30:57:7b:e1:
e5:2a:56:6d:a8:9b:7c:f1:90:54:1b:e4:d2:7d:3c:f9:0d:c1:
ed:2c:b9:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:46 2024 by rpki-client on console-fra.rpki-client.org