Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/0UMpjPM4FMX5DmP_AxCgXhsPWJU.roa
File: 0UMpjPM4FMX5DmP_AxCgXhsPWJU.roa (raw, json)
Hash identifier: NVY4s9HFO50Hd0MlVrarDfOq1P1/t1chO0pBzjyfFhU=
Subject key identifier: D1:43:29:8C:F3:38:14:C5:F9:0E:63:FF:03:10:A0:5E:1B:0F:58:95
Certificate issuer: /CN=291f0b73e67d63c5a4c9046814166a9e21625f28
Certificate serial: 0B1D2FBC
Authority key identifier: 29:1F:0B:73:E6:7D:63:C5:A4:C9:04:68:14:16:6A:9E:21:62:5F:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KR8Lc-Z9Y8WkyQRoFBZqniFiXyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/0UMpjPM4FMX5DmP_AxCgXhsPWJU.roa
Signing time: Sat 01 Jan 2022 08:00:31 +0000
ROA not before: Sat 01 Jan 2022 08:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56595
IP address blocks: 198.52.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186462140 (0xb1d2fbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291f0b73e67d63c5a4c9046814166a9e21625f28
Validity
Not Before: Jan 1 08:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d143298cf33814c5f90e63ff0310a05e1b0f5895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b3:6a:2e:bd:f9:6e:2e:93:64:0b:09:ee:4b:
d1:ab:4c:5d:f6:d4:d9:ba:db:11:1d:f6:10:0f:1f:
6d:e3:38:90:5a:41:67:13:2e:50:86:5e:27:83:8b:
68:85:53:1d:e5:cd:74:cf:1b:76:5e:32:ef:a3:d5:
5d:77:70:a0:db:29:5e:47:15:90:04:05:16:f5:12:
90:5d:3d:7d:3a:3d:07:b9:32:87:ca:ba:58:ca:7f:
e8:0c:3f:7e:d2:6f:35:7d:68:c3:f4:17:31:c0:35:
46:2c:f0:c4:7e:07:fa:61:61:41:fa:f4:4e:1c:04:
3a:18:9b:fd:45:85:dc:b9:c3:57:4a:72:fc:a7:cb:
fc:40:86:d8:2f:8c:80:90:86:85:e8:7f:5c:ad:e1:
b7:37:61:55:b1:d4:02:53:46:de:d5:b0:37:f3:c2:
c7:a2:25:92:78:92:1c:2a:2d:7a:37:85:48:d4:90:
31:63:07:3a:db:7b:57:21:87:23:b1:40:e8:d2:5a:
b5:02:e9:df:73:06:32:5c:7e:62:8d:98:56:29:28:
28:65:0c:40:6e:5a:49:83:7a:14:8b:a9:a5:7c:40:
ef:bb:06:db:2d:f4:4c:25:db:85:24:4f:fc:9f:66:
e2:70:0f:bf:e8:94:cd:4f:9b:9f:5a:03:a5:eb:99:
f1:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:43:29:8C:F3:38:14:C5:F9:0E:63:FF:03:10:A0:5E:1B:0F:58:95
X509v3 Authority Key Identifier:
keyid:29:1F:0B:73:E6:7D:63:C5:A4:C9:04:68:14:16:6A:9E:21:62:5F:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KR8Lc-Z9Y8WkyQRoFBZqniFiXyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/0UMpjPM4FMX5DmP_AxCgXhsPWJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/KR8Lc-Z9Y8WkyQRoFBZqniFiXyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.52.45.0/24
Signature Algorithm: sha256WithRSAEncryption
29:7d:fc:24:f0:92:6d:80:11:5f:57:03:9f:68:65:47:e9:d1:
e0:d1:45:d3:32:fc:9c:93:29:d4:c0:81:f2:30:81:70:26:e9:
c0:3c:30:5b:e9:e4:8a:4f:ea:1d:9a:c9:88:87:47:55:d8:5b:
fe:1c:7e:15:da:3e:7d:ae:84:29:4d:04:83:b4:1a:64:24:a1:
1f:1f:52:53:91:8a:47:32:f6:a3:39:1d:c7:fb:f7:93:78:b1:
71:f4:11:8c:80:5d:30:0b:7a:81:c5:a0:2b:eb:66:d0:14:56:
f3:4c:3e:33:21:5e:fd:41:1e:5b:28:b3:80:09:c4:69:cb:48:
b6:42:4e:f8:a3:90:7c:65:1b:1c:95:62:6e:5e:f7:db:a4:d1:
6b:e0:00:21:e0:31:c2:41:fe:9b:05:cc:ab:3e:28:ac:f4:60:
f3:c3:02:79:57:ad:0a:29:4d:6b:5e:4f:84:17:7f:f6:da:71:
6b:06:d0:1a:d3:28:8c:86:fd:fc:5b:a7:f9:21:88:f8:d6:38:
52:86:07:97:73:00:51:81:a7:2f:30:06:ff:5b:08:cb:6f:15:
e7:ba:01:da:f9:9b:d2:a2:e4:68:c6:32:a7:6e:ae:c5:b3:05:
66:8c:f4:59:ac:27:6d:3c:22:3e:37:84:09:ad:cb:09:f9:18:
71:2a:55:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:30 2024 by rpki-client on console-fra.rpki-client.org