Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/ea71d4-4dbb-4451-b26b-3b75a567f73a/1/tBeOvanC9v-2yi67VSKMKzw6Hck.roa
File: tBeOvanC9v-2yi67VSKMKzw6Hck.roa (raw, json)
Hash identifier: SO51PrxWPab0ICp4BoGcUCr4AKgYXpZWopS911BizzQ=
Subject key identifier: B4:17:8E:BD:A9:C2:F6:FF:B6:CA:2E:BB:55:22:8C:2B:3C:3A:1D:C9
Certificate issuer: /CN=d8ff71f2b1a8d62af446a92ba2bdea33f9b69ddc
Certificate serial: 049C42
Authority key identifier: D8:FF:71:F2:B1:A8:D6:2A:F4:46:A9:2B:A2:BD:EA:33:F9:B6:9D:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2P9x8rGo1ir0Rqkror3qM_m2ndw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/ea71d4-4dbb-4451-b26b-3b75a567f73a/1/tBeOvanC9v-2yi67VSKMKzw6Hck.roa
Signing time: Tue 29 Mar 2022 10:46:22 +0000
ROA not before: Tue 29 Mar 2022 10:46:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16371
IP address blocks: 45.6.48.0/22 maxlen: 22
87.238.88.0/21 maxlen: 21
185.78.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302146 (0x49c42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ff71f2b1a8d62af446a92ba2bdea33f9b69ddc
Validity
Not Before: Mar 29 10:46:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4178ebda9c2f6ffb6ca2ebb55228c2b3c3a1dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:30:54:05:53:fd:e8:81:fd:01:cb:46:ce:1e:
84:94:8d:01:1c:6f:24:a7:9b:71:00:f8:56:f3:d9:
ba:67:65:2b:46:ce:29:ef:0c:6f:45:d5:4e:16:4a:
00:56:49:fa:0a:42:ed:cf:98:a1:7c:c0:c3:e5:a5:
f4:59:46:4d:10:d8:1a:fc:5d:18:cc:ba:50:2e:ca:
6c:33:8c:20:af:e0:b8:b9:3f:91:d4:9a:1a:d1:4b:
54:45:8d:d3:74:c9:34:dd:6c:91:28:5a:03:21:d3:
f0:ee:9c:f4:db:70:6e:cf:df:50:b9:67:ea:7d:45:
bd:64:df:3e:2d:df:3d:3e:f2:9a:b3:28:5f:f3:7f:
55:ae:03:1a:51:f5:07:d5:f6:df:78:d4:ce:23:b6:
66:08:1c:57:a9:78:b9:38:62:99:78:c8:72:01:a6:
bb:b6:7c:ad:e2:66:16:17:cc:43:1c:4d:c9:2e:0b:
a4:83:1d:30:b3:7c:4b:3d:71:42:e5:a9:a3:b7:36:
67:37:2e:06:75:82:d2:fb:6f:be:b0:18:0b:4d:84:
c6:cd:57:13:82:30:87:29:f2:54:9a:27:03:95:fc:
50:78:37:b5:60:7c:db:a0:1c:56:c0:52:54:c9:b2:
a8:15:c9:fd:1f:9b:b7:f6:f0:df:fa:98:89:45:44:
48:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:17:8E:BD:A9:C2:F6:FF:B6:CA:2E:BB:55:22:8C:2B:3C:3A:1D:C9
X509v3 Authority Key Identifier:
keyid:D8:FF:71:F2:B1:A8:D6:2A:F4:46:A9:2B:A2:BD:EA:33:F9:B6:9D:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2P9x8rGo1ir0Rqkror3qM_m2ndw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ea71d4-4dbb-4451-b26b-3b75a567f73a/1/tBeOvanC9v-2yi67VSKMKzw6Hck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/ea71d4-4dbb-4451-b26b-3b75a567f73a/1/2P9x8rGo1ir0Rqkror3qM_m2ndw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.6.48.0/22
87.238.88.0/21
185.78.24.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:c2:9e:6d:ca:93:7b:c4:bd:94:d4:6c:8e:41:eb:6d:23:c7:
33:de:a6:a5:a5:ec:cb:37:74:46:ec:a9:f3:a6:8e:ee:2f:d5:
3e:c7:28:48:94:cc:57:d2:72:5b:9d:d3:57:1b:71:34:5b:c1:
e2:30:15:29:65:1a:bd:d6:0c:57:ba:10:00:10:80:ef:a5:32:
50:e1:b9:d4:93:c0:8f:5a:18:e4:03:26:d5:7b:a7:d8:35:cf:
0c:7c:60:01:00:3e:ba:71:c3:bd:fc:33:e0:19:39:e8:b7:f4:
26:2a:3a:f9:94:df:d1:de:dc:cc:e6:81:c4:36:0b:93:93:96:
67:11:0d:d4:38:e8:4f:b0:29:00:06:eb:d9:ab:93:5c:1e:bc:
44:7f:e0:93:82:78:c8:ac:fa:1d:8f:b9:38:37:03:c7:e2:04:
34:50:ad:2d:91:84:f5:84:21:29:8f:01:78:45:3e:9b:44:32:
e8:68:45:97:24:0d:38:aa:de:9e:0d:ee:49:29:d9:09:50:91:
6e:ee:cd:fb:24:ea:2b:be:32:fb:05:e2:96:68:f8:86:5e:ee:
3d:ba:99:89:2f:b7:d2:fd:e0:e1:29:3f:9f:49:60:ac:cf:14:
ef:76:7d:39:2a:2d:bb:a9:2d:69:dc:ac:a2:c0:77:28:03:49:
1c:a5:41:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:54 2024 by rpki-client on console-ams.rpki-client.org