Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/0J3i27so7_s7zH2NeXOil1fexyk.roa
File: 0J3i27so7_s7zH2NeXOil1fexyk.roa (raw, json)
Hash identifier: VnmIJyb155bbaC9jFi1tnBnQNvaHcpr9yEvLvE5K0/A=
Subject key identifier: D0:9D:E2:DB:BB:28:EF:FB:3B:CC:7D:8D:79:73:A2:97:57:DE:C7:29
Certificate issuer: /CN=cfeace714c29568ef197007b141d12758cc415d5
Certificate serial: 01832124CC0EBBAA130C427421CE3E1EE7E3
Authority key identifier: CF:EA:CE:71:4C:29:56:8E:F1:97:00:7B:14:1D:12:75:8C:C4:15:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z-rOcUwpVo7xlwB7FB0SdYzEFdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/0J3i27so7_s7zH2NeXOil1fexyk.roa
Signing time: Fri 09 Sep 2022 07:26:43 +0000
ROA not before: Fri 09 Sep 2022 07:26:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57829
IP address blocks: 45.137.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:24:cc:0e:bb:aa:13:0c:42:74:21:ce:3e:1e:e7:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfeace714c29568ef197007b141d12758cc415d5
Validity
Not Before: Sep 9 07:26:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d09de2dbbb28effb3bcc7d8d7973a29757dec729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:14:7b:6e:a3:dd:ea:e7:6c:8c:ce:ac:b8:48:
db:5e:58:4d:87:44:47:10:69:d8:65:bf:b8:d1:8d:
39:f9:d1:f6:2f:84:24:a6:df:04:e8:40:7c:45:03:
cf:24:65:bf:25:3d:dd:51:2a:31:a5:53:16:75:49:
d7:9f:26:d2:50:e2:e8:a4:cb:2a:8d:34:01:2f:d5:
75:eb:d0:05:ce:bb:15:ea:c5:86:94:b6:9e:6a:6d:
4c:76:17:bb:fe:e8:84:f3:bf:bd:53:d2:91:15:78:
f8:13:40:0c:a0:64:d6:6f:6b:55:46:36:c4:ec:ef:
84:89:8f:b8:b1:8d:66:65:68:c1:d5:20:16:df:a7:
2b:5e:96:29:92:3b:c1:d4:d0:1a:96:e3:9f:54:b5:
e4:8b:13:11:db:ad:dd:93:ec:cb:cf:34:e9:72:a6:
36:c7:21:f1:63:26:c4:d8:08:5f:e9:99:fa:7f:4f:
e3:b5:0b:e0:03:50:c0:97:0e:2e:7b:f8:5c:f7:e6:
2b:bb:41:42:57:27:08:d5:74:35:0d:08:7b:bc:0c:
ff:a6:9a:ad:51:d6:4b:a3:10:27:19:c4:ba:31:2c:
59:46:89:70:df:3d:6e:9e:0a:49:53:a4:be:c9:91:
1d:d6:48:06:eb:44:18:96:6e:5a:51:44:69:60:8e:
72:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:9D:E2:DB:BB:28:EF:FB:3B:CC:7D:8D:79:73:A2:97:57:DE:C7:29
X509v3 Authority Key Identifier:
keyid:CF:EA:CE:71:4C:29:56:8E:F1:97:00:7B:14:1D:12:75:8C:C4:15:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z-rOcUwpVo7xlwB7FB0SdYzEFdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/0J3i27so7_s7zH2NeXOil1fexyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/z-rOcUwpVo7xlwB7FB0SdYzEFdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.208.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:06:5d:1e:45:83:59:b4:8d:3f:63:82:78:13:99:d4:bf:3c:
11:da:01:ac:23:b4:fe:5a:a4:e1:a2:61:fe:29:c9:bc:99:74:
07:b8:10:ce:c4:f1:99:85:16:20:85:13:e7:ca:93:f1:fc:90:
85:2a:e4:4f:56:56:cc:71:82:57:ff:46:d3:0d:6c:f3:c4:2f:
ea:3b:03:7c:bd:50:5a:67:65:f0:94:fa:8d:b8:21:f4:06:70:
6e:0a:f3:a9:e6:d7:19:df:f2:59:12:ba:36:c6:19:da:56:b2:
c2:bb:97:54:e7:97:5d:5e:c1:b9:dd:74:9a:e2:8a:22:d4:1f:
cc:fe:a3:c8:6c:ab:0c:b5:3c:17:2d:64:bb:b3:30:fa:d1:3b:
c7:c4:f6:38:18:13:04:25:59:9f:50:2e:03:fa:1a:6f:84:84:
ca:1f:09:c4:10:57:97:c1:e5:05:a5:f9:2f:c7:b7:7b:09:8b:
71:29:8b:4d:88:a8:b4:02:f4:6c:b1:98:2c:d4:27:01:cc:e6:
4b:44:14:48:2d:5f:02:95:c8:b3:f5:a3:aa:bd:aa:bc:56:b5:
17:05:9c:33:4d:b3:35:95:73:fb:58:1f:ae:c7:9f:ec:eb:ea:
6b:5f:e3:2a:81:77:54:52:cf:25:c6:e3:c5:ba:97:37:3b:1c:
2a:9d:70:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:45 2023 by rpki-client on console.sobornost.net