Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/f816d6-016a-4135-99e3-8c42bb2231ab/1/tdePa8J16h8mMUCdoYCB0jlXvRg.roa
File: tdePa8J16h8mMUCdoYCB0jlXvRg.roa (raw, json)
Hash identifier: bWT4YG0W20pDNliKsxcVJ5crn8bfJ1ZQqFPolcH7hP0=
Subject key identifier: B5:D7:8F:6B:C2:75:EA:1F:26:31:40:9D:A1:80:81:D2:39:57:BD:18
Certificate issuer: /CN=72df697430cbb57c49a0a1993024d6d329f7e565
Certificate serial: 01D6640C
Authority key identifier: 72:DF:69:74:30:CB:B5:7C:49:A0:A1:99:30:24:D6:D3:29:F7:E5:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ct9pdDDLtXxJoKGZMCTW0yn35WU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/f816d6-016a-4135-99e3-8c42bb2231ab/1/tdePa8J16h8mMUCdoYCB0jlXvRg.roa
Signing time: Sat 01 Jan 2022 10:04:02 +0000
ROA not before: Sat 01 Jan 2022 10:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211222
IP address blocks: 45.95.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30827532 (0x1d6640c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72df697430cbb57c49a0a1993024d6d329f7e565
Validity
Not Before: Jan 1 10:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5d78f6bc275ea1f2631409da18081d23957bd18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9c:b1:f6:f5:ad:9c:9d:ba:a8:ce:9d:70:ff:
68:b4:03:27:06:13:a9:71:ea:1e:72:41:68:92:b4:
99:94:15:2c:87:b0:66:9b:f8:df:52:c0:30:6f:f8:
3f:4d:ae:1f:db:ec:07:b0:29:23:a7:f0:8b:ed:3c:
eb:2a:24:84:4c:93:14:c3:5f:7f:9f:c5:4f:9f:b7:
5e:22:d4:f5:a9:6d:f8:67:14:cf:1a:31:c6:c8:ba:
61:47:42:45:db:5f:77:73:13:ac:5e:73:cf:3d:e4:
ef:a6:08:99:44:64:a7:ef:32:6a:ab:31:80:0a:16:
05:60:28:b6:a2:54:ca:d7:76:7a:aa:fd:f4:17:46:
51:d4:cf:ad:ba:96:e9:91:2d:20:46:18:27:3e:33:
37:ee:6a:0d:75:e5:13:9a:b1:c2:97:05:e0:0b:6a:
e6:f4:b4:83:0f:a4:1f:5f:82:87:f0:19:94:0c:af:
6d:36:5e:81:d9:8e:41:9d:25:d4:3a:77:53:99:5e:
ff:1f:13:88:3f:23:e6:4e:6b:99:f2:3b:45:c6:1a:
1a:13:9b:bf:04:85:98:eb:7c:c1:31:a3:f5:0b:f6:
52:63:b3:ae:c0:ce:d8:4b:69:11:13:e4:0a:a8:61:
45:5e:5a:a3:fd:1a:eb:7d:ef:55:a7:ec:33:6b:69:
34:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D7:8F:6B:C2:75:EA:1F:26:31:40:9D:A1:80:81:D2:39:57:BD:18
X509v3 Authority Key Identifier:
keyid:72:DF:69:74:30:CB:B5:7C:49:A0:A1:99:30:24:D6:D3:29:F7:E5:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ct9pdDDLtXxJoKGZMCTW0yn35WU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/f816d6-016a-4135-99e3-8c42bb2231ab/1/tdePa8J16h8mMUCdoYCB0jlXvRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/f816d6-016a-4135-99e3-8c42bb2231ab/1/ct9pdDDLtXxJoKGZMCTW0yn35WU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.10.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:a3:49:46:39:d6:14:ad:97:46:50:02:2f:d0:9d:cb:0a:77:
86:b8:84:2a:3e:5b:9d:97:13:10:cd:25:f6:ba:1a:ec:88:6e:
91:33:83:d0:18:13:c4:fb:52:56:29:e3:5c:c3:95:a3:c3:c5:
87:c5:6a:0c:58:11:23:d8:58:dc:c7:aa:27:b4:17:f2:78:9e:
02:f6:21:13:f4:bc:38:3d:b0:a6:c1:df:c6:3e:cc:ca:b0:01:
2e:f8:be:10:66:d2:1d:d3:67:5c:73:12:90:27:a3:f7:21:1d:
1c:0d:9a:4e:85:95:06:84:20:47:a7:51:96:16:79:f6:47:4b:
96:f5:9d:d0:96:bc:f9:6e:08:c3:36:27:e9:08:ed:b4:c6:1b:
03:aa:cb:42:69:77:c3:eb:24:80:4a:ef:26:5e:e6:2a:ad:d1:
c9:19:f3:0c:67:04:ce:c0:5f:f9:cd:2a:a4:b3:e1:3c:65:00:
0b:b7:64:b2:2c:f7:d7:66:68:24:1f:64:6c:58:00:11:a2:a0:
93:e8:bb:91:32:f6:ce:52:63:4e:0b:65:5a:5f:b7:7d:15:f9:
c6:48:57:53:4e:2a:c0:93:8c:39:e0:7f:8c:b5:f4:48:b1:c7:
a3:a0:a7:0f:6b:31:f0:36:92:c3:8f:c6:11:c6:62:29:d4:25:
69:27:ba:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:39 2023 by rpki-client on console.sobornost.net