Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/D57TBcUkgblMkFvkRMepr2t57r8.roa
File: D57TBcUkgblMkFvkRMepr2t57r8.roa (raw, json)
Hash identifier: /LaaCvCOKlom0dcMyJ8q2L5hS4Cg8mW4naDrG9zyWQI=
Subject key identifier: 0F:9E:D3:05:C5:24:81:B9:4C:90:5B:E4:44:C7:A9:AF:6B:79:EE:BF
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01851043C14DDD7F19BBDA437230C45FE865
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/D57TBcUkgblMkFvkRMepr2t57r8.roa
Signing time: Wed 14 Dec 2022 10:52:33 +0000
ROA not before: Wed 14 Dec 2022 10:52:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.8.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:10:43:c1:4d:dd:7f:19:bb:da:43:72:30:c4:5f:e8:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Dec 14 10:52:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f9ed305c52481b94c905be444c7a9af6b79eebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:da:00:33:d1:cd:28:a7:f4:af:4f:fd:9c:36:
4b:ec:d6:bd:8a:69:f2:3b:40:bb:8c:96:d1:20:8d:
6c:9e:11:b7:25:9c:8e:80:01:78:b6:45:a3:b3:80:
4d:87:3f:46:8b:66:e4:3c:e8:39:7f:df:70:05:6e:
ce:2d:e0:76:5a:4a:db:79:26:b0:8e:7f:95:37:c8:
90:81:96:eb:1e:06:d6:31:1f:90:65:ac:64:b5:3c:
dd:35:86:9c:85:61:58:d9:96:59:5b:7b:90:08:94:
f8:35:33:77:76:78:62:70:87:14:ab:66:58:a4:8a:
e5:ce:b0:88:11:7e:b9:a3:0d:99:c2:4a:80:36:bc:
67:f1:2d:94:9f:c6:4b:0e:df:57:26:0d:df:43:8f:
ab:c5:b4:9b:7a:6e:0f:2c:ee:9b:ae:e8:09:ea:4f:
52:e8:66:7d:46:de:46:ff:3d:fe:14:b3:2b:b3:87:
67:34:9b:dc:d2:31:1d:55:5c:ae:c8:92:e2:3d:b3:
44:33:d8:d8:d1:ed:81:7b:ec:ab:a4:a5:18:3e:0b:
be:08:55:5c:1c:41:f3:30:1a:33:3d:6f:11:a4:92:
b1:df:56:d3:e3:33:31:a1:02:4e:69:e3:bc:9c:60:
4d:26:93:94:20:c9:94:34:96:6e:2c:36:35:4f:2e:
53:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:9E:D3:05:C5:24:81:B9:4C:90:5B:E4:44:C7:A9:AF:6B:79:EE:BF
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/D57TBcUkgblMkFvkRMepr2t57r8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.207.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:1d:61:1f:3d:a9:80:9e:58:fa:5f:d7:8d:76:d5:a3:39:67:
39:81:ee:e1:60:fd:72:c1:00:8d:8b:01:20:97:e6:09:4e:40:
47:0f:8e:9c:69:30:36:9f:6b:e7:24:3a:a0:7c:bf:19:c3:04:
9e:ed:9d:3d:bc:21:23:fd:36:74:35:39:5c:5e:7f:1e:77:84:
28:b7:76:bb:6a:91:dc:31:b0:36:73:b4:22:b0:fc:e2:5d:39:
ce:c6:b1:56:eb:f5:28:30:06:77:0f:8c:60:65:53:20:45:9f:
cf:3e:12:ff:74:56:07:2d:4d:54:69:c9:14:a9:a5:05:94:59:
08:c6:0b:d5:60:cc:0f:5b:6a:d1:a0:89:f1:20:b9:22:91:b1:
93:a7:2b:f4:af:94:18:b4:b5:dc:2f:18:aa:a3:cd:bb:5a:65:
80:53:13:18:bc:7e:c0:29:05:8c:cf:68:0d:8c:db:cf:e4:39:
c5:e3:2b:22:b1:27:05:1b:35:cd:b6:21:99:16:08:80:20:f4:
5f:e5:7e:6f:13:39:69:2d:16:95:28:be:63:16:f3:0e:be:c6:
90:df:c5:4c:e9:67:5d:3e:cd:09:05:51:8c:76:13:1c:02:2c:
1d:25:40:fe:f4:e3:1d:9e:e1:49:0f:6a:d0:b5:67:ca:ab:14:
3e:c5:ba:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:57 2023 by rpki-client on console.sobornost.net