Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/37ea19-6f25-42bc-ad27-9886cb1b640e/1/7TXjX2Fpx9fvYeUAy4lH6F-n5qg.roa
File: 7TXjX2Fpx9fvYeUAy4lH6F-n5qg.roa (raw, json)
Hash identifier: 1rxcoPUkts5q0iBeJObMv04+mjwtG4uUE1E0s+Phlts=
Subject key identifier: ED:35:E3:5F:61:69:C7:D7:EF:61:E5:00:CB:89:47:E8:5F:A7:E6:A8
Certificate issuer: /CN=dd982f979a2d25ebb2dab2654b8c27c928cf5ac7
Certificate serial: 05ADF14E
Authority key identifier: DD:98:2F:97:9A:2D:25:EB:B2:DA:B2:65:4B:8C:27:C9:28:CF:5A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Zgvl5otJeuy2rJlS4wnySjPWsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/37ea19-6f25-42bc-ad27-9886cb1b640e/1/7TXjX2Fpx9fvYeUAy4lH6F-n5qg.roa
Signing time: Sat 01 Jan 2022 06:56:27 +0000
ROA not before: Sat 01 Jan 2022 06:56:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208135
IP address blocks: 45.158.40.0/22 maxlen: 24
2a0f:5380::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95285582 (0x5adf14e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd982f979a2d25ebb2dab2654b8c27c928cf5ac7
Validity
Not Before: Jan 1 06:56:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed35e35f6169c7d7ef61e500cb8947e85fa7e6a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7a:bc:4e:00:75:da:e9:40:f6:6d:26:11:13:
71:76:8b:63:ba:e0:28:6a:79:83:47:81:20:e2:9d:
bc:30:c5:92:29:b1:6d:f4:68:75:23:1f:81:20:1f:
68:e6:4b:91:96:4d:48:64:76:45:03:6c:2e:2f:27:
c3:c7:8b:21:28:90:a6:99:4a:5b:b7:a1:3a:ff:76:
2d:a9:36:00:9f:fd:67:32:d7:4d:17:a3:b9:1c:6d:
55:64:39:72:c8:d9:76:da:99:19:6b:9c:d1:6d:b0:
cb:ed:8f:a9:be:9a:5a:11:bc:4f:09:19:aa:d9:90:
06:56:7a:2d:b0:d3:b4:25:6a:f1:51:de:5b:f1:2a:
49:99:b5:90:bd:b3:c5:ee:73:05:c0:e3:78:67:05:
ec:08:6c:71:40:42:b0:d6:f9:f2:4d:46:f4:95:1f:
7b:a1:77:c7:c4:3a:77:1f:13:0f:6d:98:db:24:9d:
fd:23:65:cb:80:88:14:3d:45:70:2e:1d:5d:cb:63:
f0:be:6e:97:ed:d6:d0:4a:d6:3e:3c:72:7f:c6:0a:
f6:04:b3:78:de:c3:e0:aa:10:bc:ac:28:aa:0b:9f:
21:0c:d7:5d:81:8c:d3:3c:97:91:32:bc:b6:c8:82:
2c:70:70:06:54:fb:bc:24:ad:3f:20:d1:9b:9e:fa:
2d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:35:E3:5F:61:69:C7:D7:EF:61:E5:00:CB:89:47:E8:5F:A7:E6:A8
X509v3 Authority Key Identifier:
keyid:DD:98:2F:97:9A:2D:25:EB:B2:DA:B2:65:4B:8C:27:C9:28:CF:5A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Zgvl5otJeuy2rJlS4wnySjPWsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/37ea19-6f25-42bc-ad27-9886cb1b640e/1/7TXjX2Fpx9fvYeUAy4lH6F-n5qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/37ea19-6f25-42bc-ad27-9886cb1b640e/1/3Zgvl5otJeuy2rJlS4wnySjPWsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.40.0/22
IPv6:
2a0f:5380::/29
Signature Algorithm: sha256WithRSAEncryption
30:e2:13:a6:a4:33:2e:d0:ac:57:45:9c:ef:54:b5:b0:19:4f:
7f:31:ae:c1:ee:43:24:ce:f7:4d:5c:30:c9:e1:be:41:45:64:
ef:03:0c:f0:a2:07:70:d1:87:4c:6c:4c:17:c0:b9:27:3b:d9:
84:5d:b7:96:e4:f6:e4:28:d3:a2:3c:69:c5:cd:89:ed:67:51:
b0:66:a1:9e:a7:ea:9b:1e:cd:36:60:ed:31:ab:48:59:9e:bc:
e7:03:f2:ee:54:f8:d0:0e:c2:d0:e9:a5:eb:a2:c3:4e:34:e6:
65:c8:7d:17:a1:bd:0e:35:78:2c:58:d1:06:9a:f8:71:5a:cf:
5e:34:3b:c4:ae:15:4e:fe:46:15:b2:d3:89:61:67:6d:98:44:
3a:5e:6d:06:6f:3e:f6:70:36:ff:2d:8d:c7:57:c3:4d:f1:21:
ef:76:d5:fe:f5:37:41:83:34:90:34:70:1d:71:b6:58:50:d7:
88:c5:93:2e:43:65:c9:f9:9f:d9:cb:21:7d:38:9c:68:86:f5:
3c:38:97:e6:e9:95:73:ea:f5:f5:7b:d0:68:02:62:47:13:87:
09:f8:2e:d8:7e:e4:db:5c:c9:b5:d8:c2:3c:ed:c5:56:95:b2:
a4:b4:c8:06:bc:ea:cb:a5:52:8f:47:fb:f9:0d:f4:ed:e9:79:
49:27:7d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net