Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Ber1u4CFcT9kTWEg9UOGCYzRo2M.roa
File: Ber1u4CFcT9kTWEg9UOGCYzRo2M.roa (raw, json)
Hash identifier: lnn6jsMeUEX6Hl4Wy/x1n05Lrk4WEI7KJpBizhiEXDg=
Subject key identifier: 05:EA:F5:BB:80:85:71:3F:64:4D:61:20:F5:43:86:09:8C:D1:A3:63
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0183E63712800EAEACEFC6DF37BA75CAF796
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Ber1u4CFcT9kTWEg9UOGCYzRo2M.roa
Signing time: Mon 17 Oct 2022 13:51:52 +0000
ROA not before: Mon 17 Oct 2022 13:51:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24961
IP address blocks: 45.145.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:37:12:80:0e:ae:ac:ef:c6:df:37:ba:75:ca:f7:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 17 13:51:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05eaf5bb8085713f644d6120f54386098cd1a363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ca:24:22:a6:79:3a:91:b1:20:ee:71:68:7e:
e1:5a:50:26:a6:73:91:1a:92:f4:a0:58:6b:37:4d:
95:66:d2:21:85:a4:8e:aa:1e:4c:21:ce:95:ca:08:
f1:d4:1a:ec:99:3c:f6:e6:2a:3a:d8:35:6a:6e:d6:
30:36:eb:0a:2c:d2:d4:f8:d2:27:6a:02:e1:5a:28:
f8:f5:63:47:6c:88:6e:7c:17:21:9f:7e:e9:9a:52:
45:88:3e:6b:3a:00:a5:61:fe:8a:bc:fc:c7:4b:a2:
50:d9:b3:c0:06:e3:a2:1c:f1:59:10:ef:b4:16:a0:
c0:bd:d9:39:d4:cd:6a:0e:5a:07:3a:27:65:b1:ea:
6a:8b:20:1b:d2:ac:05:61:77:54:c8:40:e9:30:a9:
12:88:95:fa:f3:d9:4e:6b:4c:0f:b0:38:8b:3e:6d:
5c:03:7d:39:3e:91:a7:dd:d1:17:46:63:9b:df:c3:
12:9f:5f:62:aa:a9:18:64:62:f3:c4:b0:ff:13:9e:
d0:f7:45:a9:8c:0c:49:34:9f:3d:62:95:81:ce:ee:
ab:7a:da:ef:32:33:44:57:04:bb:92:3a:ca:c0:54:
c2:e8:25:7c:85:1d:dd:21:6a:55:c1:eb:a1:0e:31:
21:2a:00:af:bf:80:1b:1f:cc:a4:17:2e:9c:e5:83:
82:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:EA:F5:BB:80:85:71:3F:64:4D:61:20:F5:43:86:09:8C:D1:A3:63
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Ber1u4CFcT9kTWEg9UOGCYzRo2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.226.0/24
Signature Algorithm: sha256WithRSAEncryption
54:8c:37:81:01:a8:a9:89:f7:03:de:a3:c7:3f:72:5e:bd:63:
ac:8d:e9:8f:85:27:0b:d1:f3:24:24:09:cd:3a:a7:ea:dd:07:
fb:db:bb:7a:7e:22:7c:d1:59:0e:ef:5f:ab:9a:10:14:95:41:
77:52:2a:97:fb:d3:ed:31:05:78:85:f4:5c:78:89:3f:c6:db:
58:6f:95:29:b5:f0:0f:5b:3b:96:9d:89:3c:94:a7:d9:56:f1:
39:32:0c:6a:0e:f4:0e:dc:56:d1:17:bf:34:b0:ec:e2:9a:cb:
88:3d:6d:1f:e9:f5:3e:b4:15:b5:f7:e6:63:e4:1c:dc:82:e3:
7d:0f:61:32:e0:82:b1:6a:6e:a1:1b:07:86:7c:9e:1d:f1:d3:
5f:18:db:36:11:44:ef:29:70:18:d2:ef:f8:fb:cd:83:a2:ce:
e9:ce:b1:84:5c:4b:d7:1f:ce:cb:56:f0:d4:87:bc:56:95:b7:
d5:89:5c:1e:1b:f1:81:f5:e1:be:20:5c:5c:cb:fd:ea:7f:e7:
e7:ce:b7:2f:a6:95:a6:1c:43:a0:8d:40:6a:8e:6f:4f:0e:c3:
78:79:f1:45:a3:19:40:15:81:18:16:bb:6f:c1:8b:0d:53:a4:
d0:ce:60:19:5d:79:f7:0f:97:15:16:02:61:a9:fe:ad:d2:40:
00:84:93:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org