Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/rsMYCQKU-ERArb7lEjOgFwFHqyI.roa
File: rsMYCQKU-ERArb7lEjOgFwFHqyI.roa (raw, json)
Hash identifier: egmKWATyCIPHpALY7l4ch7DNmxNssSv9ITRZJcXdJtA=
Subject key identifier: AE:C3:18:09:02:94:F8:44:40:AD:BE:E5:12:33:A0:17:01:47:AB:22
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0184EBA9BE91F79BCFD88CB28A928DAF4DDA
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/rsMYCQKU-ERArb7lEjOgFwFHqyI.roa
Signing time: Wed 07 Dec 2022 08:18:00 +0000
ROA not before: Wed 07 Dec 2022 08:18:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33185
IP address blocks: 45.135.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:eb:a9:be:91:f7:9b:cf:d8:8c:b2:8a:92:8d:af:4d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Dec 7 08:18:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aec318090294f84440adbee51233a0170147ab22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8b:9a:d3:b1:eb:01:85:6d:b9:22:ac:cf:74:
ae:97:cb:48:c7:7f:bd:0b:b2:b3:12:6e:f1:d9:73:
c9:4d:ce:13:a6:40:7b:e4:84:35:38:56:0f:6c:56:
46:26:4c:bc:6c:5b:ce:c8:04:33:10:02:3f:6d:85:
41:93:e3:18:d3:fa:19:36:03:f6:8b:09:b3:32:fa:
8d:7a:26:7f:2b:2f:b0:b3:99:29:d4:b4:be:bc:4a:
1d:3c:4e:b9:a1:ab:35:e8:b7:b6:b3:c4:a6:ab:a4:
70:7c:1f:64:28:68:af:95:99:0c:e7:c5:13:70:f8:
fa:ec:ce:39:2d:a1:45:e8:06:04:5e:39:2a:8f:e9:
65:4f:69:d6:86:8f:f9:cc:f7:6d:29:c6:90:70:0b:
6b:53:de:cc:92:86:17:bf:d5:83:ff:68:ec:55:8c:
ea:75:3d:8d:67:18:30:34:d4:4d:bf:f8:83:0b:46:
c6:e4:b0:2d:2e:79:35:8b:57:39:75:60:08:05:c3:
69:90:5f:a4:55:42:f0:57:e6:3e:51:43:54:18:da:
34:a5:da:ec:b3:02:e1:d7:7d:35:d1:42:48:0d:e8:
6f:08:a9:b2:f8:ad:9e:3f:c9:6f:c7:de:c8:dc:0b:
24:f0:8a:e0:64:08:92:76:30:b7:a4:21:85:70:c6:
48:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C3:18:09:02:94:F8:44:40:AD:BE:E5:12:33:A0:17:01:47:AB:22
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/rsMYCQKU-ERArb7lEjOgFwFHqyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.148.0/24
Signature Algorithm: sha256WithRSAEncryption
06:6b:17:b3:a0:17:a9:a3:15:96:62:17:e9:5c:72:93:0f:14:
68:9e:7a:c9:78:21:96:52:00:73:06:7a:0f:b2:43:13:9d:26:
df:a5:58:ee:5a:c6:45:41:2d:6d:e2:de:a7:07:62:0f:59:55:
39:68:86:f4:f7:14:67:2d:78:2e:2f:47:7c:5c:7f:a2:e2:91:
de:c4:a0:3e:3d:d4:04:12:6f:59:64:2e:90:50:09:eb:7a:05:
23:99:46:1d:22:f0:7c:18:39:02:af:c5:61:ab:62:17:a5:a1:
1f:92:33:28:62:c4:28:a1:4c:78:df:dd:a6:df:34:04:5a:3f:
05:3e:66:73:88:66:c4:87:72:bb:ad:c5:07:be:a6:33:ce:21:
2b:79:1b:45:f8:ff:67:c8:bf:ff:c2:78:49:31:f9:d8:24:92:
16:99:fb:99:04:3e:29:8c:e3:00:b7:f9:fb:06:63:2d:3c:ee:
f2:53:c6:90:20:96:cb:47:f9:53:fe:49:15:67:78:43:56:c6:
a5:98:ac:17:d2:ae:b8:1c:b6:74:f9:9f:d0:7f:df:f9:be:9e:
da:f4:3f:cf:23:ef:f6:28:0d:1c:72:52:37:00:69:83:17:14:
8f:19:22:73:9a:19:8c:93:d8:46:da:6e:dc:a4:3d:95:f7:9c:
d5:c1:bf:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:31 2023 by rpki-client on console-fra.rpki-client.org