Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/sRZ1tCNxWcOjRi8JIXkvaPaZn7Q.roa
File: sRZ1tCNxWcOjRi8JIXkvaPaZn7Q.roa (raw, json)
Hash identifier: BpmfAsnbrKgiInhYEI8tZV14EjADEdjQW7+IXD7IZCg=
Subject key identifier: B1:16:75:B4:23:71:59:C3:A3:46:2F:09:21:79:2F:68:F6:99:9F:B4
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0AF5763F
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/sRZ1tCNxWcOjRi8JIXkvaPaZn7Q.roa
Signing time: Mon 13 Jun 2022 10:56:14 +0000
ROA not before: Mon 13 Jun 2022 10:56:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48658
IP address blocks: 45.131.64.0/24 maxlen: 24
45.137.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183858751 (0xaf5763f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jun 13 10:56:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b11675b4237159c3a3462f0921792f68f6999fb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:1c:02:ab:78:85:65:fe:a0:c1:91:6f:6a:e1:
a6:8a:0c:e7:4b:72:2f:1b:0c:9c:97:6b:bf:ad:ce:
02:e8:ef:93:73:f3:56:87:e2:c7:9a:ba:93:67:cd:
01:4c:12:69:1c:97:84:41:40:0e:51:f4:40:ae:0b:
e8:ce:2c:09:a2:bb:60:d4:f6:08:c9:a3:b5:85:ec:
b7:91:08:07:e7:d5:35:44:03:53:b2:92:f4:eb:82:
d9:f0:f7:2b:d0:fc:3f:c9:51:08:cc:75:9c:40:65:
9d:74:50:4c:43:f3:d1:27:24:1e:51:e3:cc:de:d0:
38:47:43:12:55:df:d2:c9:e4:ed:cd:a0:47:18:87:
d8:01:96:cb:9b:0e:65:ed:9a:2d:34:ea:4e:6c:db:
c8:66:bf:57:63:87:d5:68:fc:ef:de:59:c9:50:4d:
57:ae:b4:c4:35:e5:be:e2:dc:78:fd:ed:a3:79:dd:
f5:0b:a2:e2:d2:f8:f1:c4:4b:76:ba:13:b0:ee:f6:
56:85:87:4e:31:07:fa:54:06:b0:29:12:68:bc:bf:
7d:62:98:03:cf:76:a6:c0:ee:d7:ee:72:00:a8:35:
ca:a7:59:16:b3:38:3b:b9:c9:36:24:36:ed:38:46:
b1:98:dc:7a:92:0a:02:12:e9:40:c4:49:37:24:73:
c5:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:16:75:B4:23:71:59:C3:A3:46:2F:09:21:79:2F:68:F6:99:9F:B4
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/sRZ1tCNxWcOjRi8JIXkvaPaZn7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.64.0/24
45.137.203.0/24
Signature Algorithm: sha256WithRSAEncryption
26:5c:76:68:ad:59:ba:14:48:b0:c1:22:45:04:a4:1d:02:46:
a9:bf:3f:e6:4b:dc:25:c6:99:c4:2b:dc:fc:e0:9b:72:ce:f1:
d3:f0:eb:48:21:95:07:aa:6a:fc:46:aa:29:2e:9c:fa:7f:32:
6f:87:95:74:39:f6:7d:a3:48:e3:56:52:74:e7:cc:86:f7:90:
7a:00:69:f5:e4:7d:29:8f:8b:bb:1e:bf:0d:73:f6:bf:10:87:
89:2c:d7:dc:a6:c0:f0:59:62:bb:6e:97:b7:af:d3:43:9c:f7:
c1:22:fa:fc:33:25:22:bb:a4:fd:49:fe:bc:20:a3:d9:e1:18:
42:5f:1c:04:d5:20:ac:64:c8:82:ff:3e:0b:8c:ee:01:5a:0f:
e3:55:02:84:76:d7:08:82:c9:88:d0:a8:f5:92:42:7a:c2:91:
54:f6:0e:3b:3d:38:41:37:1b:9e:c7:c7:54:84:25:51:99:b3:
5a:6b:6f:ae:57:c0:a3:25:0c:e2:99:82:f0:71:53:bb:63:5e:
20:3f:36:14:fc:87:e3:65:06:bd:31:c5:2c:45:c8:0d:01:7b:
04:3e:fd:43:7a:93:b2:a5:cc:a5:db:b9:7c:49:ed:d4:d5:bc:
27:07:53:7a:c7:fc:2e:34:85:07:fb:53:6c:ee:5f:93:87:27:
01:8c:03:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:31 2023 by rpki-client on console-fra.rpki-client.org