Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/ed9Xz67Cz_S8OjJJbxL6QiQHAts.roa
File: ed9Xz67Cz_S8OjJJbxL6QiQHAts.roa (raw, json)
Hash identifier: saYdulDIYEo0EYfYr8eGE27uuY9kXW6ubnBi8UZlsPU=
Subject key identifier: 79:DF:57:CF:AE:C2:CF:F4:BC:3A:32:49:6F:12:FA:42:24:07:02:DB
Certificate issuer: /CN=b68a994e42e60da4f4a5475b15f5e27516c7cf14
Certificate serial: 07402BE5
Authority key identifier: B6:8A:99:4E:42:E6:0D:A4:F4:A5:47:5B:15:F5:E2:75:16:C7:CF:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/ed9Xz67Cz_S8OjJJbxL6QiQHAts.roa
Signing time: Sat 01 Jan 2022 05:06:22 +0000
ROA not before: Sat 01 Jan 2022 05:06:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46616
IP address blocks: 45.149.121.0/24 maxlen: 24
45.149.120.0/22 maxlen: 22
45.149.120.0/24 maxlen: 24
45.149.123.0/24 maxlen: 24
45.149.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121646053 (0x7402be5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68a994e42e60da4f4a5475b15f5e27516c7cf14
Validity
Not Before: Jan 1 05:06:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79df57cfaec2cff4bc3a32496f12fa42240702db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:66:98:6f:6b:26:a9:04:8d:94:08:d8:3c:d3:
5e:af:95:df:f9:23:93:c7:47:be:70:b4:80:73:03:
0e:1c:fb:c5:3f:5b:32:43:01:ea:24:1e:87:82:0a:
46:e5:ac:11:64:8d:45:c8:f8:4c:6c:34:32:5b:e1:
0f:a2:21:cf:4e:33:9d:45:51:22:86:46:c9:2c:58:
52:2b:fb:28:27:55:75:e3:33:30:1d:53:b3:66:fb:
f4:dc:eb:82:5e:8b:08:ef:4e:17:23:45:0a:0f:d1:
e6:60:6b:93:37:fc:a8:2b:81:c7:7a:99:ff:7c:3a:
10:8f:24:1b:16:3a:81:e1:40:86:37:9c:e4:60:ca:
c7:4f:c1:ba:30:c8:b9:22:d4:97:f1:ff:92:a5:58:
c2:6e:4f:84:4c:79:b8:f7:e4:ec:b1:1f:22:6b:aa:
6c:65:a1:6c:50:2b:35:cf:c2:ad:7e:65:70:d8:a1:
33:f4:9b:fb:9a:76:6c:96:2b:9a:c7:a6:14:ca:11:
90:f7:43:c1:b2:f5:ed:f2:9d:95:d8:36:ba:d0:f6:
21:0c:e0:c2:96:8a:98:4d:bb:d2:34:3c:81:ad:7b:
41:50:7d:3e:a1:12:c6:69:f4:a5:e4:66:0f:06:60:
97:5e:d6:a9:d6:5b:1c:46:63:d4:18:fc:95:a8:4d:
5f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:DF:57:CF:AE:C2:CF:F4:BC:3A:32:49:6F:12:FA:42:24:07:02:DB
X509v3 Authority Key Identifier:
keyid:B6:8A:99:4E:42:E6:0D:A4:F4:A5:47:5B:15:F5:E2:75:16:C7:CF:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/ed9Xz67Cz_S8OjJJbxL6QiQHAts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.120.0/22
Signature Algorithm: sha256WithRSAEncryption
42:74:9d:08:2a:b7:84:23:13:09:6d:11:1d:15:67:4f:78:4a:
e0:c2:0d:9f:77:f2:ec:7e:a7:47:bc:b4:12:8f:96:12:cb:47:
04:0b:80:6f:82:91:e4:31:09:80:f2:63:75:91:c1:76:62:af:
d5:a3:ae:85:62:3c:b4:10:8c:3b:5b:f0:ee:0f:b1:47:97:bc:
52:2d:8c:3d:e3:6d:4c:d5:c6:e1:40:ed:b2:c6:1a:cb:a4:9e:
68:ac:52:0f:d9:14:88:98:a1:0c:82:ae:fd:f0:3e:bc:32:9e:
76:69:0e:3a:41:36:d9:59:f6:29:56:5b:ef:cb:0b:b7:27:36:
94:1b:b0:37:9c:2a:06:f2:f3:18:bc:83:13:ad:69:01:fb:54:
2f:f7:ea:d0:f6:f1:1f:34:90:6e:1a:a3:7e:fa:d6:7c:16:4f:
c7:aa:04:4d:4a:81:fe:fc:a1:15:c8:5a:4c:01:5b:b2:47:e2:
c6:26:19:7c:e0:7a:e4:7e:cc:76:5e:e8:8f:31:5b:84:d7:21:
87:b6:d4:a6:f8:15:b8:66:f9:6d:88:09:38:c1:03:8d:4a:2e:
7a:90:6c:25:22:2c:90:14:2f:7c:36:f3:30:79:d0:93:d1:30:
8e:8e:84:d8:4b:f0:84:da:6c:72:b8:87:7a:18:e9:b9:c0:33:
c6:a2:f7:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:58 2024 by rpki-client on console-fra.rpki-client.org