Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/MBhtLSbg-NLBjpM3c3VS96GFlbs.roa
File: MBhtLSbg-NLBjpM3c3VS96GFlbs.roa (raw, json)
Hash identifier: FG04gik5n1PECkZhiy5IY8vOTjL6+skLFcgU3KZVVFc=
Subject key identifier: 30:18:6D:2D:26:E0:F8:D2:C1:8E:93:37:73:75:52:F7:A1:85:95:BB
Certificate issuer: /CN=eaa5abe9f7304383198ba1ffa592790ecf2c3ceb
Certificate serial: 01853E55B2CB103E0A18D216D10EC9EB82EF
Authority key identifier: EA:A5:AB:E9:F7:30:43:83:19:8B:A1:FF:A5:92:79:0E:CF:2C:3C:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/MBhtLSbg-NLBjpM3c3VS96GFlbs.roa
Signing time: Fri 23 Dec 2022 09:34:41 +0000
ROA not before: Fri 23 Dec 2022 09:34:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60475
IP address blocks: 45.90.242.0/24 maxlen: 24
45.90.242.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3e:55:b2:cb:10:3e:0a:18:d2:16:d1:0e:c9:eb:82:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaa5abe9f7304383198ba1ffa592790ecf2c3ceb
Validity
Not Before: Dec 23 09:34:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30186d2d26e0f8d2c18e9337737552f7a18595bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d3:99:73:ff:e7:45:cf:4f:eb:c2:e5:86:4f:
12:3b:2d:e9:05:ff:01:b8:96:56:fc:a1:e6:b5:16:
2d:a9:b1:b9:13:cf:46:da:99:cd:87:ac:e3:56:1e:
8d:4f:69:81:f2:a9:bf:53:c8:74:13:3a:14:36:6a:
8b:22:07:7e:40:54:ba:d6:62:97:fd:10:5b:ba:0c:
1c:fa:51:c8:4b:2f:48:67:05:ae:fc:2f:0d:60:a5:
b7:71:99:4b:bb:bc:d9:a0:4f:da:de:5a:b3:27:4c:
d8:85:39:0c:90:07:93:2d:e3:91:6a:85:db:5c:79:
98:98:e3:87:06:1e:6f:c6:13:00:f7:a6:02:a8:da:
51:f7:09:a8:80:c0:c8:80:e9:29:4d:fc:9a:e8:99:
3a:b5:d4:0a:fe:64:89:79:12:c1:30:14:2f:06:71:
1f:90:70:b7:ec:42:d7:be:24:ae:c9:bf:d8:ea:09:
41:f7:49:78:63:1d:24:f7:bb:4b:0a:f3:d3:2e:c8:
ed:fc:2e:df:8f:32:51:4b:08:92:ec:eb:9d:e5:36:
1c:f4:92:b7:18:93:6c:8d:0c:58:74:37:17:46:c3:
df:f6:2f:44:9e:a5:0d:20:3b:74:c7:3a:ea:3e:11:
6d:1a:df:df:70:d8:63:09:37:49:67:87:58:01:81:
0f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:18:6D:2D:26:E0:F8:D2:C1:8E:93:37:73:75:52:F7:A1:85:95:BB
X509v3 Authority Key Identifier:
keyid:EA:A5:AB:E9:F7:30:43:83:19:8B:A1:FF:A5:92:79:0E:CF:2C:3C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/MBhtLSbg-NLBjpM3c3VS96GFlbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.242.0/23
Signature Algorithm: sha256WithRSAEncryption
68:fa:5d:b7:34:d0:f3:63:92:22:18:5e:27:b7:a0:70:97:09:
02:60:d6:30:8d:6f:40:54:77:75:ff:75:0d:2b:c9:b0:4c:eb:
b7:b5:19:2f:64:70:0d:65:70:58:e1:ce:30:7c:69:1e:14:b5:
40:f8:c9:5e:e1:0f:a3:f2:55:58:ef:1b:73:21:ef:1c:b8:cc:
d6:cd:8e:6a:cb:81:1b:95:a5:02:79:5a:2d:aa:d7:eb:bc:a6:
a3:42:b5:44:be:23:fc:7f:09:51:58:bc:06:ee:c9:82:34:b4:
30:cf:d0:9a:cb:d0:8c:08:0d:07:f3:05:7b:b5:fd:45:a8:f6:
e3:be:02:11:49:63:ad:dc:1e:f1:9b:7c:cf:f7:10:5b:52:ba:
a3:ee:7e:3d:2b:84:f9:d1:e8:32:c0:bf:73:09:69:5d:29:d4:
c4:72:b1:8f:9c:a5:cd:d9:f4:b9:82:7c:78:ff:0f:b4:a2:af:
9b:17:38:02:6f:08:9f:a5:2d:54:55:3f:2f:c7:12:e4:30:88:
6d:5f:65:51:3c:cf:05:24:92:ad:1a:5f:b5:64:44:b1:21:71:
2d:9a:bf:19:60:94:5c:f2:cf:a6:bf:57:a0:7b:22:cd:ed:f2:
e1:e9:b0:22:3a:39:02:30:de:bc:90:b3:89:89:e5:6c:d3:68:
8c:9c:23:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:55 2024 by rpki-client on console-fra.rpki-client.org