Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/CO50Jvx23hKGYV9mfAtC_Y-zUkg.roa
File: CO50Jvx23hKGYV9mfAtC_Y-zUkg.roa (raw, json)
Hash identifier: fxU59sumqN4+ezVxeM/w2ldo9yA6ms051Ng4cOIJz2s=
Subject key identifier: 08:EE:74:26:FC:76:DE:12:86:61:5F:66:7C:0B:42:FD:8F:B3:52:48
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 0392464D
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/CO50Jvx23hKGYV9mfAtC_Y-zUkg.roa
Signing time: Sat 01 Jan 2022 01:55:07 +0000
ROA not before: Sat 01 Jan 2022 01:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.148.132.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59917901 (0x392464d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Jan 1 01:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08ee7426fc76de1286615f667c0b42fd8fb35248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:62:b8:02:07:fb:aa:74:a5:a9:b7:4c:d1:52:
a2:72:6d:07:51:c6:ab:37:6b:a0:e6:4d:d0:a1:a0:
6d:ff:1e:90:7a:8c:9e:58:8d:37:5f:8c:41:a7:8a:
17:15:11:7a:1c:7d:a7:41:8d:9c:91:28:97:53:39:
2a:bc:b6:16:4f:25:04:06:85:e2:d7:81:40:54:9f:
79:69:58:39:fc:f0:cd:2f:7c:65:45:4e:c8:c2:33:
cd:92:89:8a:1a:c4:c3:b9:cc:3a:9d:ab:4f:41:6e:
43:aa:0b:93:24:1f:46:b4:11:6f:35:8f:55:80:f7:
05:ac:c7:a8:0e:bd:23:bb:d1:60:b9:ca:21:48:d2:
5d:06:9f:01:51:a8:35:8e:61:a0:a3:97:f1:f6:59:
6b:a9:b8:18:d7:3d:54:78:56:cc:ee:75:ff:76:4f:
42:db:46:81:f0:d2:ff:a4:0b:01:16:f9:89:72:f6:
ab:23:16:6c:15:bd:a5:af:17:07:4d:0f:9c:72:c2:
a1:34:f6:90:c3:75:5d:15:4a:64:09:cf:6e:04:f7:
a4:1b:05:15:3a:6f:5c:f6:e7:31:37:0e:58:b9:be:
db:4f:c6:62:f8:a7:93:95:be:11:cb:81:ec:12:13:
6d:1a:39:99:16:a6:ed:3d:a9:e1:84:d6:00:dd:65:
5f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:EE:74:26:FC:76:DE:12:86:61:5F:66:7C:0B:42:FD:8F:B3:52:48
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/CO50Jvx23hKGYV9mfAtC_Y-zUkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.132.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:43:45:3c:00:82:e0:ec:c4:7f:73:91:2c:11:cf:e6:37:3b:
c4:d2:d8:77:bc:d4:72:5f:0d:a3:1b:e7:b6:98:20:02:f0:e8:
f0:99:bf:70:70:d8:04:fa:b4:32:1c:26:5a:cf:71:81:5a:0d:
ce:52:7a:4f:3d:c7:5f:63:21:de:2b:8d:3e:ec:98:46:ef:68:
29:21:90:2c:69:41:1b:c1:50:02:43:78:75:d2:de:ea:9f:7a:
0c:21:6d:9b:7d:c1:63:aa:76:bb:27:28:12:bf:df:34:d4:ff:
4f:7e:44:70:c6:c1:24:d6:3d:c2:70:0a:f1:56:77:81:e9:82:
24:e0:9b:3e:21:e3:d8:00:4a:24:8c:db:3a:d0:87:91:15:69:
5b:8d:7e:23:1a:57:e1:a5:ae:8c:4b:e9:de:65:db:6a:37:3a:
47:63:be:ac:57:e1:c9:d1:21:9d:00:d3:60:22:dc:55:ca:2c:
0b:ff:b7:0b:69:0b:fa:42:22:c9:3b:50:bc:72:b3:69:96:43:
f7:96:69:b6:9b:aa:cc:e2:c3:10:35:08:ea:b3:d8:1f:f7:2c:
6f:41:f6:92:f8:f3:01:cc:45:53:69:1c:d7:4c:cc:18:be:85:
ed:94:97:98:fb:84:47:3f:05:49:41:83:af:c1:a1:ad:2e:53:
8c:6f:f4:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:51 2024 by rpki-client on console-fra.rpki-client.org