Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/aEord4uplkuNKHr_X4hUlkl874I.roa
File: aEord4uplkuNKHr_X4hUlkl874I.roa (raw, json)
Hash identifier: Eoo22BfDeTUyPv4ENrQupQ5A0BAmRqXfJDqByTZ9YM0=
Subject key identifier: 68:4A:2B:77:8B:A9:96:4B:8D:28:7A:FF:5F:88:54:96:49:7C:EF:82
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 048CFF58
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/aEord4uplkuNKHr_X4hUlkl874I.roa
Signing time: Thu 21 Apr 2022 21:05:52 +0000
ROA not before: Thu 21 Apr 2022 21:05:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 45.148.132.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76349272 (0x48cff58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Apr 21 21:05:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=684a2b778ba9964b8d287aff5f885496497cef82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0a:e1:fa:e6:ce:d1:33:e9:05:5c:23:d1:9d:
06:fa:27:9b:6f:70:30:b1:3c:ed:60:d7:47:f3:83:
90:29:4e:a1:ac:5b:9a:ec:35:f4:18:05:1d:b8:e5:
61:20:28:61:d2:17:b7:60:5e:a5:4e:37:81:7f:77:
78:32:8b:0b:3a:06:35:6d:61:ce:bf:b3:d5:13:8f:
31:7a:7a:ba:be:cd:52:10:7a:85:e3:b7:f4:59:42:
99:6b:61:2d:36:3f:b7:a7:55:58:ba:dd:5d:fb:b1:
b8:fe:65:4f:57:7a:0a:84:02:50:b8:f8:48:60:ad:
83:a5:65:67:00:07:4e:2e:c5:56:36:bf:6d:31:f8:
57:50:df:5c:12:2f:4c:fb:bd:93:fb:9b:15:45:e5:
cb:a3:b2:93:28:a7:ce:b1:a1:e3:09:bf:66:19:b9:
b0:0b:b5:ad:c7:bd:b1:46:72:45:ff:11:e9:a9:85:
b9:29:83:ff:e5:a5:77:a9:e1:f6:f3:ff:0a:a0:da:
b1:27:f0:47:51:8a:db:3b:87:4c:9d:1b:b3:fb:46:
b5:b9:c4:b0:89:53:14:51:2d:bf:e4:fa:07:73:31:
3d:62:c9:f2:53:d7:f3:cb:11:bd:b6:a0:ca:02:2b:
ac:04:75:1b:72:d5:3d:89:44:52:6c:ce:da:d2:89:
06:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:4A:2B:77:8B:A9:96:4B:8D:28:7A:FF:5F:88:54:96:49:7C:EF:82
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/aEord4uplkuNKHr_X4hUlkl874I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.132.0/22
Signature Algorithm: sha256WithRSAEncryption
09:a3:1d:45:80:50:bb:90:a8:48:9d:0a:22:07:63:b7:61:69:
6b:f2:04:7d:d7:7d:47:7a:5e:ec:46:6c:7e:0b:ce:56:b6:0c:
dc:69:89:9c:21:4d:b7:cd:47:8e:d6:d9:2a:5c:69:52:71:3e:
9b:98:63:fe:54:8d:0c:65:b5:f9:b4:99:4d:fd:0c:e0:00:fa:
7b:76:12:fa:24:56:c1:d8:2d:45:fe:98:b5:88:21:d1:a1:25:
fd:6c:a1:ce:b8:25:6e:a6:05:e8:0c:96:5c:48:5a:b8:9c:b6:
e6:08:f9:bf:1b:01:02:be:4b:29:a7:7d:4e:bc:5b:c5:40:ea:
45:a3:76:67:ba:60:e2:2e:ec:bf:ba:e8:be:72:f7:e8:20:f0:
21:af:50:4c:d5:d3:e7:5c:67:d8:23:1b:28:03:96:d7:26:3a:
25:05:4f:dd:a6:96:fb:63:4f:03:e8:ef:3c:7d:3a:6f:34:43:
94:20:f5:8b:70:d0:8d:72:88:0e:68:38:40:53:e5:3d:23:28:
fc:bd:95:60:3e:95:e6:0c:3c:d4:32:a6:70:fb:98:f2:7e:13:
95:62:ae:2e:6e:02:de:d5:3d:f6:f3:55:db:90:1b:5a:1e:10:
e1:20:4e:7f:9c:df:ee:40:b1:a2:31:5d:48:57:29:62:fe:04:
37:b6:ac:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:51 2024 by rpki-client on console-fra.rpki-client.org