Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/hqBqeNM8xbcxBq9qQ0dGVQIuHFc.roa
File: hqBqeNM8xbcxBq9qQ0dGVQIuHFc.roa (raw, json)
Hash identifier: veVPhMVHg8c8X5secd02S6IHjo1GzGrIdXyevFbne1Q=
Subject key identifier: 86:A0:6A:78:D3:3C:C5:B7:31:06:AF:6A:43:47:46:55:02:2E:1C:57
Certificate issuer: /CN=311d62b7fd9fcfc87dfea987515767c838e21bb9
Certificate serial: 018506DBE9D1133A7135FEC73EABDDD21CDB
Authority key identifier: 31:1D:62:B7:FD:9F:CF:C8:7D:FE:A9:87:51:57:67:C8:38:E2:1B:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MR1it_2fz8h9_qmHUVdnyDjiG7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/hqBqeNM8xbcxBq9qQ0dGVQIuHFc.roa
Signing time: Mon 12 Dec 2022 15:02:33 +0000
ROA not before: Mon 12 Dec 2022 15:02:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39801
IP address blocks: 45.146.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:db:e9:d1:13:3a:71:35:fe:c7:3e:ab:dd:d2:1c:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=311d62b7fd9fcfc87dfea987515767c838e21bb9
Validity
Not Before: Dec 12 15:02:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86a06a78d33cc5b73106af6a43474655022e1c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b4:c8:48:db:7b:62:26:a5:50:37:ae:99:8a:
50:44:ee:42:5b:b3:40:0e:de:a6:5e:71:3e:9f:47:
a6:7b:75:99:fd:81:a3:58:df:ec:2e:1e:77:56:69:
d7:91:47:b7:e7:a8:16:53:63:dd:f0:45:6c:52:21:
ab:e9:36:d2:70:1c:cd:96:6c:39:ed:1e:b3:78:51:
ed:33:00:18:82:03:67:43:59:c9:bf:7b:0b:b5:38:
4e:65:f0:6f:be:06:d6:da:e2:01:e0:17:2b:c7:cb:
0f:f3:35:40:00:18:ac:d6:98:3e:cf:06:01:a3:7c:
5c:25:07:d8:0a:f7:1a:d5:56:27:3b:0e:29:99:d2:
f8:6d:5e:0a:2b:ca:21:05:9f:f5:df:18:b8:16:5c:
5f:9c:95:da:eb:04:b2:2f:e1:77:bb:8d:6c:89:de:
c6:71:01:fb:33:f4:0e:44:1a:62:08:dc:d6:73:82:
ff:ac:38:18:a5:4c:18:d6:05:d1:70:f3:9b:5e:97:
86:18:1d:b0:5a:9c:04:97:d9:32:4a:a4:7c:fc:db:
ec:b2:52:32:6e:6c:2d:ba:08:07:f0:13:36:7d:d8:
ac:df:49:ef:14:39:e3:e5:bc:94:11:ff:0b:08:cf:
f4:b3:1f:c5:ca:8d:63:8e:2f:d7:a0:90:4d:28:c2:
67:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A0:6A:78:D3:3C:C5:B7:31:06:AF:6A:43:47:46:55:02:2E:1C:57
X509v3 Authority Key Identifier:
keyid:31:1D:62:B7:FD:9F:CF:C8:7D:FE:A9:87:51:57:67:C8:38:E2:1B:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MR1it_2fz8h9_qmHUVdnyDjiG7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/hqBqeNM8xbcxBq9qQ0dGVQIuHFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/57688e-a964-4933-8631-850f34906229/1/MR1it_2fz8h9_qmHUVdnyDjiG7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.32.0/22
Signature Algorithm: sha256WithRSAEncryption
03:b7:5b:61:6f:83:d9:21:3e:d6:eb:02:ab:7d:9d:c9:44:fc:
bb:d8:82:21:63:58:f6:cb:d0:09:5e:17:0c:22:30:9a:ef:18:
71:9c:69:d6:ae:1f:2f:07:43:a1:c1:ee:8c:d5:8e:16:8f:74:
b4:eb:18:42:6f:81:2f:46:f5:d0:2f:5f:06:ae:9a:72:ae:ca:
62:0f:bd:35:46:08:ad:f5:4b:1a:0c:c9:f3:2b:36:b9:62:90:
df:30:cc:73:04:7a:76:2d:b0:66:2e:73:b3:2c:be:6e:ba:0c:
bf:67:ba:48:1b:3a:17:74:53:45:3d:a2:3d:14:c3:32:30:4a:
f7:98:5f:f9:09:10:da:13:28:f5:5e:d5:51:19:e3:61:98:3a:
9b:58:68:db:78:56:c5:1b:24:89:b1:a6:31:10:f3:9e:01:d4:
c3:c9:85:e9:35:3e:d5:21:76:cc:ac:66:b1:de:cf:c0:f8:50:
72:13:b3:92:87:de:5a:7a:90:32:30:6b:b1:00:f3:e7:94:1e:
65:42:3e:01:dc:28:0f:be:d9:45:e5:d6:61:9e:b6:00:d1:63:
3e:75:69:9d:00:6e:02:c7:c6:13:2d:ca:e6:53:88:6e:a9:4d:
2b:15:9d:8d:e5:21:94:6b:4f:b1:88:b1:fa:47:3b:f4:2d:e8:
6b:b0:77:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:35 2024 by rpki-client on console-ams.rpki-client.org