Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7e7ee7-1bd4-4435-871f-6cf8e567ff1c/1/4iui2ax0qM6ZaQr7tEYKgTogPx4.roa
File: 4iui2ax0qM6ZaQr7tEYKgTogPx4.roa (raw, json)
Hash identifier: t6ioZhvaNFTZEwsy+pLUJoPoqMf5BStjf5+NLAgxegs=
Subject key identifier: E2:2B:A2:D9:AC:74:A8:CE:99:69:0A:FB:B4:46:0A:81:3A:20:3F:1E
Certificate issuer: /CN=b4d73a6ad77a8f859b403db2ce715e82d1cf32fe
Certificate serial: 079EE31F
Authority key identifier: B4:D7:3A:6A:D7:7A:8F:85:9B:40:3D:B2:CE:71:5E:82:D1:CF:32:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tNc6atd6j4WbQD2yznFegtHPMv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7e7ee7-1bd4-4435-871f-6cf8e567ff1c/1/4iui2ax0qM6ZaQr7tEYKgTogPx4.roa
Signing time: Sat 01 Jan 2022 02:55:45 +0000
ROA not before: Sat 01 Jan 2022 02:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12586
IP address blocks: 45.146.136.0/22 maxlen: 24
2a0f:3000::/29 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127853343 (0x79ee31f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4d73a6ad77a8f859b403db2ce715e82d1cf32fe
Validity
Not Before: Jan 1 02:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e22ba2d9ac74a8ce99690afbb4460a813a203f1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:86:48:49:53:61:af:0b:e6:31:40:20:51:24:
92:89:d9:91:0b:31:32:24:c5:28:c4:47:80:fd:7e:
8c:06:cf:e5:45:a8:34:8b:3b:ed:02:1d:e4:d0:c0:
a9:7c:00:b8:18:8e:cd:fb:e3:7e:35:21:87:a8:fc:
52:9d:c5:ed:b8:48:e4:81:d4:ca:34:a8:57:17:fc:
22:b0:ea:9f:5a:6d:b4:c4:0e:dc:a7:22:c5:15:69:
60:38:93:45:1e:67:ef:5d:84:f5:fc:e9:c5:c3:46:
62:8c:5f:24:33:b0:71:98:77:67:5e:02:9d:12:d4:
32:d7:ff:fa:e4:ae:04:b4:42:f3:c3:72:82:2c:fb:
2f:07:ef:6b:21:77:3c:7e:ea:04:27:bf:ea:e0:27:
29:dd:14:d8:cd:a0:a1:bb:17:c4:06:58:c3:5c:27:
db:d2:50:e7:9f:dd:33:3a:b6:99:37:ec:0c:ea:50:
94:d2:8c:19:f1:e4:1d:8e:dc:60:0f:98:9b:d2:43:
35:78:ae:ae:a6:79:03:e2:ea:54:1c:22:77:8f:d8:
ff:b8:77:1c:f6:37:19:3e:96:fa:0a:04:ac:e7:b6:
ba:31:6d:10:3c:ea:b9:2f:19:7d:74:5f:cb:7a:50:
74:98:3d:67:46:63:f0:f5:e2:a3:fe:1a:fa:89:1f:
81:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:2B:A2:D9:AC:74:A8:CE:99:69:0A:FB:B4:46:0A:81:3A:20:3F:1E
X509v3 Authority Key Identifier:
keyid:B4:D7:3A:6A:D7:7A:8F:85:9B:40:3D:B2:CE:71:5E:82:D1:CF:32:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tNc6atd6j4WbQD2yznFegtHPMv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7e7ee7-1bd4-4435-871f-6cf8e567ff1c/1/4iui2ax0qM6ZaQr7tEYKgTogPx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7e7ee7-1bd4-4435-871f-6cf8e567ff1c/1/tNc6atd6j4WbQD2yznFegtHPMv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.136.0/22
IPv6:
2a0f:3000::/29
Signature Algorithm: sha256WithRSAEncryption
15:83:97:7d:fb:96:40:0b:e2:e1:eb:cc:bb:bc:22:a2:79:eb:
21:17:52:06:f2:15:24:38:e9:7d:7e:ee:d0:49:43:6e:98:bf:
31:a6:1e:b3:5f:76:ca:98:c4:3e:ee:b3:79:6f:47:18:35:93:
86:14:f7:f8:83:13:fc:49:85:cb:15:50:8f:17:84:c1:b1:60:
27:9b:78:e6:8e:95:b3:30:41:aa:28:a0:70:49:f7:21:42:fe:
8c:ea:63:d6:16:31:e6:63:ce:d4:bb:3b:2e:fd:e6:ab:51:a9:
6e:35:fb:40:91:2b:fe:55:eb:3d:3a:cf:ab:cb:50:b3:86:a4:
18:f5:82:8f:b3:c5:0a:3c:57:30:3f:ad:69:0f:33:16:4c:ce:
0f:33:f4:30:84:00:1f:e3:29:d4:0e:9d:68:b4:95:5b:ac:06:
7a:89:eb:e3:36:05:f5:bf:78:cb:e0:54:ca:90:48:fc:1d:16:
3a:96:e8:f5:02:30:38:32:e7:71:09:96:d1:74:60:70:59:d2:
36:7d:bf:3e:bf:f2:11:32:16:97:8c:d1:1c:5e:27:c1:2a:52:
4d:64:aa:2e:df:dc:65:50:bd:48:2b:41:b1:61:fd:d9:08:b9:
75:2a:d4:43:a8:94:f0:e6:83:d9:64:ed:39:c2:0d:f3:9c:14:
ef:75:07:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:54 2024 by rpki-client on console-fra.rpki-client.org