Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/HRgVxZb0hzNil1oTP-Ea3Qju0N8.roa
File: HRgVxZb0hzNil1oTP-Ea3Qju0N8.roa (raw, json)
Hash identifier: gZtzMhODmTXfBJLdqmQ/YdyCjltWwWr8nAUwh+fXdJg=
Subject key identifier: 1D:18:15:C5:96:F4:87:33:62:97:5A:13:3F:E1:1A:DD:08:EE:D0:DF
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0ABEC12C
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/HRgVxZb0hzNil1oTP-Ea3Qju0N8.roa
Signing time: Fri 18 Mar 2022 00:34:28 +0000
ROA not before: Fri 18 Mar 2022 00:34:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24961
IP address blocks: 45.133.156.0/24 maxlen: 24
45.133.156.0/23 maxlen: 24
45.133.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180273452 (0xabec12c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Mar 18 00:34:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d1815c596f4873362975a133fe11add08eed0df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b3:cd:1e:32:e1:40:47:5b:02:ae:c3:c0:28:
ef:41:ca:95:73:c3:7c:5d:44:93:61:d0:48:f8:b2:
44:64:b4:ba:8a:06:7d:d5:d8:15:61:28:f1:ab:11:
23:09:90:58:6d:a8:55:55:69:89:e6:0d:b6:9b:ef:
5c:77:6c:e9:a1:12:ba:78:35:10:2f:da:e8:7c:02:
07:0c:7a:21:cc:93:ec:b2:5c:22:eb:59:44:de:95:
0b:5a:f1:35:24:9d:fa:7b:f3:d6:b5:8c:51:5c:3c:
66:2d:ad:5d:01:e9:5a:45:8a:d8:2f:90:ab:8d:cf:
43:1a:44:51:33:f5:37:af:c5:4c:d6:28:a7:af:29:
6f:47:81:ee:97:9b:9c:5b:42:46:99:7f:df:52:82:
d5:f1:a5:a2:85:b0:12:af:62:1d:9c:4b:2f:d2:05:
c5:63:03:22:6a:5e:9b:d0:ee:e8:ad:03:44:f9:05:
77:5f:e3:dd:16:13:fe:3a:81:30:17:e4:07:12:62:
f9:28:8b:27:6b:68:ca:f8:1f:56:b0:e8:1a:f1:45:
22:e2:70:a5:56:58:4d:64:4e:60:b1:16:d5:b7:7f:
4b:c2:dc:14:b0:99:74:da:26:a6:ff:65:70:05:c0:
05:f9:09:cb:dd:75:cb:a2:91:7a:8c:6a:a7:31:90:
b8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:18:15:C5:96:F4:87:33:62:97:5A:13:3F:E1:1A:DD:08:EE:D0:DF
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/HRgVxZb0hzNil1oTP-Ea3Qju0N8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.156.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:36:fd:25:c6:60:bd:43:bc:7a:b5:77:ce:79:56:68:29:52:
1e:c9:db:63:bc:39:ec:03:fe:ac:8e:44:3c:d6:fe:1b:14:44:
be:e8:90:a5:96:61:98:ce:8c:1d:ce:53:d6:58:b8:bb:ec:95:
44:dd:39:fe:c3:f8:d9:07:f5:cc:67:38:02:8a:f6:ff:05:7e:
7b:62:11:d0:60:60:11:9a:06:89:5c:c7:78:5a:4d:af:56:d4:
a1:c6:8f:65:b9:05:3a:12:e8:8a:b1:8a:46:f9:ac:0a:ef:87:
e5:e2:ae:1a:41:fd:1c:35:bc:95:ce:88:ec:4a:34:2f:e9:c1:
2c:d0:3d:01:ef:42:8d:97:9a:93:07:49:14:d9:e8:2e:f9:b7:
04:b8:0b:56:49:46:84:32:52:a5:f7:53:7b:37:fc:c4:07:38:
7f:bf:17:5f:5c:c0:da:5f:8e:71:b2:d5:62:23:a5:22:b1:1a:
00:62:cc:ad:21:0d:22:03:d5:19:8f:f0:58:6a:ba:bc:3f:6b:
4a:34:16:11:39:34:81:3b:89:ad:a4:c9:28:d9:1a:24:d5:f1:
6a:34:72:a0:77:ac:ad:77:34:55:1b:12:41:e2:fe:ab:bc:ba:
f3:74:4f:95:18:eb:71:70:e1:d3:81:ff:d0:71:ab:a3:e4:24:
af:96:bc:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:39 2024 by rpki-client on console-ams.rpki-client.org