Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/eSUsrfFFQr_oBhAl5cH-mfdO8xA.roa
File: eSUsrfFFQr_oBhAl5cH-mfdO8xA.roa (raw, json)
Hash identifier: 37ztTxWfZyONk+A+PZeZRaOs9lQ1v8B/RO0XrLccMHg=
Subject key identifier: 79:25:2C:AD:F1:45:42:BF:E8:06:10:25:E5:C1:FE:99:F7:4E:F3:10
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 0A045DAB
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/eSUsrfFFQr_oBhAl5cH-mfdO8xA.roa
Signing time: Sat 01 Jan 2022 05:03:25 +0000
ROA not before: Sat 01 Jan 2022 05:03:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24961
IP address blocks: 45.133.156.0/24 maxlen: 24
45.133.156.0/23 maxlen: 24
45.133.157.0/24 maxlen: 24
2a07:6f46:5600::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168058283 (0xa045dab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 05:03:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79252cadf14542bfe8061025e5c1fe99f74ef310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d6:44:9d:8f:0d:cc:b5:a3:1b:f6:24:df:b6:
ad:ae:8f:02:59:0a:84:12:7c:23:1e:d9:08:68:2c:
69:1d:35:9d:95:60:45:6d:ff:e5:c5:a6:a8:0f:67:
3f:79:9f:36:75:30:fa:c4:e4:0e:49:47:5d:8e:33:
0e:05:c6:4f:48:1a:65:45:6a:f1:16:2f:cf:50:06:
23:3e:88:8c:0d:a5:0b:fd:6d:6f:71:9f:40:74:a3:
1c:c6:b0:bc:10:87:f6:a7:0d:63:3f:75:55:35:5f:
a3:54:ad:e4:45:f6:9a:a4:a3:f4:7e:8a:dd:39:9f:
ef:26:5c:77:97:7d:cf:e4:4a:36:4c:94:c6:a0:25:
5d:07:22:51:3c:fb:1d:76:92:c0:f9:9f:c3:f1:d3:
e3:89:d3:f1:d7:9a:ab:ac:0f:70:44:9d:29:c3:2d:
04:c9:4a:0b:37:ed:ac:64:d2:2d:0a:f1:5f:fc:57:
42:26:a3:c2:dd:de:2d:d4:1f:75:be:f6:e3:66:2a:
5c:4d:ed:d6:f1:b6:e2:5a:9b:6a:41:b7:95:18:9f:
3d:fd:50:90:9a:89:61:a8:4b:64:24:3e:2e:5b:92:
5a:db:b0:b7:ce:e4:3a:07:f1:81:8d:a7:7f:56:a1:
1a:1a:a8:26:99:a1:cb:8c:60:7a:39:f9:72:0f:ca:
41:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:25:2C:AD:F1:45:42:BF:E8:06:10:25:E5:C1:FE:99:F7:4E:F3:10
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/eSUsrfFFQr_oBhAl5cH-mfdO8xA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.156.0/23
IPv6:
2a07:6f46:5600::/40
Signature Algorithm: sha256WithRSAEncryption
74:e7:27:f1:5f:aa:fb:12:bb:e3:e2:d1:dc:d7:bc:2a:6a:20:
3d:04:d5:58:4b:d1:ed:e0:48:00:00:26:41:67:4a:88:71:fb:
81:21:b4:75:f2:04:57:84:45:ba:4b:52:e8:3e:b7:3c:36:ac:
50:5f:d5:e3:6f:0a:c3:87:7d:a6:32:d9:3d:d9:f8:83:c2:2f:
0e:40:a2:c1:2c:1e:63:b5:eb:72:8b:29:db:63:36:f2:af:88:
52:f9:00:ac:2f:94:b5:55:3b:16:8e:f0:a3:16:66:3f:da:80:
08:6c:ce:a9:7c:20:c5:7b:65:ac:bb:79:21:20:bd:43:b4:27:
b6:21:3b:ab:20:57:62:17:90:c8:fc:b0:7b:1d:97:7c:c3:ce:
7d:6a:3e:0a:d4:c0:ab:38:d6:de:d6:5f:98:ac:c5:47:27:a7:
8c:81:3c:65:93:b3:28:5c:47:0f:e8:d5:7e:1b:8a:d4:85:db:
df:4a:d8:28:73:0c:48:fa:9f:d9:f4:b2:90:0a:a2:5a:4f:96:
79:9a:e8:91:a7:ba:96:fb:6a:e3:54:13:94:ff:62:c2:bd:f5:
90:c4:17:0d:f9:48:20:95:13:b2:c0:40:05:55:55:08:28:8d:
56:d7:f1:1b:7c:7e:26:48:2b:ed:d7:89:7b:51:59:8a:ae:0a:
a2:5c:9f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:59 2024 by rpki-client on console-fra.rpki-client.org