Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/IWNrvVfqqOEPmZmJoRlkfq1Y478.roa
File: IWNrvVfqqOEPmZmJoRlkfq1Y478.roa (raw, json)
Hash identifier: jOCWF3yTviXMKDsj0PaSm/6d71PhE0CMn/wBB4THvkI=
Subject key identifier: 21:63:6B:BD:57:EA:A8:E1:0F:99:99:89:A1:19:64:7E:AD:58:E3:BF
Certificate issuer: /CN=6c0a9614ac4e10e7a2e2a5bc12f8623064c89ef9
Certificate serial: 080DE71B
Authority key identifier: 6C:0A:96:14:AC:4E:10:E7:A2:E2:A5:BC:12:F8:62:30:64:C8:9E:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAqWFKxOEOei4qW8EvhiMGTInvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/IWNrvVfqqOEPmZmJoRlkfq1Y478.roa
Signing time: Wed 20 Apr 2022 09:25:05 +0000
ROA not before: Wed 20 Apr 2022 09:25:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208144
IP address blocks: 45.157.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135128859 (0x80de71b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c0a9614ac4e10e7a2e2a5bc12f8623064c89ef9
Validity
Not Before: Apr 20 09:25:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21636bbd57eaa8e10f999989a119647ead58e3bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:21:ca:25:38:ea:b1:02:02:fa:09:00:92:d3:
6a:ad:94:56:63:dd:16:a8:8f:5e:42:c5:33:a9:f3:
95:05:79:54:ec:28:14:5a:0d:1f:6e:a8:47:cd:34:
9c:c5:f6:86:af:bd:72:52:7a:b1:13:1d:86:62:d5:
c6:e2:24:9e:7b:7e:72:d1:f8:7b:6c:92:72:47:80:
71:d8:12:a6:8d:97:56:a4:89:73:23:a6:5a:e0:78:
1e:6c:6b:88:4f:e2:74:8e:32:f9:9b:35:f5:f7:b3:
ea:ae:68:f9:8b:0c:29:30:cf:df:43:2d:e2:40:45:
74:b2:01:86:30:44:71:05:bb:43:d2:1b:64:53:05:
8e:46:87:ec:79:84:bd:19:38:b5:aa:4e:a1:0b:9f:
31:30:2d:da:a6:82:28:e0:1b:93:3b:6b:79:ac:d9:
19:ad:96:62:78:89:93:c8:f2:c3:44:1a:15:cc:b0:
c4:51:26:7e:09:45:f2:34:47:a6:be:7b:d6:30:eb:
9f:b1:74:80:b9:44:04:7d:6d:4f:7f:37:bc:f1:34:
3c:3f:96:52:d7:91:19:95:e7:9a:9f:d8:99:c0:7a:
d0:6d:f7:49:73:06:a7:b9:aa:c4:2c:ed:8f:a7:39:
24:8a:8d:66:76:f9:9b:97:62:c2:46:a4:3e:69:f7:
ed:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:63:6B:BD:57:EA:A8:E1:0F:99:99:89:A1:19:64:7E:AD:58:E3:BF
X509v3 Authority Key Identifier:
keyid:6C:0A:96:14:AC:4E:10:E7:A2:E2:A5:BC:12:F8:62:30:64:C8:9E:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAqWFKxOEOei4qW8EvhiMGTInvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/IWNrvVfqqOEPmZmJoRlkfq1Y478.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/64a392-372e-48a6-a0e2-f5ad167d8494/1/bAqWFKxOEOei4qW8EvhiMGTInvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.152.0/22
Signature Algorithm: sha256WithRSAEncryption
97:b2:0a:9e:a6:4e:4e:c6:99:02:ca:04:12:e7:87:12:da:4b:
b9:35:a6:de:e4:f4:f6:77:cb:fd:d0:1e:28:09:f8:b4:53:61:
95:cc:4f:58:d8:e7:2b:02:ca:5f:e4:a9:13:c4:91:e1:18:12:
37:71:75:2d:3e:cb:35:df:db:37:6f:2c:a9:9c:14:73:b2:04:
66:49:7a:02:d7:f3:09:47:d4:5f:11:ae:6c:fb:ad:d5:3b:87:
07:e5:e6:82:29:5f:16:72:74:fb:50:74:28:47:a8:21:dd:a8:
b9:94:8f:14:a6:2c:2d:f8:63:b3:1c:45:3a:04:a0:eb:6c:83:
4b:41:01:8a:48:28:18:4c:68:a2:a4:87:f6:fe:76:3a:47:49:
a2:c2:1d:5e:d5:c8:0a:10:a9:da:9d:ef:3c:07:12:0f:46:75:
fe:6d:5b:b0:0b:e1:c5:c2:85:84:6d:b3:dd:d9:6a:ad:95:f2:
a2:7a:6b:55:07:21:07:3f:53:d5:73:d0:00:7f:f3:8e:21:36:
ff:4d:af:7b:7e:d1:c6:6c:26:e4:f0:4a:25:e6:46:11:6c:0f:
bb:7b:ec:c0:2d:e1:5d:2c:53:60:6b:47:81:d3:e5:a2:82:4a:
aa:4b:d6:36:aa:7f:c3:c7:6a:19:a7:4e:e5:e4:2f:f5:d8:1c:
65:b7:88:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org